| zimbra.mosir.lublin.pl/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957 | 193.93.70.123 | 200 OK | 155 kB |
URL GET HTTP/2zimbra.mosir.lublin.pl/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957 IP193.93.70.123:443
Requested byhttps://zimbra.mosir.lublin.pl/ CertificateIssuerUnizeto Technologies S.A. Subject*.mosir.lublin.pl Fingerprint72:7A:D7:75:0E:A9:E5:07:7E:DF:81:64:FE:67:E7:7F:F3:33:D0:45 ValidityThu, 28 Dec 2023 10:02:45 GMT - Fri, 27 Dec 2024 10:02:44 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size155 kB (154957 bytes) Hashb4b96e4f156f8861c470bdd2fbccdd0a 2bf911152b3675e2ebf516260517e44acb316d71 6ae1d95be6774ad458288effba3a2b2aac822ec882aa360e435428292f9fefd6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /css/common,login,zhtml,skin.css?skin=harmony&v=240217024957 HTTP/1.1
Host: zimbra.mosir.lublin.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimbra.mosir.lublin.pl/
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=6d23a9ae-875c-4a43-ad56-214e576ebd63
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 11:51:29 GMT
content-type: text/css
x-frame-options: SAMEORIGIN
expires: Tue, 4 Jun 2024 12:51:29 GMT
cache-control: public, max-age=2595600
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| zimbra.mosir.lublin.pl/img/questionMark.png | 193.93.70.123 | 200 OK | 5.4 kB |
URL GET HTTP/2zimbra.mosir.lublin.pl/img/questionMark.png IP193.93.70.123:443
Requested byhttps://zimbra.mosir.lublin.pl/ CertificateIssuerUnizeto Technologies S.A. Subject*.mosir.lublin.pl Fingerprint72:7A:D7:75:0E:A9:E5:07:7E:DF:81:64:FE:67:E7:7F:F3:33:D0:45 ValidityThu, 28 Dec 2023 10:02:45 GMT - Fri, 27 Dec 2024 10:02:44 GMT
File typePNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced Hash5d496d46fe9801cf0e92af8337b3b6af 6f9e34028d56b0229759aad8dab4f0c30be30a7e 395b89ffffb5b6ea44d2933531396f8d2ae8ff84bae554a1c245d0777af59034
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/questionMark.png HTTP/1.1
Host: zimbra.mosir.lublin.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimbra.mosir.lublin.pl/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=6d23a9ae-875c-4a43-ad56-214e576ebd63
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 11:51:29 GMT
content-type: image/png
content-length: 5359
x-frame-options: SAMEORIGIN
expires: Tue, 4 Jun 2024 12:51:29 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 02:31:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| zimbra.mosir.lublin.pl/img/logo/favicon.ico | 193.93.70.123 | 200 OK | 1.2 kB |
URL GET HTTP/2zimbra.mosir.lublin.pl/img/logo/favicon.ico IP193.93.70.123:443
Requested byhttps://zimbra.mosir.lublin.pl/ CertificateIssuerUnizeto Technologies S.A. Subject*.mosir.lublin.pl Fingerprint72:7A:D7:75:0E:A9:E5:07:7E:DF:81:64:FE:67:E7:7F:F3:33:D0:45 ValidityThu, 28 Dec 2023 10:02:45 GMT - Fri, 27 Dec 2024 10:02:44 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash8c7d1c14e4b9c42f07bd6b800d93b806 87e49826ffb3bc1ddac38feebb6bb98eaef568b2 1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/logo/favicon.ico HTTP/1.1
Host: zimbra.mosir.lublin.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimbra.mosir.lublin.pl/
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=6d23a9ae-875c-4a43-ad56-214e576ebd63
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 11:51:29 GMT
content-type: image/x-icon
content-length: 1150
x-frame-options: SAMEORIGIN
expires: Tue, 4 Jun 2024 12:51:29 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 02:31:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.mosir.lublin.pl/upload/image/mosir_logo_male.png | 91.211.222.37 | 200 OK | 15 kB |
URL GET HTTP/2www.mosir.lublin.pl/upload/image/mosir_logo_male.png IP91.211.222.37:443 ASN#39566 Smarthost sp. z o.o.
Requested byhttps://zimbra.mosir.lublin.pl/ CertificateIssuerLet's Encrypt Subjectwww.mosir.lublin.pl Fingerprint4D:EC:A1:CD:82:52:AC:5D:89:4F:CF:80:CB:D9:F8:E8:43:80:02:6A ValidityMon, 15 Apr 2024 14:45:08 GMT - Sun, 14 Jul 2024 14:45:07 GMT
File typePNG image data, 200 x 90, 8-bit/color RGBA, non-interlaced Hash9353deaa760c21c87a30807509218290 1811fbf71f19ea5730dec8fafb15b8006775e84b 1126ea765cf2a728a214a9c4aaedc7186aa09cfe3a9fb604517a4b8c606a3e0d
GET /upload/image/mosir_logo_male.png HTTP/1.1
Host: www.mosir.lublin.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimbra.mosir.lublin.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=10368000,public
expires: Mon, 02 Sep 2024 11:51:29 GMT
content-type: image/png
last-modified: Fri, 13 Jan 2023 14:18:11 GMT
accept-ranges: bytes
content-length: 15178
date: Sun, 05 May 2024 11:51:29 GMT
server: Smarthost
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| | 193.93.70.123 | 200 OK | 22 kB |
URL User Request GET HTTP/2IP193.93.70.123:443
CertificateIssuerUnizeto Technologies S.A. Subject*.mosir.lublin.pl Fingerprint72:7A:D7:75:0E:A9:E5:07:7E:DF:81:64:FE:67:E7:7F:F3:33:D0:45 ValidityThu, 28 Dec 2023 10:02:45 GMT - Fri, 27 Dec 2024 10:02:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET / HTTP/1.1
Host: zimbra.mosir.lublin.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 11:51:29 GMT
content-type: text/html;charset=utf-8
x-frame-options: SAMEORIGIN
expires: -1
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
content-language: en-US
set-cookie: ZM_TEST=true; Secure
ZM_LOGIN_CSRF=6d23a9ae-875c-4a43-ad56-214e576ebd63; Secure; HttpOnly
x-ua-compatible: IE=edge
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| zimbra.mosir.lublin.pl/img/new-back-ground-image.png | 193.93.70.123 | 200 OK | 142 kB |
URL GET HTTP/2zimbra.mosir.lublin.pl/img/new-back-ground-image.png IP193.93.70.123:443
Requested byhttps://zimbra.mosir.lublin.pl/ CertificateIssuerUnizeto Technologies S.A. Subject*.mosir.lublin.pl Fingerprint72:7A:D7:75:0E:A9:E5:07:7E:DF:81:64:FE:67:E7:7F:F3:33:D0:45 ValidityThu, 28 Dec 2023 10:02:45 GMT - Fri, 27 Dec 2024 10:02:44 GMT
File typePNG image data, 1440 x 1024, 8-bit colormap, non-interlaced Size142 kB (141674 bytes) Hash5a09af857512a874f5e2a6e01b80742b 8c87bcfd42ee8fab57f08c3664abd1424e608b6a 18b729cd6f3dd2b5657c1680e1388b825dc2c2d1e732e03478006714ac7ebc2d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/new-back-ground-image.png HTTP/1.1
Host: zimbra.mosir.lublin.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimbra.mosir.lublin.pl/css/common,login,zhtml,skin.css?skin=harmony&v=240217024957
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=6d23a9ae-875c-4a43-ad56-214e576ebd63
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 11:51:29 GMT
content-type: image/png
content-length: 141674
x-frame-options: SAMEORIGIN
expires: Tue, 4 Jun 2024 12:51:29 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 02:31:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|