Report - git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login.php

Report Overview

Submitted URL
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login.php
IP
185.178.208.182
ASN
#57724 Ddos-guard Ltd
Submitted
2023-05-07 04:00:59
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
firehose.us-west-2.amazonaws.com	5730	2005-08-18	2017-01-30	2023-05-06	2.8 kB	1.9 kB	35.89.72.106
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net	unknown	2017-06-28	2023-05-07	2023-05-07	11 kB	1.3 MB	185.178.208.182
sentry.io	2743	2012-04-07	2016-08-31	2023-05-06	696 B	440 B	35.188.42.15
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-05-06	680 B	2.0 kB	54.230.80.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/letsencrypt/global.css?1681972534
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/require.js?1683033466
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/theme/css/main.css?1683033466
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.css?1683033466
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/prototype.js?1683033466
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.min.js?1683033466
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/main.js?1683033466
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/vendors.js?1683033466
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/theme/images/logos/plesk/logo.svg
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/fonts/open-sans-600.woff2?098c0a7547a49b0ce57658f41c897ecd
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/fonts/open-sans-regular.woff2?e7777b3c2bb7ae4d50f3abe9ee4f1eb5
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/images/apple-touch-icon.png?1683033466
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/images/favicon.svg?1683033466
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login.php
2023-05-07	medium	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/prototype.js?1683033466	97 kB	2023-05-05	2024-04-14
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/prototype.js?1683033466 IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 04:36:43 Last Seen2024-04-14 17:55:47 Times Seen1427 Hash 4de59435135d8ae6dc14f52acf668ddc 02bf28a96acdd69e91220df00c1c169f5bcf43e4 1d65e7095cc038edc36920a9cc58ca42efe67db40448681355dd0698d4e621e4 Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/vendors.js?1683033466	1.5 MB	2023-05-05	2023-11-18
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/vendors.js?1683033466 IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 04:36:43 Last Seen2023-11-18 05:03:58 Times Seen339 Hash 153bb1a39f1c13d089d57419b8d6746b 0b3fe4fd7305af4d882329fc7fb17d608378c41f f89fd854e3eed24f602118b6d6b37d4e371ef60a5e0d4bc79aaa9fddb6f2a791 Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/main.js?1683033466	709 kB	2023-05-05	2023-11-18
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/main.js?1683033466 IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 04:36:43 Last Seen2023-11-18 05:03:58 Times Seen64 Hash 60942029fe72deff03fb20a1ca69ab62 6f0b4d405fd939ddfd504523594a66c175f5d488 1762e36c2c7c08ad57979dbe71a3eacd7a9b12c044cdcbae5d4a33c4c3981742 Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/notifier/global.js?1682145424	15 kB	2023-03-08	2023-10-15
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/notifier/global.js?1682145424 IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:21:27 Last Seen2023-10-15 10:24:37 Times Seen1869 Hash 75017fa816a5cfab9fcecac0b84f9ed5 844ab1cfb5f24e43a0585ec4fa44053376a4d13c dd22b0163452cdeb3545cfa50dd2e2bcb9d37776b7d8a1a3a5bf73737332eddc Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/letsencrypt/global.js?1681972534	726 B	2023-03-07	2024-04-17
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/letsencrypt/global.js?1681972534 IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:39 Last Seen2024-04-17 18:18:36 Times Seen1346 Hash 4acc4592b2dce096cae6507c3eb1ee40 aaddedad4e54fd1a00a8d1df7becfb212393e414 02cc6928e5d72c61fbc379087a5ce4d29262a281c457aecebe86bbfb4a136af5 Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php	196 B	2023-05-05	2023-11-18
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-05 04:36:43 Last Seen2023-11-18 05:03:58 Times Seen63 Hash 282f41c9560e952c6eb3f48027a0f6c6 acd96fb8f77016b048721d0bb77af6a87cd676db 7cee29b6d99d308130dabd4501d20a9272f8eb39ea46a5d0f3f27695cfa76d45 Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.min.js?1683033466	510 kB	2023-05-05	2023-11-18
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.min.js?1683033466 IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 04:36:43 Last Seen2023-11-18 05:03:58 Times Seen333 Hash 3e61488ca74b9a630d6bad8c064efc79 312e15d890ad7d12326d39e1160aaa9984305269 2d82ecc9e2078e2359b0bb4823da42f35fb94d8dd7ac2eef146083fabe9c4bf2 Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/require.js?1683033466	18 kB	2023-03-07	2024-04-17
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/require.js?1683033466 IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:39 Last Seen2024-04-17 18:18:37 Times Seen2048 Hash 220acf7972072071438cc24778c255ff 590d02db4b7d2be0864a64efec3525e07a40e271 af09ac9bed074d089e213edb597d36acfe0ce46dfe9112f290776395fb61986d Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php	499 B	2023-05-07	2023-05-26
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-07 05:44:39 Last Seen2023-05-26 03:05:45 Times Seen3 Hash c650e77cb06e056600043b053312716c 261e1ce036726ec411639be6685230c16b7b4bbb 424564f5b407fe6730fc14772f8a720dc3bb4315d92cc94bd0e33ab7dedf8d85 Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php	51 B	2023-03-08	2024-04-17
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 15:21:27 Last Seen2024-04-17 18:18:36 Times Seen1072 Hash 4ba9671892ee40ef730a9de509f739aa fb9d10e170d9e076a15dafcc6f6c72c7e6dea4e9 89e0312bdb2d175a6b1fe8e30843f86a88f45354029b304c48baa69a776df696 Loading...

	git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php	16 kB	2023-05-07	2023-05-07
Pretty URL git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php IP 185.178.208.182 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-07 05:44:39 Last Seen2023-05-07 06:01:00 Times Seen2 Hash 7c6e2e140ea03282a3ef4ddebcf00170 5681e79ba21e5a4a33c5527563a600b9656890d7 3bbf568c2620020e6002ab303f3cc1c9ce8db997e0ab6d0ed5562b68a56e16c6 Loading...

HTTP Transactions (24)

URL IP Response Size

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/letsencrypt/global.css?1681972534

185.178.208.182

200 OK

365 B

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/letsencrypt/global.css?1681972534
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
ASCII text
Size
365 B (365 bytes)
Hash
d7e47443b56a582f7e3d2b09353d4c35
166198f5bc5695dfe2f6868bc098324c140e9342
362fda864886c0a9a04d13abfa6cec57c55319c299c861f9f2a5447479438045

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /modules/letsencrypt/global.css?1681972534 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: text/css
last-modified: Thu, 20 Apr 2023 06:35:34 GMT
etag: W/"6440dd36-2a4"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 365
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/require.js?1683033466

185.178.208.182

200 OK

7.4 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/require.js?1683033466
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
ASCII text, with very long lines (17560)
Size
7.4 kB (7382 bytes)
Hash
2783e102bedffbe02433a5d66b9f892b
72426a5d9c9cc986f01466008a3557d3563d18b1
a297ffbb89c40e21fd2047c0a5c4207981a3116e0e884d4c36b29ba2d82bd7df

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cp/javascript/externals/require.js?1683033466 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: application/javascript
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-4562"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 7382
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/theme/css/main.css?1683033466

185.178.208.182

200 OK

84 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/theme/css/main.css?1683033466
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
84 kB (84176 bytes)
Hash
bdcb5671051096214fc35225ee55e038
c3177d0c4a0a924381f7992aedf53b4dabd22d1f
451510a6c234a04c416944309f286c6406a4d9f67a6ee53164f62df10e5e7927

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cp/theme/css/main.css?1683033466 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: text/css
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-57677"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 84176
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.css?1683033466

185.178.208.182

200 OK

37 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.css?1683033466
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
37 kB (37347 bytes)
Hash
4ff1bea8fd07997b1af1df62c02a8011
21e2b9a7557db6c54a978f1782e0d3f54f79c7ad
a779bba2fd3b130c8c7e817e5e11fe7a0194c0956aa03b27d5fc698904e9cc74

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ui-library/plesk-ui-library.css?1683033466 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: text/css
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-2d056"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 37347
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/prototype.js?1683033466

185.178.208.182

200 OK

35 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/externals/prototype.js?1683033466
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
ASCII text, with very long lines (60994)
Size
35 kB (35405 bytes)
Hash
9688d384944a5cae4da88e0fb0b2e4d4
2cf1161c6c9ec0d391d103dd5ef096b7b10e0ea8
c57ab4491da216a22506f9a1f86457a3b9e36f58682d764d0b16a6ef2bfb2ad7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cp/javascript/externals/prototype.js?1683033466 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: application/javascript
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-17b97"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 35405
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.min.js?1683033466

185.178.208.182

200 OK

177 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.min.js?1683033466
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
ASCII text, with very long lines (25267)
Size
177 kB (176832 bytes)
Hash
97ca10489cff1b1e4192676813e1ea61
accb05b58622a1de8cef4898347a7837808faca4
73e7b2bf65273c97d82d3d6da9bd0ff3275935020b9a36058b744883844a9d17

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ui-library/plesk-ui-library.min.js?1683033466 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: application/javascript
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-7c6b1"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 176832
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/letsencrypt/global.js?1681972534

185.178.208.182

200 OK

350 B

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/letsencrypt/global.js?1681972534
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
ASCII text
Size
350 B (350 bytes)
Hash
9dd70cbc68959644974623a33fe64e3d
f2b71e7b7245e499c79e78bc8aa249be362dfa76
e785cab652ed72a6c94c71b92bae72267f5efcbb97c7fdae2ee0fd93fd6783ae

HTTP Headers

GET /modules/letsencrypt/global.js?1681972534 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: application/javascript
last-modified: Thu, 20 Apr 2023 06:35:34 GMT
etag: W/"6440dd36-2d6"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 350
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/main.js?1683033466

185.178.208.182

200 OK

163 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/main.js?1683033466
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
163 kB (163136 bytes)
Hash
49a2d68bea4bd37d5bebdee516225713
6f2f7b12ad105560a60f571006861d81bd181a69
26b7c2f3b2e0e420ec290bfec5c15f53f54da6060d617fd533bc8243f62f8289

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cp/javascript/main.js?1683033466 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: application/javascript
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-ad1e6"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 163136
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/notifier/global.js?1682145424

185.178.208.182

200 OK

4.3 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/modules/notifier/global.js?1682145424
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
ASCII text, with very long lines (15013), with no line terminators
Size
4.3 kB (4268 bytes)
Hash
e746aef1e5cde49a50ee0ec7a3f3cfa9
6322e77bc07d7844e1586fb4c4602d27c82cbbc0
ccacd33949993052fc315f728591a6570cc32502714c7e3740fa56a0e4a59efb

HTTP Headers

GET /modules/notifier/global.js?1682145424 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: application/javascript
last-modified: Sat, 22 Apr 2023 06:37:04 GMT
etag: W/"64438090-3aa5"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 4268
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/vendors.js?1683033466

185.178.208.182

200 OK

500 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/javascript/vendors.js?1683033466
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size
500 kB (500477 bytes)
Hash
d5bbf24da4d909bd00a085307ddb71ed
9fb04024b60b2112f974a0a5c99ab0d4116239ca
d21f7ff47bafa26468f5f06805009f5485b3b88a4ce7ab1575ac932b6e80cf6e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cp/javascript/vendors.js?1683033466 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:17 GMT
content-type: application/javascript
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-175a83"
content-encoding: gzip
x-powered-by: PleskLin
age: 25
content-length: 500477
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/theme/images/logos/plesk/logo.svg

185.178.208.182

1.4 kB

URL GET
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/cp/theme/images/logos/plesk/logo.svg
IP
185.178.208.182:0
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2517)
Size
1.4 kB (1380 bytes)
Hash
3a5f3cf41e50e5cdb822a705411fba2e
9e9a7c9554fdc7150fd76aee513394f51f16f5bc
1564bd2d0743a0524949defb960505c222a5af2172bab46c8bd09bd4eb248fc7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cp/theme/images/logos/plesk/logo.svg HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:23 GMT
content-type: image/svg+xml
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-aa8"
accept-ranges: bytes
x-powered-by: PleskLin
content-encoding: br
vary: Accept-Encoding
age: 19
content-length: 1380
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/images/symbols.svg?6734c518c61f4e133047186f25f4535f

185.178.208.182

200 OK

75 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/images/symbols.svg?6734c518c61f4e133047186f25f4535f
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (964)
Size
75 kB (75168 bytes)
Hash
eea9f66859f1f6432ca61dd4caadc273
05629f104a3893aa9cb9e05a4d25a501eaf68057
08f631beb1dd39ebee84d08d043bd86b2ab3298d662eb98d96c1c1ae66cd695e

HTTP Headers

GET /ui-library/images/symbols.svg?6734c518c61f4e133047186f25f4535f HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:23 GMT
content-type: image/svg+xml
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-42af5"
accept-ranges: bytes
x-powered-by: PleskLin
content-encoding: br
vary: Accept-Encoding
age: 19
content-length: 75168
ddg-cache-status: MISS,HIT
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/fonts/open-sans-600.woff2?098c0a7547a49b0ce57658f41c897ecd

185.178.208.182

200 OK

62 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/fonts/open-sans-600.woff2?098c0a7547a49b0ce57658f41c897ecd
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 61548, version 1.0\012- data
Size
62 kB (61548 bytes)
Hash
e9681ca3d29d814a5621d4764dd1a11e
bbda68459fc0531b915bdf9e524ecc8f782db0aa
51f0bacf9e49a400a5a2947ef6b14127ef3241b0760d97721e0aedd7add66456

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ui-library/fonts/open-sans-600.woff2?098c0a7547a49b0ce57658f41c897ecd HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.css?1683033466
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:42 GMT
content-type: font/woff2
content-length: 61548
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: "64510d7a-f06c"
accept-ranges: bytes
x-powered-by: PleskLin
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/fonts/open-sans-regular.woff2?e7777b3c2bb7ae4d50f3abe9ee4f1eb5

185.178.208.182

200 OK

60 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/fonts/open-sans-regular.woff2?e7777b3c2bb7ae4d50f3abe9ee4f1eb5
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
Web Open Font Format (Version 2), TrueType, length 59600, version 1.0\012- data
Size
60 kB (59600 bytes)
Hash
e78dce533ecee30c5efd812bb23c248d
87d988c2f0343952ccded7c17b000e33db6f3d15
03e2544599e5a06566b2579f82ac6e445b724435fccb1f3e8988e58f45b1fc5e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ui-library/fonts/open-sans-regular.woff2?e7777b3c2bb7ae4d50f3abe9ee4f1eb5 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/ui-library/plesk-ui-library.css?1683033466
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:42 GMT
content-type: font/woff2
content-length: 59600
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: "64510d7a-e8d0"
accept-ranges: bytes
x-powered-by: PleskLin
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

sentry.io/api/1327420/envelope/?sentry_key=50365a6fe24f4ff28f6b625410e04a35&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.47.0

35.188.42.15

200 OK

2 B

URL POST HTTP/1.1
sentry.io/api/1327420/envelope/?sentry_key=50365a6fe24f4ff28f6b625410e04a35&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.47.0
IP
35.188.42.15:443
ASN
#15169 GOOGLE

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerDigiCert Inc
Subjectsentry.io
Fingerprint15:B3:B3:F7:8C:AC:CA:4E:EA:C5:B0:56:6E:00:9F:3B:62:5F:2F:A4
ValidityFri, 03 Jun 2022 00:00:00 GMT - Tue, 04 Jul 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

POST /api/1327420/envelope/?sentry_key=50365a6fe24f4ff28f6b625410e04a35&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.47.0 HTTP/1.1
Host: sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/
Content-Type: text/plain;charset=UTF-8
Content-Length: 420
Origin: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 07 May 2023 04:00:42 GMT
Content-Type: application/json
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: *
vary: origin,access-control-request-method,access-control-request-headers
access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after
x-envoy-upstream-service-time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

ocsp.r2m01.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
f2c30c74c474b969fb84714cabc9c29e
c307e699f68d6170deba12bbef0eb1dbae676a31
5e667e85fde60719f8e0a3f7795237ebb35f1675b826d3887891aa6a6be2fb21

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142648
Date: Sun, 07 May 2023 04:00:43 GMT
Etag: "64569b95-1d7"
Expires: Mon, 08 May 2023 19:38:11 GMT
Last-Modified: Sat, 06 May 2023 18:25:25 GMT
Server: ECAcc (nya/796A)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iNdFAQzFHI_O5IIU_k1B86lLv8Uuzg6ho0xWDzojZV60LTc2Qz64vQ==
Age: 4366

ocsp.r2m01.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
f2c30c74c474b969fb84714cabc9c29e
c307e699f68d6170deba12bbef0eb1dbae676a31
5e667e85fde60719f8e0a3f7795237ebb35f1675b826d3887891aa6a6be2fb21

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143230
Date: Sun, 07 May 2023 04:00:43 GMT
Etag: "64569b95-1d7"
Expires: Mon, 08 May 2023 19:47:53 GMT
Last-Modified: Sat, 06 May 2023 18:25:25 GMT
Server: ECAcc (nya/1C5C)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: aXTLcPKAhq3RExpOhffDau-c-t7PJOaF0ZkUQLavwrmOzPwOnsrzMw==
Age: 4948

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/images/apple-touch-icon.png?1683033466

185.178.208.182

200 OK

4.5 kB

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/images/apple-touch-icon.png?1683033466
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
4.5 kB (4528 bytes)
Hash
ebbd61fb584cc8ae62ffa726070c952f
7aefbffc866e859207b23f736faeac97f51414e6
b23ec702f16e22329aa8d8a74cede38c886e609acd467517a004439cbbb1da1c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /images/apple-touch-icon.png?1683033466 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:43 GMT
content-type: image/png
content-length: 4528
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: "64510d7a-11b0"
accept-ranges: bytes
x-powered-by: PleskLin
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

firehose.us-west-2.amazonaws.com/

35.89.72.106

200 OK

20 B

URL POST HTTP/1.1
firehose.us-west-2.amazonaws.com/
IP
35.89.72.106:443
ASN
#16509 AMAZON-02

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerAmazon
Subjectfirehose.us-west-2.amazonaws.com
Fingerprint33:FD:78:B1:20:8F:6F:DC:AD:63:CA:90:DB:65:81:6C:6B:52:01:BB
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
data
Size
20 B (20 bytes)
Hash
3970e82605c7d109bb348fc94e9eecc0
e03849ea786b9f7b28a35c17949e85a93eb1cff1
f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967

HTTP Headers

OPTIONS / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/
Origin: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amzn-RequestId: d8f3e543-bfd9-de0f-8422-c1e8979dca59
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Access-Control-Allow-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Access-Control-Allow-Methods: POST
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Access-Control-Max-Age: 172800
Content-Length: 20
Date: Sun, 07 May 2023 04:00:42 GMT

firehose.us-west-2.amazonaws.com/

35.89.72.106

200 OK

248 B

URL POST HTTP/1.1
firehose.us-west-2.amazonaws.com/
IP
35.89.72.106:443
ASN
#16509 AMAZON-02

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerAmazon
Subjectfirehose.us-west-2.amazonaws.com
Fingerprint33:FD:78:B1:20:8F:6F:DC:AD:63:CA:90:DB:65:81:6C:6B:52:01:BB
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
248 B (248 bytes)
Hash
724504ebdea7f20e154665801632232c
2e597007fc5346422da8a161d818be91b7ec6558
db5932748cd6130fe8d1f81f424f88c9fbb45feb8069aca7e9cbb3058e886c86

HTTP Headers

POST / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Amz-User-Agent: aws-sdk-js/2.1353.0 callback
Content-Type: application/x-amz-json-1.1
X-Amz-Target: Firehose_20150804.PutRecord
X-Amz-Content-Sha256: 1444d0f3360c330167a67bc46ab43696d1c41cb257f51f4846da71bb36d42b4c
X-Amz-Date: 20230507T040044Z
Authorization: AWS4-HMAC-SHA256 Credential=AKIAR4YEYRJLZOCG766Q/20230507/us-west-2/firehose/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=571a979aa29cd00cb6a3aef1c0eea807e6821cfe7750ee3c61b2fe40ae61fdd7
Content-Length: 218
Origin: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amzn-RequestId: c37e68e2-0bf7-c427-9faf-4c4923b3d071
Access-Control-Allow-Origin: *
Content-Encoding: gzip
x-amz-id-2: atxBOqYiqHUFa6vLNy5frH55PHFoNDMbCFZJgnM7Q+JFjF2uwCdYi02JQzDiM/ixznnnRmg88Nu1T18x7qZSu7ILt10GNg/z
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Content-Type: application/x-amz-json-1.1
Content-Length: 248
Date: Sun, 07 May 2023 04:00:42 GMT

firehose.us-west-2.amazonaws.com/

35.89.72.106

200 OK

247 B

URL POST HTTP/1.1
firehose.us-west-2.amazonaws.com/
IP
35.89.72.106:443
ASN
#16509 AMAZON-02

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerAmazon
Subjectfirehose.us-west-2.amazonaws.com
Fingerprint33:FD:78:B1:20:8F:6F:DC:AD:63:CA:90:DB:65:81:6C:6B:52:01:BB
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
247 B (247 bytes)
Hash
9cf807544c4c5019eef4435fe178d519
9ca10493fe8c70f7599b975b847963fd63df0052
6836232b5bf5d80f634f479a0173e2f02593b829988cd267a63fbfc894845584

HTTP Headers

POST / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Amz-User-Agent: aws-sdk-js/2.1353.0 callback
Content-Type: application/x-amz-json-1.1
X-Amz-Target: Firehose_20150804.PutRecord
X-Amz-Content-Sha256: aeb6a92489ffb5197c564cb40b69622840b0be679185b6be1de85eb2b47ae615
X-Amz-Date: 20230507T040045Z
Authorization: AWS4-HMAC-SHA256 Credential=AKIAR4YEYRJLZOCG766Q/20230507/us-west-2/firehose/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=369e8e82065b28d0396b354e4b3b03f59bb82a0a080eac94f0498da40dc424b8
Content-Length: 290
Origin: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amzn-RequestId: e62605e2-a33f-007b-baf7-21498b7b142d
Access-Control-Allow-Origin: *
Content-Encoding: gzip
x-amz-id-2: kt4URoYvTDmf5RFC723+NE33CEmzu21g3tbRGwe7Z94fzVLUl3YMuSI3SodBglhZwIJ2iZJsACuA4j3NB9F42E8a5OkjuxWm
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Content-Type: application/x-amz-json-1.1
Content-Length: 247
Date: Sun, 07 May 2023 04:00:42 GMT

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/images/favicon.svg?1683033466

185.178.208.182

200 OK

634 B

URL GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/images/favicon.svg?1683033466
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (660), with no line terminators
Size
634 B (634 bytes)
Hash
179969d47b019d6a3bdbd937f330b158
02834e66c6dadb553a3c32977668b8a3feade20b
58a29e0a252290a2cf64c1d8d2621f71a40a0b8d95235c26c8364bc5f33eec4a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /images/favicon.svg?1683033466 HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:43 GMT
content-type: image/svg+xml
last-modified: Tue, 02 May 2023 13:17:46 GMT
etag: W/"64510d7a-27a"
accept-ranges: bytes
x-powered-by: PleskLin
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login.php

185.178.208.182

303 See Other

19 kB

URL User Request GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login.php
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type

Size
19 kB (18790 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login.php HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 303 See Other
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2; Domain=.uyduportal.net; HttpOnly; Path=/; Expires=Mon, 06-May-2024 04:00:41 GMT
date: Sun, 07 May 2023 04:00:41 GMT
content-type: text/html; charset=utf-8
expires: Fri, 28 May 1999 00:00:00 GMT
last-modified: Sun, 07 May 2023 04:00:41 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
p3p: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
location: https://git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
x-powered-by: PleskLin
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2

git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php

185.178.208.182

200 OK

19 kB

URL User Request GET HTTP/2
git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net/login_up.php
IP
185.178.208.182:443
ASN
#57724 Ddos-guard Ltd

Certificate
IssuerLet's Encrypt
Subjectgit.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
FingerprintE8:86:65:57:21:A9:CB:DD:A5:D1:43:18:B4:AE:97:9B:65:7D:F2:24
ValiditySun, 07 May 2023 01:57:12 GMT - Sat, 05 Aug 2023 01:57:11 GMT

File type

Size
19 kB (18790 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /login_up.php HTTP/1.1
Host: git.gitlab.gitlab.gitlab.worldtourstore.gold.uyduportal.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=m8JiyEaXnC9yC2BKk3O2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 07 May 2023 04:00:41 GMT
content-type: text/html; charset=utf-8
expires: Fri, 28 May 1999 00:00:00 GMT
last-modified: Sun, 07 May 2023 04:00:41 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
p3p: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML