| | 64.23.130.29 | 200 OK | 13 kB |
URL User Request GET HTTP/1.1IP64.23.130.29:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectwww.zimbr-tok.x24hr.com Fingerprint48:F1:43:20:77:8A:DB:DA:3E:65:B3:C2:70:58:09:0A:7C:EF:2C:23 ValidityTue, 07 May 2024 06:52:44 GMT - Mon, 05 Aug 2024 06:52:43 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (672), with CRLF line terminators Hash4393e0286299172591cdc721c334a2a2 0abb437505cdd3872cae78d505c81e4dc87941e5 5d0fe490a972a36413e54d04100a11eb85cdc84a43e1c02b8b77928b757c888d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client | urlquery | suspicious | Suspicious - DynDNS domain |
GET / HTTP/1.1
Host: www.zimbr-tok.x24hr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:38:53 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| mail.zimbra.com/css/common,login,zhtml,skin.css?skin=harmony&v=211112040503 | 129.153.230.99 | 200 OK | 155 kB |
URL GET HTTP/2mail.zimbra.com/css/common,login,zhtml,skin.css?skin=harmony&v=211112040503 IP129.153.230.99:443 ASN#31898 ORACLE-BMC-31898
Requested byhttps://www.zimbr-tok.x24hr.com/ CertificateIssuerDigiCert Inc Subject*.zimbra.com FingerprintAD:9D:09:0D:07:7B:F8:0F:97:5E:4F:71:B9:3D:AA:74:18:19:5C:C4 ValidityWed, 22 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size155 kB (154917 bytes) Hashe5122810130d159b531fecef0cc07569 7496f68c25a479bbaff8b30540803a7d83054c2f b183f5ffb3732785f359d13f0835c01ab0d943dd17f53bd916eff9df9903ddeb
GET /css/common,login,zhtml,skin.css?skin=harmony&v=211112040503 HTTP/1.1
Host: mail.zimbra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zimbr-tok.x24hr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 15:38:53 GMT
content-type: text/css
x-frame-options: SAMEORIGIN
expires: Fri, 7 Jun 2024 16:38:53 GMT
cache-control: public, max-age=2595600
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mail.zimbra.com/skins/_base/logos/LoginBanner.png?v=240217025031 | 129.153.230.99 | 200 OK | 18 kB |
URL GET HTTP/2mail.zimbra.com/skins/_base/logos/LoginBanner.png?v=240217025031 IP129.153.230.99:443 ASN#31898 ORACLE-BMC-31898
Requested byhttps://www.zimbr-tok.x24hr.com/ CertificateIssuerDigiCert Inc Subject*.zimbra.com FingerprintAD:9D:09:0D:07:7B:F8:0F:97:5E:4F:71:B9:3D:AA:74:18:19:5C:C4 ValidityWed, 22 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File typePNG image data, 646 x 159, 8-bit/color RGBA, non-interlaced Hash2ae279fe9cf9754c36ae09a0e0ffefdb c2cc3a3c4f3a655178d31c9050dca9dfc362b9b8 cd9f7ba4d4b05e9fa1bbf57d12b039f7d1e61328bb1d76d3deef4c216e5ec0c5
GET /skins/_base/logos/LoginBanner.png?v=240217025031 HTTP/1.1
Host: mail.zimbra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.zimbra.com/css/common,login,zhtml,skin.css?skin=harmony&v=211112040503
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 15:38:54 GMT
content-type: image/png
content-length: 17558
x-frame-options: SAMEORIGIN
expires: Fri, 7 Jun 2024 16:38:54 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 02:32:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mail.zimbra.com/img/logo/favicon.ico | 129.153.230.99 | 200 OK | 1.2 kB |
URL GET HTTP/2mail.zimbra.com/img/logo/favicon.ico IP129.153.230.99:443 ASN#31898 ORACLE-BMC-31898
Requested byhttps://www.zimbr-tok.x24hr.com/ CertificateIssuerDigiCert Inc Subject*.zimbra.com FingerprintAD:9D:09:0D:07:7B:F8:0F:97:5E:4F:71:B9:3D:AA:74:18:19:5C:C4 ValidityWed, 22 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash8c7d1c14e4b9c42f07bd6b800d93b806 87e49826ffb3bc1ddac38feebb6bb98eaef568b2 1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
GET /img/logo/favicon.ico HTTP/1.1
Host: mail.zimbra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.zimbr-tok.x24hr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 15:38:54 GMT
content-type: image/x-icon
content-length: 1150
x-frame-options: SAMEORIGIN
expires: Fri, 7 Jun 2024 16:38:54 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 02:32:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mail.zimbra.com/img/new-back-ground-image.png | 129.153.230.99 | 200 OK | 142 kB |
URL GET HTTP/2mail.zimbra.com/img/new-back-ground-image.png IP129.153.230.99:443 ASN#31898 ORACLE-BMC-31898
Requested byhttps://www.zimbr-tok.x24hr.com/ CertificateIssuerDigiCert Inc Subject*.zimbra.com FingerprintAD:9D:09:0D:07:7B:F8:0F:97:5E:4F:71:B9:3D:AA:74:18:19:5C:C4 ValidityWed, 22 Nov 2023 00:00:00 GMT - Fri, 15 Nov 2024 23:59:59 GMT
File typePNG image data, 1440 x 1024, 8-bit colormap, non-interlaced Size142 kB (141674 bytes) Hash5a09af857512a874f5e2a6e01b80742b 8c87bcfd42ee8fab57f08c3664abd1424e608b6a 18b729cd6f3dd2b5657c1680e1388b825dc2c2d1e732e03478006714ac7ebc2d
GET /img/new-back-ground-image.png HTTP/1.1
Host: mail.zimbra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.zimbra.com/css/common,login,zhtml,skin.css?skin=harmony&v=211112040503
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 15:38:54 GMT
content-type: image/png
content-length: 141674
x-frame-options: SAMEORIGIN
expires: Fri, 7 Jun 2024 16:38:54 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 02:32:06 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|