| | 199.79.62.103 | 200 OK | 15 kB |
URL User Request GET HTTP/2IP199.79.62.103:443 ASN#394695 PUBLIC-DOMAIN-REGISTRY
CertificateIssuerLet's Encrypt Subjectmelonwoodhomes.com Fingerprint97:13:BB:91:20:71:7E:15:30:B6:C2:37:2F:02:BB:77:4C:DD:4A:BD ValidityTue, 02 May 2023 19:13:08 GMT - Mon, 31 Jul 2023 19:13:07 GMT
File typePHP script, Unicode text, UTF-8 (with BOM) text, with very long lines (3218), with CRLF line terminators Hash732523155d15b32f67fe91b72f4fb793 66f9ecc9d6969b930aadff26bd0e28a0a85d1ead 25d046325b36e9ea1a109c6ad5f6bba12249318dfe83af6ee58e6e6c22f75b5d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Generic phishing |
GET / HTTP/1.1
Host: aba.melonwoodhomes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 08:17:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15046
content-type: text/html
date: Sat, 03 Jun 2023 22:55:07 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hash0affd42f3b881bc89a46594868663e52 03ca33c099bbc747c00360101c6ca6e21810aa07 1a1eb9e073803bd3864fdc023b727bcdd97df9074a2b8a657769da4a8b858d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Jun 2023 22:55:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.138 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.138:443
Requested byhttps://aba.melonwoodhomes.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File typeASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aba.melonwoodhomes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 12:31:43 GMT
expires: Fri, 31 May 2024 12:31:43 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 210205
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hash0affd42f3b881bc89a46594868663e52 03ca33c099bbc747c00360101c6ca6e21810aa07 1a1eb9e073803bd3864fdc023b727bcdd97df9074a2b8a657769da4a8b858d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Jun 2023 22:55:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 15 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP104.18.10.207:443
Requested byhttps://aba.melonwoodhomes.com/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File typeASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aba.melonwoodhomes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 Jun 2023 22:55:07 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 28876755
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d1b859adb6fb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mail.zimbra.com/skins/_base/logos/LoginBanner.png?v=230213114536 | 129.153.230.99 | 200 OK | 18 kB |
URL GET HTTP/2mail.zimbra.com/skins/_base/logos/LoginBanner.png?v=230213114536 IP129.153.230.99:443 ASN#31898 ORACLE-BMC-31898
Requested byhttps://aba.melonwoodhomes.com/ CertificateIssuerDigiCert Inc Subject*.zimbra.com Fingerprint7C:28:4A:4A:EE:EC:9E:75:27:5A:84:43:81:80:0F:6A:4F:74:93:79 ValidityThu, 01 Dec 2022 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT
File typePNG image data, 646 x 159, 8-bit/color RGBA, non-interlaced\012- data Hash2ae279fe9cf9754c36ae09a0e0ffefdb c2cc3a3c4f3a655178d31c9050dca9dfc362b9b8 cd9f7ba4d4b05e9fa1bbf57d12b039f7d1e61328bb1d76d3deef4c216e5ec0c5
GET /skins/_base/logos/LoginBanner.png?v=230213114536 HTTP/1.1
Host: mail.zimbra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.zimbra.com/css/common,login,zhtml,skin.css?skin=harmony&v=200812032126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Jun 2023 22:55:08 GMT
content-type: image/png
content-length: 17558
x-frame-options: SAMEORIGIN
expires: Mon, 3 Jul 2023 23:55:08 GMT
cache-control: public, max-age=2595600
last-modified: Mon, 13 Feb 2023 16:07:22 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mail.zimbra.com/css/common,login,zhtml,skin.css?skin=harmony&v=200812032126 | 129.153.230.99 | 200 OK | 155 kB |
URL GET HTTP/2mail.zimbra.com/css/common,login,zhtml,skin.css?skin=harmony&v=200812032126 IP129.153.230.99:443 ASN#31898 ORACLE-BMC-31898
Requested byhttps://aba.melonwoodhomes.com/ CertificateIssuerDigiCert Inc Subject*.zimbra.com Fingerprint7C:28:4A:4A:EE:EC:9E:75:27:5A:84:43:81:80:0F:6A:4F:74:93:79 ValidityThu, 01 Dec 2022 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data Size155 kB (154905 bytes) Hashfbbc719c6f1fbb8c7337bc1b6f06bd10 b3b05ecb13bc86ecfbc167b971ea7437f5e53bdf 7c8fc036c1818cd026a069f101176faefa5f51ca9c0026000786f60bf25bae80
GET /css/common,login,zhtml,skin.css?skin=harmony&v=200812032126 HTTP/1.1
Host: mail.zimbra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aba.melonwoodhomes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 03 Jun 2023 22:55:08 GMT
content-type: text/css
x-frame-options: SAMEORIGIN
expires: Mon, 3 Jul 2023 23:55:08 GMT
cache-control: public, max-age=2595600
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mail.zimbra.com/img/questionMark.png | 129.153.230.99 | 200 OK | 5.4 kB |
URL GET HTTP/2mail.zimbra.com/img/questionMark.png IP129.153.230.99:443 ASN#31898 ORACLE-BMC-31898
Requested byhttps://aba.melonwoodhomes.com/ CertificateIssuerDigiCert Inc Subject*.zimbra.com Fingerprint7C:28:4A:4A:EE:EC:9E:75:27:5A:84:43:81:80:0F:6A:4F:74:93:79 ValidityThu, 01 Dec 2022 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT
File typePNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data Hash5d496d46fe9801cf0e92af8337b3b6af 6f9e34028d56b0229759aad8dab4f0c30be30a7e 395b89ffffb5b6ea44d2933531396f8d2ae8ff84bae554a1c245d0777af59034
GET /img/questionMark.png HTTP/1.1
Host: mail.zimbra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.zimbra.com/css/common,login,zhtml,skin.css?skin=harmony&v=200812032126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Jun 2023 22:55:08 GMT
content-type: image/png
content-length: 5359
x-frame-options: SAMEORIGIN
expires: Mon, 3 Jul 2023 23:55:08 GMT
cache-control: public, max-age=2595600
last-modified: Mon, 13 Feb 2023 16:07:20 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mail.zimbra.com/img/logo/favicon.ico | 129.153.230.99 | 200 OK | 1.2 kB |
URL GET HTTP/2mail.zimbra.com/img/logo/favicon.ico IP129.153.230.99:443 ASN#31898 ORACLE-BMC-31898
Requested byhttps://aba.melonwoodhomes.com/ CertificateIssuerDigiCert Inc Subject*.zimbra.com Fingerprint7C:28:4A:4A:EE:EC:9E:75:27:5A:84:43:81:80:0F:6A:4F:74:93:79 ValidityThu, 01 Dec 2022 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Hash8c7d1c14e4b9c42f07bd6b800d93b806 87e49826ffb3bc1ddac38feebb6bb98eaef568b2 1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
GET /img/logo/favicon.ico HTTP/1.1
Host: mail.zimbra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aba.melonwoodhomes.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Jun 2023 22:55:08 GMT
content-type: image/x-icon
content-length: 1150
x-frame-options: SAMEORIGIN
expires: Mon, 3 Jul 2023 23:55:08 GMT
cache-control: public, max-age=2595600
last-modified: Mon, 13 Feb 2023 16:07:20 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mail.zimbra.com/img/new-back-ground-image.png | 129.153.230.99 | 200 OK | 142 kB |
URL GET HTTP/2mail.zimbra.com/img/new-back-ground-image.png IP129.153.230.99:443 ASN#31898 ORACLE-BMC-31898
Requested byhttps://aba.melonwoodhomes.com/ CertificateIssuerDigiCert Inc Subject*.zimbra.com Fingerprint7C:28:4A:4A:EE:EC:9E:75:27:5A:84:43:81:80:0F:6A:4F:74:93:79 ValidityThu, 01 Dec 2022 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT
File typePNG image data, 1440 x 1024, 8-bit colormap, non-interlaced\012- data Size142 kB (141674 bytes) Hash5a09af857512a874f5e2a6e01b80742b 8c87bcfd42ee8fab57f08c3664abd1424e608b6a 18b729cd6f3dd2b5657c1680e1388b825dc2c2d1e732e03478006714ac7ebc2d
GET /img/new-back-ground-image.png HTTP/1.1
Host: mail.zimbra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.zimbra.com/css/common,login,zhtml,skin.css?skin=harmony&v=200812032126
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 03 Jun 2023 22:55:08 GMT
content-type: image/png
content-length: 141674
x-frame-options: SAMEORIGIN
expires: Mon, 3 Jul 2023 23:55:08 GMT
cache-control: public, max-age=2595600
last-modified: Mon, 13 Feb 2023 16:07:20 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|