[Abuse #QTWLXDCPBJ] Abusive use of your service ns504095.ip-198-27-65.net

Hello,

An abusive behaviour (Phishing) originating from your dedicated server ns504095.ip-198-27-65.net has been reported to or noticed by our Abuse Team.

Technical details showing the aforementioned problem follow :

— start of the technical details —

Cloudflare received a phishing report regarding:
clientboursoramas.com

Please be aware Cloudflare is a network provider offering a reverse proxy, pass-through security service. We are not a hosting provider. Cloudflare does not control the content of our customers.

The actual host for clientboursoramas.com are the following IP addresses. 198.27.65.47. Using the following command, you can confirm the site in question is hosted at that IP address: curl -v -H «Host: clientboursoramas.com» 198.27.65.47/

Below is the report we received:

Reporter: Anonymous
Reported URLs:

http://clientboursoramas.com/

Logs or Evidence of Abuse: Hello,

We have discovered a phishing attack located on your network:

http://clientboursoramas.com/ [104.21.58.17]

It is possible that this attack is being restricted so it is only visible from certain countries. Before deciding that the attack has been resolved please confirm it cannot be viewed from the following countries:
France

This attack targets our customer, Boursorama, website URL https://www.boursorama.com/.

Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?

Additionally, please keep the fraudulent content safe so that our customer and law enforcement agencies can investigate this incident further once the site is offline.

More information about the detected issue is provided at https://incident.netcraft.com/9fd3b1f0b21b/

Many thanks,

Netcraft

Phone: +44(0)1225 447500
Fax: +44(0)1225 448600
Netcraft Issue Number: 38402794


Please address this issue with your customer.

Regards,

Cloudflare Trust & Safety


———-
Cloudflare received a phishing report regarding:
clientboursoramas.com

Please be aware Cloudflare is a network provider offering a reverse proxy, pass-through security service. We are not a hosting provider. Cloudflare does not control the content of our customers.

The actual host for clientboursoramas.com are the following IP addresses. 198.27.65.47. Using the following command, you can confirm the site in question is hosted at that IP address: curl -v -H «Host: clientboursoramas.com» 198.27.65.47/

Below is the report we received:

Reporter: Anonymous
Reported URLs:

http://clientboursoramas.com/

Logs or Evidence of Abuse: Hello,

We have discovered a phishing attack located on your network:

http://clientboursoramas.com/ [104.21.58.17]

It is possible that this attack is being restricted so it is only visible from certain countries. Before deciding that the attack has been resolved please confirm it cannot be viewed from the following countries:
France

This attack targets our customer, Boursorama, website URL https://www.boursorama.com/.

Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?

Additionally, please keep the fraudulent content safe so that our customer and law enforcement agencies can investigate this incident further once the site is offline.

More information about the detected issue is provided at https://incident.netcraft.com/9fd3b1f0b21b/

Many thanks,

Netcraft

Phone: +44(0)1225 447500
Fax: +44(0)1225 448600
Netcraft Issue Number: 38402794


Please address this issue with your customer.

Regards,

Cloudflare Trust & Safety


———-
— end of the technical details —

Your should investigate and fix this problem, as it constitutes a violation to our terms of service.

Please answer to this e-mail indicating which measures you’ve taken to stop the abusive behaviour.

Cordially,

The OVHcloud Trust & Safety team.

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *