URL User Request GET HTTP/2 IP 199.36.158.100:443
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (5115), with CRLF line terminators
Hash c3f99a2fbe94c24470520a6b0541f7be
f761b651db241d349c039045f92518bd842fb3c6
4cd0b7bd5137c678bf94ceba31685081d0d8c955d1719f9e4bce345c3e16a8aa
Analyzer Verdict Alert openphish Webmail Providers
phishtank Other
quad9 Sinkholed
GET / HTTP/1.1
Host: rcube000001.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "171524f714baff5034248b461233ab93e207acf32b0c89c1e20ba4430020e9a2-br"
last-modified: Mon, 29 Aug 2022 12:42:04 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 10:25:03 GMT
x-served-by: cache-bma1633-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685701503.336576,VS0,VE100
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4523
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8
142.250.74.131 472 B URL ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8
IP 142.250.74.131:0
Hash c71533c4704c778fa30223cb4a41e7a6
b53f269f4dc4ed742c7b38be79958d37e8482f97
37988e16d2de6ebd0c9ed907a98806ddb4632296be5b9b6407fe4c72aa6eca2f
POST /s/gts1d4int/wrllXI_-LL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 10:25:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rcube000001.web.app/zesu.css
199.36.158.100200 OK 8.3 kB URL GET HTTP/3 rcube000001.web.app/zesu.css
IP 199.36.158.100:443
Requested by https://rcube000001.web.app/
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type ASCII text, with CRLF line terminators
Hash 0d3af6942f589fd1c063ea81e24be48b
746a181cb89686d53a0743289d3fa33199598b73
0d35a358868cb05627fb413c45993e02c37519e43c5fe42f594e4aaeced39142
Analyzer Verdict Alert openphish Webmail Providers
phishtank Other
quad9 Sinkholed
GET /zesu.css HTTP/1.1
Host: rcube000001.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rcube000001.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 8256
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "3fcaa3a0d8847f5a4da3a02430996c99378dc0fb1007512950575763ba1f656b-br"
last-modified: Mon, 29 Aug 2022 12:42:04 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 10:25:04 GMT
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685701504.013578,VS0,VE131
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
rcube000001.web.app/skins/larry/images/favicon.ico
199.36.158.100404 Not Found 853 B URL GET HTTP/3 rcube000001.web.app/skins/larry/images/favicon.ico
IP 199.36.158.100:443
Requested by https://rcube000001.web.app/
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a27a4163254fc8fce870c8cc3a3f94f
f27cf04699668916346eee510eab7e5a17e83997
b77b97fe780d35d18248abd1d2f42f444afbabe43f6abcd8fa8ebb3d47825eee
Analyzer Verdict Alert openphish Webmail Providers
phishtank Other
quad9 Sinkholed
GET /skins/larry/images/favicon.ico HTTP/1.1
Host: rcube000001.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rcube000001.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
content-length: 853
cache-control: max-age=3600
content-encoding: gzip
content-type: text/html; charset=utf-8
etag: "daa499dd96d8229e73235345702ba32f0793f0c8e5c0d30e40e37a5872be57aa"
last-modified: Mon, 29 Aug 2022 12:42:04 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Jun 2023 10:25:04 GMT
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685701504.219662,VS0,VE45
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
rcube000001.web.app/favicon.ico
0.0.0.0 0 B URL GET rcube000001.web.app/favicon.ico
IP 0.0.0.0:0
Requested by https://rcube000001.web.app/
Certificate IssuerGoogle Trust Services LLC
Subjectweb.app
Fingerprint4E:21:5F:50:F4:50:7E:03:EA:B2:34:D3:10:A5:7D:22:77:B1:BF:22
ValidityWed, 10 May 2023 14:59:43 GMT - Tue, 08 Aug 2023 14:59:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Webmail Providers
phishtank Other
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: rcube000001.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rcube000001.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache