| | 178.33.47.185 | 200 OK | 138 B |
URL User Request GET HTTP/2IP178.33.47.185:443
CertificateIssuerGandi Subjectmail.3techmail.net Fingerprint3B:AA:70:DF:38:8B:9D:01:0E:C9:DA:EF:79:1F:71:19:53:9E:6C:B1 ValidityTue, 02 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET / HTTP/1.1
Host: mail.3techmail.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Fri, 26 Apr 2024 09:24:10 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Location: https://mail.3techmail.net/
|
|
| mail.3techmail.net/css/common,login,zhtml,skin.css?skin=harmony&v=240217020942 | 178.33.47.185 | 200 OK | 155 kB |
URL GET HTTP/2mail.3techmail.net/css/common,login,zhtml,skin.css?skin=harmony&v=240217020942 IP178.33.47.185:443
Requested byhttps://mail.3techmail.net/ CertificateIssuerGandi Subjectmail.3techmail.net Fingerprint3B:AA:70:DF:38:8B:9D:01:0E:C9:DA:EF:79:1F:71:19:53:9E:6C:B1 ValidityTue, 02 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Size155 kB (154960 bytes) Hashdb4f76f47d129f8814cdb584eb1d70e3 44590bf27f23177d7fbffb2051eed88d57d00f74 74c994a1891b8aa97053c24823ca9db0e2ab5088a4d0f3993fe031f214041719
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /css/common,login,zhtml,skin.css?skin=harmony&v=240217020942 HTTP/1.1
Host: mail.3techmail.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.3techmail.net/
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=d084b752-4f00-4745-b3c1-9d40460a6399
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:24:18 GMT
content-type: text/css
x-frame-options: SAMEORIGIN
expires: Sun, 26 May 2024 10:24:18 GMT
cache-control: public, max-age=2595600
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| | 178.33.47.185 | 200 OK | 11 kB |
URL User Request GET HTTP/2IP178.33.47.185:443
CertificateIssuerGandi Subjectmail.3techmail.net Fingerprint3B:AA:70:DF:38:8B:9D:01:0E:C9:DA:EF:79:1F:71:19:53:9E:6C:B1 ValidityTue, 02 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Hashc0f00662414b43a8128887ad6830a61a d1baeb5e494e5c6ea5d55a2f4af9ad6c46ea1128 9311217650f7017f9851238eb21b716363713ac5d5f3f2db7e972c09ae2174f0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET / HTTP/1.1
Host: mail.3techmail.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:24:18 GMT
content-type: text/html;charset=utf-8
x-frame-options: SAMEORIGIN
expires: -1
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
content-language: en-US
set-cookie: ZM_TEST=true
ZM_LOGIN_CSRF=d084b752-4f00-4745-b3c1-9d40460a6399; HttpOnly
x-ua-compatible: IE=edge
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mail.3techmail.net/img/logo/favicon.ico | 178.33.47.185 | 200 OK | 1.2 kB |
URL GET HTTP/2mail.3techmail.net/img/logo/favicon.ico IP178.33.47.185:443
Requested byhttps://mail.3techmail.net/ CertificateIssuerGandi Subjectmail.3techmail.net Fingerprint3B:AA:70:DF:38:8B:9D:01:0E:C9:DA:EF:79:1F:71:19:53:9E:6C:B1 ValidityTue, 02 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash8c7d1c14e4b9c42f07bd6b800d93b806 87e49826ffb3bc1ddac38feebb6bb98eaef568b2 1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/logo/favicon.ico HTTP/1.1
Host: mail.3techmail.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.3techmail.net/
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=d084b752-4f00-4745-b3c1-9d40460a6399
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:24:18 GMT
content-type: image/x-icon
content-length: 1150
x-frame-options: SAMEORIGIN
expires: Sun, 26 May 2024 10:24:18 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 01:44:54 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.3tech-informatique.fr/wp-content/uploads/2022/02/pixlr-bg-result-1.png | 92.222.139.156 | 200 OK | 16 kB |
URL GET HTTP/2www.3tech-informatique.fr/wp-content/uploads/2022/02/pixlr-bg-result-1.png IP92.222.139.156:443
Requested byhttps://mail.3techmail.net/ CertificateIssuerLet's Encrypt Subject3tech-informatique.fr Fingerprint82:28:E9:2E:EF:87:7E:19:B1:D5:08:59:0E:B3:91:13:D3:BE:D0:91 ValidityFri, 29 Mar 2024 00:14:19 GMT - Thu, 27 Jun 2024 00:14:18 GMT
File typePNG image data, 185 x 60, 8-bit/color RGBA, non-interlaced Hashccb803f8dfeb83adab4b630a0f1928b7 06ce0c56408011df020592b43e467bf64625a35b ba8b0112dc203d907d0ae0675f9714f5254bfcb27e1b3b54a8a6794d85aa9c22
GET /wp-content/uploads/2022/02/pixlr-bg-result-1.png HTTP/1.1
Host: www.3tech-informatique.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.3techmail.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 09:24:18 GMT
content-type: image/png
content-length: 15797
server: Apache
last-modified: Wed, 23 Feb 2022 21:30:26 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Fri, 26 Apr 2024 09:39:18 GMT
X-Firefox-Spdy: h2
|
|
| | 178.33.47.185 | 200 OK | 14 kB |
URL User Request GET HTTP/2IP178.33.47.185:443
CertificateIssuerGandi Subjectmail.3techmail.net Fingerprint3B:AA:70:DF:38:8B:9D:01:0E:C9:DA:EF:79:1F:71:19:53:9E:6C:B1 ValidityTue, 02 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
File typegzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT) Hash8b0044ce65bc9e1a7b4a5919f8d85578 62dae85b9029238b6ef2315c4a24dbe9d84d0c9f cd7251cfc2f25dcedcebb881c4b5b3be63f15f0b3b692a523da9e807d29d6a8e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET / HTTP/1.1
Host: mail.3techmail.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:24:18 GMT
content-type: text/html;charset=utf-8
x-frame-options: SAMEORIGIN
expires: -1
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
content-language: en-US
set-cookie: ZM_TEST=true
ZM_LOGIN_CSRF=7cef491a-b78c-4bdc-865a-dd860cf919a3; HttpOnly
x-ua-compatible: IE=edge
vary: User-Agent, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mail.3techmail.net/img/new-back-ground-image.png | 178.33.47.185 | 200 OK | 142 kB |
URL GET HTTP/2mail.3techmail.net/img/new-back-ground-image.png IP178.33.47.185:443
Requested byhttps://mail.3techmail.net/ CertificateIssuerGandi Subjectmail.3techmail.net Fingerprint3B:AA:70:DF:38:8B:9D:01:0E:C9:DA:EF:79:1F:71:19:53:9E:6C:B1 ValidityTue, 02 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
File typePNG image data, 1440 x 1024, 8-bit colormap, non-interlaced Size142 kB (141674 bytes) Hash5a09af857512a874f5e2a6e01b80742b 8c87bcfd42ee8fab57f08c3664abd1424e608b6a 18b729cd6f3dd2b5657c1680e1388b825dc2c2d1e732e03478006714ac7ebc2d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/new-back-ground-image.png HTTP/1.1
Host: mail.3techmail.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.3techmail.net/css/common,login,zhtml,skin.css?skin=harmony&v=240217020942
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=d084b752-4f00-4745-b3c1-9d40460a6399
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:24:18 GMT
content-type: image/png
content-length: 141674
x-frame-options: SAMEORIGIN
expires: Sun, 26 May 2024 10:24:18 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 01:44:54 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mail.3techmail.net/img/questionMark.png | 178.33.47.185 | 200 OK | 5.4 kB |
URL GET HTTP/2mail.3techmail.net/img/questionMark.png IP178.33.47.185:443
Requested byhttps://mail.3techmail.net/ CertificateIssuerGandi Subjectmail.3techmail.net Fingerprint3B:AA:70:DF:38:8B:9D:01:0E:C9:DA:EF:79:1F:71:19:53:9E:6C:B1 ValidityTue, 02 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
File typePNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced Hash5d496d46fe9801cf0e92af8337b3b6af 6f9e34028d56b0229759aad8dab4f0c30be30a7e 395b89ffffb5b6ea44d2933531396f8d2ae8ff84bae554a1c245d0777af59034
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Zimbra Web Client |
GET /img/questionMark.png HTTP/1.1
Host: mail.3techmail.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.3techmail.net/css/common,login,zhtml,skin.css?skin=harmony&v=240217020942
Cookie: ZM_TEST=true; ZM_LOGIN_CSRF=d084b752-4f00-4745-b3c1-9d40460a6399
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 09:24:18 GMT
content-type: image/png
content-length: 5359
x-frame-options: SAMEORIGIN
expires: Sun, 26 May 2024 10:24:18 GMT
cache-control: public, max-age=2595600
last-modified: Sat, 17 Feb 2024 01:44:54 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|