| eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html | 51.91.236.255 | 200 OK | 5.7 kB |
URL User Request GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html IP51.91.236.255:80
File typeHTML document, Unicode text, UTF-8 text, with very long lines (3354) Hash9d4069ed4b3c75b3751a558b56ab1cc5 30742cc28c3431db49065f2bd3d5fe5ac00a9f19 24b646367370fcabf7b7ad736c44843de442d37e140a8b3a50cd5a23bd928f2b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/index.html HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:48 GMT
content-type: text/html
content-length: 5700
server: Apache
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3AA0_335BECFF:0050_66235EFC_12450:1FE8
x-iplb-instance: 52463
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js | 104.17.24.14 | 200 OK | 2.3 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js IP104.17.24.14:443
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash1cdeafe84120b621dcd953592a94c998 cedacae8a3b765d2d905a5c51769027733ef6823 7ef14a1e070a6a2ec9ff44ccf5e923cb2a460c5861a3db8a9ae1e21557d27020
GET /ajax/libs/jquery.maskedinput/1.4.1/jquery.maskedinput.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 06:21:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 2306
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-284d"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5719388
expires: Thu, 10 Apr 2025 06:21:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x1m7CMuju8nAkQIDch4Me36e%2BNtHW7RtjqKHf2BzNXBVUjPBVEF7gTD8T9bypGvsb3A2uBeSp4t91p0JEAi19ZcFeVDzl7jhNDuxRtCzFJSgVmksbm90sXHZ5GlUPV81sAjgzygT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8773094cfee77128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/css/imp.css | 51.91.236.255 | 200 OK | 5.1 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/css/imp.css IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Hash947a5994dfd7a714460cde97053ae86b e678e4ee1b7d962d5c87d7ae135f19c1cb630f26 7d8431edc136b4e200908e6cc831fc76b035783ffe06e268d2b804a3d6752ad1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/css/imp.css HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:48 GMT
content-type: text/css
content-length: 5109
server: Apache
last-modified: Mon, 11 Mar 2024 18:15:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:A995_335BECFF:0050_66235EFC_1246F:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/css/bootstrap-3.3.6.min.css | 51.91.236.255 | 200 OK | 21 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/css/bootstrap-3.3.6.min.css IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeASCII text, with very long lines (391) Hashf04e54df1fb5f28a93928829b73417a9 e80876d45f16c872793494a9e6b499e9217ede60 4d2c6e795bd471a817829599ce1fc2c3296f993eac0b39c454121c3837567857
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/css/bootstrap-3.3.6.min.css HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:48 GMT
content-type: text/css
content-length: 21404
server: Apache
last-modified: Mon, 11 Mar 2024 18:15:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3AA0_335BECFF:0050_66235EFC_12468:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/css/autentification.css | 51.91.236.255 | 200 OK | 3.8 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/css/autentification.css IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Hashb5fe776a13a5620b83ed4591f8a3107c a1569177aadb15939c931473724cfda68612f02b 6a1681693e87fdf1c9fd9a0a6b493b376f79ef73e093bc4587f11eca0392bc91
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/css/autentification.css HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:48 GMT
content-type: text/css
content-length: 3793
server: Apache
last-modified: Mon, 11 Mar 2024 18:15:21 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:AE9B_335BECFF:0050_66235EFC_1C44B:4921
x-iplb-instance: 52490
|
|
| eimcjzv.cluster029.hosting.ovh.net/templates/js/jquery-1.11.3.min.js | 51.91.236.255 | 404 Not Found | 196 B |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/templates/js/jquery-1.11.3.min.js IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /templates/js/jquery-1.11.3.min.js HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Sat, 20 Apr 2024 06:21:48 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:3FAE_335BECFF:0050_66235EFC_12471:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/templates/js/bootstrap.min.js | 51.91.236.255 | 404 Not Found | 196 B |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/templates/js/bootstrap.min.js IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /templates/js/bootstrap.min.js HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Sat, 20 Apr 2024 06:21:48 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:A8C6_335BECFF:0050_66235EFC_B491:5569
x-iplb-instance: 52364
|
|
| eimcjzv.cluster029.hosting.ovh.net/templates/js/auth.js | 51.91.236.255 | 404 Not Found | 196 B |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/templates/js/auth.js IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /templates/js/auth.js HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:A995_335BECFF:0050_66235EFD_12475:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/jquery-3.1.0.min.js | 51.91.236.255 | 200 OK | 30 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/jquery-3.1.0.min.js IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeJavaScript source, ASCII text, with very long lines (32014) Hash05e51b1db558320f1939f9789ccf5c8f c72c1735b4d903d90dd51225ebefb8c74ebbc51f 702b9e051e82b32038ffdb33a4f7eb5f7b38f4cf6f514e4182d8898f4eb0b7fb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/jquery-3.1.0.min.js HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:48 GMT
content-type: application/javascript
content-length: 30029
server: Apache
last-modified: Mon, 11 Mar 2024 18:10:43 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:F0AE_335BECFF:0050_66235EFC_B48C:5569
x-iplb-instance: 52364
|
|
| eimcjzv.cluster029.hosting.ovh.net/templates/js/urls.js | 51.91.236.255 | 404 Not Found | 196 B |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/templates/js/urls.js IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /templates/js/urls.js HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:3AA0_335BECFF:0050_66235EFD_12476:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/5.gif | 51.91.236.255 | 200 OK | 1.8 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/5.gif IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeGIF image data, version 89a, 118 x 40 Hashd6621df34ea2eadd541830ee370ea10f d651d11e6622cb873489cca89fdce44b421a9a0d 58b70b4cdcb982be2ab0d89312bb4b1f8596c2294392983aba048cc046acc7c5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/5.gif HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/gif
content-length: 1843
server: Apache
last-modified: Mon, 11 Mar 2024 18:10:43 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:F0AE_335BECFF:0050_66235EFD_B49F:5569
x-iplb-instance: 52364
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/info.png | 51.91.236.255 | 200 OK | 3.2 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/info.png IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typePNG image data, 107 x 105, 8-bit/color RGBA, non-interlaced Hash8586605c7e823e4c6c088954c90d1290 56aff3bdeaa37d2d0cbe800edc2a63c22c745e98 b16fbbc475f7128aa28ed91bc59e48517a580ca486ef5a4836e240e62224cc61
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/info.png HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/png
content-length: 3158
server: Apache
last-modified: Mon, 11 Mar 2024 18:10:39 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:A995_335BECFF:0050_66235EFD_1247B:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/1.gif | 51.91.236.255 | 200 OK | 2.8 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/1.gif IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeGIF image data, version 89a, 124 x 28 Hash0d050fd3d35da175a6129a21030e78aa 09ee6a15ede6919de054fde434e9398684d48e2b 3b5b95ee14d3c3e64158175050be929c9fb2612a1c003df388d62af47a4c3e37
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/1.gif HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/gif
content-length: 2812
server: Apache
last-modified: Mon, 11 Mar 2024 18:10:44 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:AE9B_335BECFF:0050_66235EFD_1C454:4921
x-iplb-instance: 52490
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/4.gif | 51.91.236.255 | 200 OK | 3.4 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/4.gif IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeGIF image data, version 89a, 143 x 45 Hash559e49c09cad7db6d103fbaf08be4d51 19236601f16bb32cfa38a65c991f9de4a528c826 9d0567e661cf2d5205acaaec1a0c7dfee24f48af2d56a56212c1b4db1ab88b60
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/4.gif HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/gif
content-length: 3357
server: Apache
last-modified: Mon, 11 Mar 2024 18:10:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:3AA0_335BECFF:0050_66235EFD_1247C:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/2.gif | 51.91.236.255 | 200 OK | 2.9 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/2.gif IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeGIF image data, version 89a, 138 x 25 Hashae43f701c156c678e3124853049bcd1d 0875ffacc52951f87e0b6d50578cbd4e5c1da976 f4f598b5fc93817de8bdd76013d28b4c092b8f139be116e625d046e3b3b9be30
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/2.gif HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/gif
content-length: 2866
server: Apache
last-modified: Mon, 11 Mar 2024 18:10:43 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:3FAE_335BECFF:0050_66235EFD_1247A:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/3.jpg | 51.91.236.255 | 200 OK | 7.1 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/3.jpg IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x45, components 3 Hash0e2048acf0519d2c005209f8146edfca e80d85ad5b49404bbc97e09652c79f3eb988fc90 2e3c000bb11b035e1a6bfe511338a7877fdc67f5c51a5ff29394e4d3735b36df
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/3.jpg HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/jpeg
content-length: 7110
server: Apache
last-modified: Mon, 11 Mar 2024 18:15:11 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:A8C6_335BECFF:0050_66235EFD_B49E:5569
x-iplb-instance: 52364
|
|
| eimcjzv.cluster029.hosting.ovh.net/templates/images/Miniballs.gif | 51.91.236.255 | 404 Not Found | 196 B |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/templates/images/Miniballs.gif IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /templates/images/Miniballs.gif HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:F0AE_335BECFF:0050_66235EFD_B4A7:5569
x-iplb-instance: 52364
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/images/fermer.svg | 51.91.236.255 | 200 OK | 1.8 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/images/fermer.svg IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeSVG Scalable Vector Graphics image Hashc2a9168d032fcd7c8a0f8f015b10d211 8376d9a7c74b0b3ba4cbfde3658cf893a4cce7ec bd41f1926d21d2cdcc4522c7d6ad6348e4f79230f97dc81910486b633fc98c23
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/images/fermer.svg HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/svg+xml
content-length: 1757
server: Apache
last-modified: Mon, 11 Mar 2024 18:15:39 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:A995_335BECFF:0050_66235EFD_12480:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/templates/js/jquery-1.11.3.min.js | 51.91.236.255 | 404 Not Found | 196 B |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/templates/js/jquery-1.11.3.min.js IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /templates/js/jquery-1.11.3.min.js HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:F0AE_335BECFF:0050_66235EFD_B4B5:5569
x-iplb-instance: 52364
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/cccc.png | 51.91.236.255 | 200 OK | 7.8 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/cccc.png IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typePNG image data, 55 x 507, 8-bit/color RGBA, non-interlaced Hash8bda2d7b97b6f8e0e22ac3dea5ceabde bead36f3d40436c8c97308f9ea81642be76061e3 b31e9d9ddfdc36396eada91eb3eeff90f73c3d4b7ab21fdfb964cace1b4af1e6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/cccc.png HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/png
content-length: 7760
server: Apache
last-modified: Tue, 12 Mar 2024 01:28:10 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:A995_335BECFF:0050_66235EFD_12493:1FE8
x-iplb-instance: 52463
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/crypt.png | 51.91.236.255 | 200 OK | 1.7 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/crypt.png IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashea95eb09b8c19a4c25a880032eb8f464 e2e6426050286522363461b4ce8267035b46574d c6fc8dcbd9126717ca5e8d792c6dcdf5d7aa4823b2a0445d14db1fad8d0a8f90
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/crypt.png HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/png
content-length: 1699
server: Apache
last-modified: Tue, 12 Mar 2024 01:28:09 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:AE9B_335BECFF:0050_66235EFD_1C46A:4921
x-iplb-instance: 52490
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/css/Logo-Marianne_impots-gouv-fr.svg | 51.91.236.255 | 200 OK | 81 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/css/Logo-Marianne_impots-gouv-fr.svg IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeSVG Scalable Vector Graphics image Hash3c0d1b535d0fdd72a020184d2396e8ac dcca62d6b1f777c5559e8ffee23427b974568599 f1189f7e91a2ee383d2734b0cd93183d5e4ec58ec6ae696ee836ab0c23e83cb1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/css/Logo-Marianne_impots-gouv-fr.svg HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/css/autentification.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/svg+xml
content-length: 81302
server: Apache
last-modified: Mon, 11 Mar 2024 18:15:37 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:A8C6_335BECFF:0050_66235EFD_B4B7:5569
x-iplb-instance: 52364
|
|
| eimcjzv.cluster029.hosting.ovh.net/templates/js/bootstrap.min.js | 51.91.236.255 | 404 Not Found | 196 B |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/templates/js/bootstrap.min.js IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /templates/js/bootstrap.min.js HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:F0AE_335BECFF:0050_66235EFD_B4C6:5569
x-iplb-instance: 52364
|
|
| eimcjzv.cluster029.hosting.ovh.net/templates/js/auth.js | 51.91.236.255 | 404 Not Found | 196 B |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/templates/js/auth.js IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /templates/js/auth.js HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:A8C6_335BECFF:0050_66235EFD_B4CE:5569
x-iplb-instance: 52364
|
|
| eimcjzv.cluster029.hosting.ovh.net/templates/js/urls.js | 51.91.236.255 | 404 Not Found | 196 B |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/templates/js/urls.js IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeHTML document, ASCII text Hash62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /templates/js/urls.js HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:A8C6_335BECFF:0050_66235EFD_B4D4:5569
x-iplb-instance: 52364
|
|
| cfspart.impots.gouv.fr/templates/images/Cadenas.svg | 145.242.11.212 | 200 OK | 2.4 kB |
URL GET HTTP/1.1cfspart.impots.gouv.fr/templates/images/Cadenas.svg IP145.242.11.212:443
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html CertificateIssuerDHIMYOTIS Subjectcfsfc.impots.gouv.fr Fingerprint33:DB:A0:CB:FD:A4:99:2A:6A:E4:58:63:5C:8C:65:33:5D:C7:69:24 ValidityThu, 21 Mar 2024 23:00:00 GMT - Wed, 15 Jan 2025 22:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash85e53db5eca1e60b86ce3a5fb1a521a1 8b6a8081468f6b505401d129be915dbcc92eefbf 6287b87faa9499dab1b10e123f1032f691202ce7e9eaf2d6ba2d63b8b48b7e39
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency |
GET /templates/images/Cadenas.svg HTTP/1.1
Host: cfspart.impots.gouv.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=34560000; includeSubDomains
Date: Sat, 20 Apr 2024 06:21:49 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 04 Mar 2024 14:08:05 GMT
ETag: "2098-612d6411d3b40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Via: dpapusa106
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/svg+xml
|
|
| eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/favicon.ico | 51.91.236.255 | 200 OK | 2.2 kB |
URL GET HTTP/1.1eimcjzv.cluster029.hosting.ovh.net/clientfrz/templates/favicon.ico IP51.91.236.255:80
Requested byhttp://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
File typeMS Windows icon resource - 1 icon, 32x32, 8 bits/pixel Hash2f34a3977599611db24405c819cb116f 4568ce43171f2a05903b38462891cd064ecc32e2 dd57f113a2eaa7ba3e6b1c507d22910ecd42437f9fef9577cfb8f4719cde59aa
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - France Tax Agency | OpenPhish | phishing | DGI (French Tax Authority) | Quad9 DNS | malicious | Sinkholed |
GET /clientfrz/templates/favicon.ico HTTP/1.1
Host: eimcjzv.cluster029.hosting.ovh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://eimcjzv.cluster029.hosting.ovh.net/clientfrz/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Sat, 20 Apr 2024 06:21:49 GMT
content-type: image/x-icon
content-length: 2238
server: Apache
last-modified: Mon, 11 Mar 2024 18:10:36 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Sat, 20 Apr 2024 06:36:49 GMT
x-iplb-request-id: 5B5A2A9A:A8C6_335BECFF:0050_66235EFD_B4E5:5569
x-iplb-instance: 52364
|
|