| zimtendernotices.co.zw/login.html |  81.19.215.20 | 200 OK | 4.3 kB |
URL User Request GET HTTP/2zimtendernotices.co.zw/login.html IP81.19.215.20:443 ASN#25369 Hydra Communications Ltd
CertificateIssuerLet's Encrypt Subjectzimtendernotices.co.zw Fingerprint69:36:C8:25:9A:4E:89:EC:D6:56:E8:C8:C2:C2:88:AC:01:C5:E3:26 ValiditySun, 14 Apr 2024 10:01:20 GMT - Sat, 13 Jul 2024 10:01:19 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (815) Hash29b66ad96f4684aeb3cdc8cd7b4eab06 6b869907b207e357b9155c2685580cf353293775 f050a0cf90fb7d0416a83d6be56011c54d02013519ae9fc6fb38c4bb4793d0d0
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | PayPal Inc. |
GET /login.html HTTP/1.1
Host: zimtendernotices.co.zw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
last-modified: Sun, 14 Apr 2024 14:16:46 GMT
etag: "3064-661be54e-465aa01444e1958d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4281
date: Tue, 16 Apr 2024 03:57:45 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/images/shared/glyph_alert_critical_big-2x.png |  151.101.2.133 | 200 OK | 1.7 kB |
URL GET HTTP/2www.paypalobjects.com/images/shared/glyph_alert_critical_big-2x.png IP151.101.2.133:443
Requested byhttps://zimtendernotices.co.zw/login.html CertificateIssuerDigiCert Inc Subjectwww.paypalobjects.com Fingerprint70:76:C6:51:A3:AA:3B:B3:0D:B5:6D:59:0A:A0:91:B9:3D:A8:1D:10 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typePNG image data, 224 x 200, 8-bit colormap, non-interlaced Hash01f70242c93a7a45b8fd6ee1a56aba6b 396950270473fe9149c24a251885f7ed7efd6134 4b16c98214d45bedb1513b7fd53a02ce204f6a2091a920c3122fb213168c3139
GET /images/shared/glyph_alert_critical_big-2x.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimtendernotices.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
dc: ccg11-origin-www-1.paypal.com
etag: "06e7g2A2uh9gOtrAR/AAX1pvXevadwBfhbhh/bNOQEI"
fastly-io-info: ifsz=5828 idim=224x200 ifmt=png ofsz=1709 odim=224x200 ofmt=png
fastly-io-served-by: vpop-haf2300707
fastly-stats: io=1
paypal-debug-id: 016e0ab1747d7
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000016e0ab1747d7-a53362588b87ad4b-01
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 16 Apr 2024 03:57:46 GMT
x-served-by: cache-sjc10058-SJC, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 11327, 3394
x-timer: S1713239866.149009,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 1709
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/images/shared/icon-PN-check.png | 151.101.2.133 | 200 OK | 1.2 kB |
URL GET HTTP/2www.paypalobjects.com/images/shared/icon-PN-check.png IP151.101.2.133:443
Requested byhttps://zimtendernotices.co.zw/login.html CertificateIssuerDigiCert Inc Subjectwww.paypalobjects.com Fingerprint70:76:C6:51:A3:AA:3B:B3:0D:B5:6D:59:0A:A0:91:B9:3D:A8:1D:10 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typePNG image data, 121 x 133, 8-bit colormap, non-interlaced Hash4014dbe27b6642b8539a8220a59a518f 193e344cf36dd9bd88b6b691e32089078b14a4e7 d2847bea03b68a100caf41aca4d972b58368b4ee956ab13dde15963d905d7c24
GET /images/shared/icon-PN-check.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimtendernotices.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
dc: ccg11-origin-www-1.paypal.com
etag: "juRbjo28Q9q7Ca+T2l9coQ3XNXGGGPrTLd30UBTHy+M"
fastly-io-info: ifsz=2236 idim=121x133 ifmt=png ofsz=1238 odim=121x133 ofmt=png
fastly-io-served-by: vpop-haf2300710
fastly-stats: io=1
paypal-debug-id: 21ccfda19d674
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000021ccfda19d674-94cdccbf21580c30-01
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 16 Apr 2024 03:57:46 GMT
x-served-by: cache-sjc10049-SJC, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 11197, 3384
x-timer: S1713239866.149232,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 1238
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/web/res/064/b5db45519f3ee9cacb3b28ada1570/css/contextualLogin.css | 151.101.2.133 | 200 OK | 12 kB |
URL GET HTTP/2www.paypalobjects.com/web/res/064/b5db45519f3ee9cacb3b28ada1570/css/contextualLogin.css IP151.101.2.133:443
Requested byhttps://zimtendernotices.co.zw/login.html CertificateIssuerDigiCert Inc Subjectwww.paypalobjects.com Fingerprint70:76:C6:51:A3:AA:3B:B3:0D:B5:6D:59:0A:A0:91:B9:3D:A8:1D:10 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashbe6f08846b0b79a26a0cbab89dc3f550 c3aa52f96802bd94008382420a6c6a3f983b6911 eecbb49d86d66528fc95012be4e808257ac8ae1602c98b921dac511697dc849f
GET /web/res/064/b5db45519f3ee9cacb3b28ada1570/css/contextualLogin.css HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimtendernotices.co.zw/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-headers: x-csrf-token
content-encoding: br
content-type: text/css
etag: W/"5b2b5150-11ef4"
expires: Tue, 15 Apr 2025 16:07:41 GMT
last-modified: Thu, 21 Jun 2018 07:18:40 GMT
paypal-debug-id: 93d4bba85e5ab
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000093d4bba85e5ab-e8604b4e07673490-01
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 16 Apr 2024 03:57:46 GMT
x-served-by: cache-sjc1000146-SJC, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 5, 0
x-timer: S1713239866.148916,VS0,VE1
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET
strict-transport-security: max-age=31557600
content-length: 12060
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/images/shared/paypal-logo-129x32.svg | 151.101.2.133 | 200 OK | 1.8 kB |
URL GET HTTP/2www.paypalobjects.com/images/shared/paypal-logo-129x32.svg IP151.101.2.133:443
Requested byhttps://zimtendernotices.co.zw/login.html CertificateIssuerDigiCert Inc Subjectwww.paypalobjects.com Fingerprint70:76:C6:51:A3:AA:3B:B3:0D:B5:6D:59:0A:A0:91:B9:3D:A8:1D:10 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash0d105318575ea6a4fc653aa8290a3410 b8ef6c644ffdb3983c518014bc4c0ff4317a011b b3cc50b9e94bbecaaeb1079b64b8ca50616d1732824964c1cc2c5422627a0ec5
GET /images/shared/paypal-logo-129x32.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.paypalobjects.com/web/res/064/b5db45519f3ee9cacb3b28ada1570/css/contextualLogin.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-encoding: br
content-type: image/svg+xml
etag: W/"544ad849-1351"
last-modified: Fri, 24 Oct 2014 22:52:57 GMT
paypal-debug-id: f12b115748a58
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000f12b115748a58-fcf94a98bc279ae1-01
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 16 Apr 2024 03:57:46 GMT
x-served-by: cache-sjc10060-SJC, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 3572, 51
x-timer: S1713239866.275960,VS0,VE0
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
access-control-allow-origin: *
strict-transport-security: max-age=31557600
content-length: 1795
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/webstatic/icon/pp64.png | 151.101.2.133 | 200 OK | 1.7 kB |
URL GET HTTP/2www.paypalobjects.com/webstatic/icon/pp64.png IP151.101.2.133:443
Requested byhttps://zimtendernotices.co.zw/login.html CertificateIssuerDigiCert Inc Subjectwww.paypalobjects.com Fingerprint70:76:C6:51:A3:AA:3B:B3:0D:B5:6D:59:0A:A0:91:B9:3D:A8:1D:10 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typePNG image data, 64 x 64, 8-bit/color RGB, non-interlaced Hashde1ba89339f0a1addf3aaa930cd3e461 d29ffd216b865aa95798758aaccbed3a654139c3 af0887bb94e12e0bfc49f20335693e68b43c993885d6f1cf95d3830ce88565c0
GET /webstatic/icon/pp64.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimtendernotices.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
dc: ccg11-origin-www-1.paypal.com
etag: "BBNvPbdpaauRT+iiW9NBzqhT2loQNLSTf5XNX6l5j+0"
fastly-io-info: ifsz=4518 idim=64x64 ifmt=png ofsz=1745 odim=64x64 ofmt=png
fastly-io-served-by: vpop-haf2300707
fastly-stats: io=1
paypal-debug-id: cd2220b27e741
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000cd2220b27e741-432dc7412f795b03-01
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 16 Apr 2024 03:57:46 GMT
x-served-by: cache-sjc10060-SJC, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 37755, 892
x-timer: S1713239866.294762,VS0,VE0
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET
strict-transport-security: max-age=31557600
content-length: 1745
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/en_US/i/icon/pp_favicon_x.ico | 151.101.2.133 | | 1.3 kB |
URL GET www.paypalobjects.com/en_US/i/icon/pp_favicon_x.ico IP151.101.2.133:0
Requested byhttps://zimtendernotices.co.zw/login.html CertificateIssuerDigiCert Inc Subjectwww.paypalobjects.com Fingerprint70:76:C6:51:A3:AA:3B:B3:0D:B5:6D:59:0A:A0:91:B9:3D:A8:1D:10 ValidityTue, 05 Sep 2023 00:00:00 GMT - Sat, 05 Oct 2024 23:59:59 GMT
File typeMS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel Hashe1528b5176081f0ed963ec8397bc8fd3 ff60afd001e924511e9b6f12c57b6bf26821fc1e 1690c4e20869c3763b7fc111e2f94035b0a7ee830311dd680ac91421daad3667
GET /en_US/i/icon/pp_favicon_x.ico HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zimtendernotices.co.zw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-encoding: br
content-type: image/x-icon
etag: W/"5d5637bd-1536"
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: 6d98cc85e301b
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000006d98cc85e301b-2bf33039ca91c917-01
dc: ccg11-origin-www-1.paypal.com
log-timing: fetch=77391,misspass=84,do_stream=0
log-origin: ip=173.0.87.52,port=443,name=F_ccg14_wju_origin_www_1_paypal_com,status=200,reason=OK,method=GET,url="/en_US/i/icon/pp_favicon_x.ico",host=www.paypalobjects.com,shield=SJC,src_ip=157.52.96.33,alternate_path=0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 16 Apr 2024 03:57:46 GMT
x-served-by: cache-sjc10033-SJC, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 13196, 2518
x-timer: S1713239866.295340,VS0,VE0
vary: Accept-Encoding, Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 1309
X-Firefox-Spdy: h2
|
|