| mail.practicesuite.com/img/questionMark.png | 192.48.255.39 | 200 OK | 5.4 kB |
URL GET HTTP/2mail.practicesuite.com/img/questionMark.png IP192.48.255.39:443
Requested byhttps://mail.practicesuite.com/ CertificateIssuerLet's Encrypt Subjectmail.practicesuite.com FingerprintE2:23:6E:20:F0:EA:A4:BF:AA:D7:27:CE:6A:4A:84:06:89:ED:12:21 ValidityMon, 22 Apr 2024 12:30:18 GMT - Sun, 21 Jul 2024 12:30:17 GMT
File typePNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced Hash5d496d46fe9801cf0e92af8337b3b6af 6f9e34028d56b0229759aad8dab4f0c30be30a7e 395b89ffffb5b6ea44d2933531396f8d2ae8ff84bae554a1c245d0777af59034
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/questionMark.png HTTP/1.1
Host: mail.practicesuite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.practicesuite.com/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=f61eceee-1ab7-47e5-b74c-af2451424e20
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:36:56 GMT
content-type: image/png
content-length: 5359
x-frame-options: SAMEORIGIN
expires: Fri, 24 May 2024 18:36:56 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 02:31:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mail.practicesuite.com/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957 | 192.48.255.39 | 200 OK | 155 kB |
URL GET HTTP/2mail.practicesuite.com/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957 IP192.48.255.39:443
Requested byhttps://mail.practicesuite.com/ CertificateIssuerLet's Encrypt Subjectmail.practicesuite.com FingerprintE2:23:6E:20:F0:EA:A4:BF:AA:D7:27:CE:6A:4A:84:06:89:ED:12:21 ValidityMon, 22 Apr 2024 12:30:18 GMT - Sun, 21 Jul 2024 12:30:17 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size155 kB (154962 bytes) Hash68388078e6fc8f2bf63a8512b97944cb 4efe1fa9539c2802242ebf20f987e368d9e5fe41 d932d7b472250781978c9884f2a56bfe292b4ab9523f7ffd11211c51162c94ba
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /css/common,login,zhtml,skin.css?skin=harmony&v=240217024957 HTTP/1.1
Host: mail.practicesuite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.practicesuite.com/
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=f61eceee-1ab7-47e5-b74c-af2451424e20
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:36:56 GMT
content-type: text/css
x-frame-options: SAMEORIGIN
expires: Fri, 24 May 2024 18:36:56 GMT
cache-control: public, max-age=2595600
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mail.practicesuite.com/img/logo/favicon.ico | 192.48.255.39 | 200 OK | 1.2 kB |
URL GET HTTP/2mail.practicesuite.com/img/logo/favicon.ico IP192.48.255.39:443
Requested byhttps://mail.practicesuite.com/ CertificateIssuerLet's Encrypt Subjectmail.practicesuite.com FingerprintE2:23:6E:20:F0:EA:A4:BF:AA:D7:27:CE:6A:4A:84:06:89:ED:12:21 ValidityMon, 22 Apr 2024 12:30:18 GMT - Sun, 21 Jul 2024 12:30:17 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash8c7d1c14e4b9c42f07bd6b800d93b806 87e49826ffb3bc1ddac38feebb6bb98eaef568b2 1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/logo/favicon.ico HTTP/1.1
Host: mail.practicesuite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.practicesuite.com/
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=f61eceee-1ab7-47e5-b74c-af2451424e20
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:36:57 GMT
content-type: image/x-icon
content-length: 1150
x-frame-options: SAMEORIGIN
expires: Fri, 24 May 2024 18:36:57 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 02:31:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| resource.troposphere.info/customers/practicesuite/ps-logo-440x60.png | 192.48.255.81 | 200 OK | 15 kB |
URL GET HTTP/1.1resource.troposphere.info/customers/practicesuite/ps-logo-440x60.png IP192.48.255.81:443
Requested byhttps://mail.practicesuite.com/ CertificateIssuerLet's Encrypt Subjectlogo.troposphere.info Fingerprint2C:31:3D:23:48:E2:63:CE:98:0D:2E:D2:33:EF:0E:66:34:9D:B8:11 ValidityMon, 26 Feb 2024 19:53:24 GMT - Sun, 26 May 2024 19:53:23 GMT
File typePNG image data, 440 x 60, 8-bit/color RGBA, non-interlaced Hash6b02c7215fa4e63f02d8ccc51ca6e266 a10c806254aa47278390c5e89c1614626ba920e0 90cf8f4f8df04ae64286373121c0b272a685b48a349b158fe60b38446544021b
GET /customers/practicesuite/ps-logo-440x60.png HTTP/1.1
Host: resource.troposphere.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.practicesuite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Wed, 24 Apr 2024 17:36:58 GMT
Content-Type: image/png
Content-Length: 14559
Last-Modified: Fri, 19 Apr 2024 16:53:21 GMT
Connection: keep-alive
ETag: "6622a181-38df"
Accept-Ranges: bytes
|
|
| mail.practicesuite.com/img/new-back-ground-image.png | 192.48.255.39 | 200 OK | 142 kB |
URL GET HTTP/2mail.practicesuite.com/img/new-back-ground-image.png IP192.48.255.39:443
Requested byhttps://mail.practicesuite.com/ CertificateIssuerLet's Encrypt Subjectmail.practicesuite.com FingerprintE2:23:6E:20:F0:EA:A4:BF:AA:D7:27:CE:6A:4A:84:06:89:ED:12:21 ValidityMon, 22 Apr 2024 12:30:18 GMT - Sun, 21 Jul 2024 12:30:17 GMT
File typePNG image data, 1440 x 1024, 8-bit colormap, non-interlaced Size142 kB (141674 bytes) Hash5a09af857512a874f5e2a6e01b80742b 8c87bcfd42ee8fab57f08c3664abd1424e608b6a 18b729cd6f3dd2b5657c1680e1388b825dc2c2d1e732e03478006714ac7ebc2d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/new-back-ground-image.png HTTP/1.1
Host: mail.practicesuite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.practicesuite.com/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=f61eceee-1ab7-47e5-b74c-af2451424e20
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:36:56 GMT
content-type: image/png
content-length: 141674
x-frame-options: SAMEORIGIN
expires: Fri, 24 May 2024 18:36:56 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 02:31:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| | 192.48.255.39 | 200 OK | 22 kB |
URL User Request GET HTTP/2IP192.48.255.39:443
CertificateIssuerLet's Encrypt Subjectmail.practicesuite.com FingerprintE2:23:6E:20:F0:EA:A4:BF:AA:D7:27:CE:6A:4A:84:06:89:ED:12:21 ValidityMon, 22 Apr 2024 12:30:18 GMT - Sun, 21 Jul 2024 12:30:17 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET / HTTP/1.1
Host: mail.practicesuite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 17:36:56 GMT
content-type: text/html;charset=utf-8
x-frame-options: SAMEORIGIN
expires: -1
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
content-language: en-US
set-cookie: ZM_TEST=true; Secure
ZM_LOGIN_CSRF=f61eceee-1ab7-47e5-b74c-af2451424e20; Secure; HttpOnly
x-ua-compatible: IE=edge
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|