Report - access-synchronizationftp03.ukit.me/

Report Overview

Submitted URL
access-synchronizationftp03.ukit.me/
IP
185.129.100.126
ASN
#57724 Ddos-guard Ltd
Submitted
2023-12-08 16:47:30
Access
public
Website Title
Outlook
Final URL
access-synchronizationftp03.ukit.me/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
54

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.usertrust.com	899	1997-12-05	2012-05-21	2023-12-07	342 B	1.0 kB	172.64.149.23
access-synchronizationftp03.ukit.me	unknown	unknown	No data	No data	40 kB	3.3 MB	185.129.100.126
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-12-08	1.6 kB	20 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-12-08	1.7 kB	130 kB	216.58.207.227
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2023-12-08	489 B	23 kB	104.18.10.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook
2023-12-08	medium	access-synchronizationftp03.ukit.me/	Outlook

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (32)

	URL	Size	First Seen	Last Seen
	access-synchronizationftp03.ukit.me/	36 B	2023-03-07	2024-07-25
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:19:44 Last Seen2024-07-25 10:00:34 Times Seen60 Hash bc7dba7982c7743571f85761a805adc7 8ae09100d53818abb0801e564494e38087e61287 e61f62ba98ba7d1ce9065bdbec9bc8ffee48ae385815080353d5ab8575544d48 Loading...

	access-synchronizationftp03.ukit.me/	793 B	2023-07-06	2023-12-08
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-06 00:31:54 Last Seen2023-12-08 17:47:46 Times Seen2 Hash 03b2b0a56552fbe9746b3ed3f433896e 052d91be91718ff39d0d0415f2044326d6ac8348 aaf21ac86e3bc5f30e1449053d2ecb36920c32c48b7d5e099da04e97ec72b40f Loading...

	access-synchronizationftp03.ukit.me/dist-version/js/pub.v1.bundle.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	1.1 MB	2023-11-04	2024-06-09
Pretty URL access-synchronizationftp03.ukit.me/dist-version/js/pub.v1.bundle.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-04 14:53:42 Last Seen2024-06-09 02:05:18 Times Seen50 Hash 90742c230f67e7a36e8f7f0d0b0cc94e 16366529b0a77c9ef89c0f659f613ad98e5d2b1d 80cf39b8d3ecf79be4194b546a5ed4c8235184c35175f30734a1c50b7c245611 Loading...

	access-synchronizationftp03.ukit.me/js/requireConf.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	55 kB	2023-03-07	2024-07-25
Pretty URL access-synchronizationftp03.ukit.me/js/requireConf.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:44 Last Seen2024-07-25 11:47:22 Times Seen595 Hash 08ffd87764a67a4b74cc28913a86777f 5101ef61f1b77e709c156f948648923e521e3a8c b26248035a70f01d37a38b4fe64abda5ded10ec3a6416b6f583e7dd738549000 Loading...

	access-synchronizationftp03.ukit.me/js/ulib/eventDispatcher.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	37 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/js/ulib/eventDispatcher.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:05 Last Seen2023-12-18 17:05:31 Times Seen19 Hash b099986e5000c95f4d1b35967840ecbc d4613e67d333d0fbc42537f506752548b1882f3d de6e8b3cc836e6778e0f59baa3dc09148b24b4d7f62e22c2444d69d591ef7d08 Loading...

	unknown	38 B	2023-04-10	2024-07-27
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:02:06 Last Seen2024-07-27 03:44:05 Times Seen17243 Hash 43e28c5553d54ed2964bd5147521769b 0a2b8c3db330a47aa7b9195e6dfdf944adb9240d d63026c985dc46aeb316574b7bf1828080c906238e35d5e34cb80414c0e70d23 Loading...

	access-synchronizationftp03.ukit.me/	5.9 kB	2023-12-08	2023-12-08
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-08 17:47:46 Last Seen2023-12-08 17:47:46 Times Seen1 Hash 9ed914f2e168a4f8b221b382dcf90e5e 1449adf7fb6bdf4120d7d8fc7b45dff8a88dc34b 09be39aece0d7630f974b34f6514519349131becd838ba44ca7af65cd6c11c37 Loading...

	access-synchronizationftp03.ukit.me/js/ulib/orderForm.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	4.3 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/js/ulib/orderForm.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:05 Last Seen2023-12-18 17:05:31 Times Seen12 Hash bfd57205f3fe2db137a6a3755514b7a8 c677381d45b56cc114f2f57344ce02debb9f0dc9 d02e7a17f441b4f82af54979aa8894a05d524718e9232f0dec1c2db0b95117bc Loading...

	access-synchronizationftp03.ukit.me/js/ulib/upbutton.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	20 kB	2023-12-08	2023-12-09
Pretty URL access-synchronizationftp03.ukit.me/js/ulib/upbutton.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 17:47:46 Last Seen2023-12-09 02:28:44 Times Seen4 Hash a80286a9e7f621c844fda4faa1360081 3cf3a559990e926e9b4cc3d015ae831191281118 341533d2f82992a8d77213695bcd89f608ad205df6ae9a2f89bbc35996f817c6 Loading...

	access-synchronizationftp03.ukit.me/js/ulib/performance.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	25 kB	2023-12-07	2024-04-28
Pretty URL access-synchronizationftp03.ukit.me/js/ulib/performance.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:04 Last Seen2024-04-28 09:23:55 Times Seen20 Hash 0a3a605496dbfacd7fa957623dda2490 16cad3c30124794bc92ec28b5d8a79fb3e499543 7593fbf9194fd063d11576bad118fb0bd636d76653633421221cc89234613726 Loading...

	access-synchronizationftp03.ukit.me/	91 B	2023-12-08	2023-12-09
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-08 17:47:46 Last Seen2023-12-09 02:28:44 Times Seen2 Hash cdc7e914fb17b65b1f98ea743a51368e 706d0733f8c36bb6fe956d7568d7639244435bbb 876f8c9ebc16868d45a0f0ee539da330674930ddbbd28e78ce621a6b2f58a3fd Loading...

	access-synchronizationftp03.ukit.me/	714 B	2023-07-06	2023-12-08
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-06 00:31:54 Last Seen2023-12-08 17:47:46 Times Seen2 Hash cf748a01ac5dd08ede8862beac3edff1 d90ceb31397a5b22c0efb7eb80d91a17acb3b497 421d20ce0201f655556ebf895d5d4ffa9b51ef84b393e7aba3c1d5675a835bb3 Loading...

	access-synchronizationftp03.ukit.me/js/lib/modernizr-webp.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	7.8 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/js/lib/modernizr-webp.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:04 Last Seen2023-12-18 17:05:31 Times Seen13 Hash 47f25abc99e8b643f73baa9e68cffe8b 67536da11f5340de2e1e81c8ff0b3bce9aac611f 1bc755341d6d5e373e887ad8d4358c22379334210f19f42875413c92f677f9d1 Loading...

	access-synchronizationftp03.ukit.me/js/lib/error-stack-parser.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	4.7 kB	2023-03-07	2024-07-25
Pretty URL access-synchronizationftp03.ukit.me/js/lib/error-stack-parser.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:44 Last Seen2024-07-25 10:00:35 Times Seen94 Hash 120beee18caf6652e4bc1837488c0265 e2cba6bb53b9b4254ee61d65ba4cfcaeeef8fcd5 c23785796f4d4692c656777ba12b495c9b4431e757b50799e708431f03c16e89 Loading...

	access-synchronizationftp03.ukit.me/widgets/feedBack/js/interaction.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	25 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/widgets/feedBack/js/interaction.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:05 Last Seen2023-12-18 17:05:31 Times Seen18 Hash 38832391230610a059253c953926dd80 d27d09fd752fcac15aaf3f5f9eb207488775f4dc 5d748c1a6ff02a8dee965138b4355cc65a09a4c7f5ebfbee93cdf49f0540d6cb Loading...

	access-synchronizationftp03.ukit.me/	1.3 kB	2023-12-08	2023-12-08
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-08 17:47:47 Last Seen2023-12-08 17:47:47 Times Seen1 Hash ad417ec8b501c2ae99cc6cd36442afe6 8ec451e15f884c1bfabde31129caf1c75bdfe3a2 e83f2f053b85db4664843bbccce18f581ed903d1c944feae9448ecb6d8639191 Loading...

	access-synchronizationftp03.ukit.me/	82 kB	2023-12-08	2023-12-08
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-08 17:47:47 Last Seen2023-12-08 17:47:47 Times Seen1 Hash 66bcb1727cd5cbdb66aa91d5e0556ca9 fd5d3ae9a74b0f5f501ce748a0ca56c94b0dc200 79d749215324613a365d2542388d2ef9d7457425c62139459886e06998dc88ca Loading...

	access-synchronizationftp03.ukit.me/	933 B	2023-07-06	2024-05-21
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-06 00:31:54 Last Seen2024-05-21 17:15:32 Times Seen9 Hash 7eae9a9c7f8706c5ca7fe16f5a0c8d39 2e4baa7a23e7d5d838b49a44072681b0cf91cf78 7119ab94d2765b5728fb2acdbae5501b2363d1b19ebe533629bbf11c38594537 Loading...

	access-synchronizationftp03.ukit.me/	1.2 kB	2023-07-06	2023-12-08
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-06 00:31:54 Last Seen2023-12-08 17:47:47 Times Seen2 Hash e0186cd3decbbd72011cb9413c62609e e615375c230c122580544c2d9691194cbcb90a9d 5661d1cc1f646bf854c55326ce648550a3016da5d8c45f90812cbc7581442640 Loading...

	access-synchronizationftp03.ukit.me/js/ulib/ulErrorHandler.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	31 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/js/ulib/ulErrorHandler.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:04 Last Seen2023-12-18 17:05:31 Times Seen18 Hash 05e02e9941935e975055a70e2400ccde 9413940405f59b42297bc7cb33e2299286630b4a 533d7d7adefad76fe26771716186816069dac601d088ac38a8e1c8372faff65f Loading...

	access-synchronizationftp03.ukit.me/js/lib/jquery-2.1.0.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	84 kB	2023-03-07	2024-07-25
Pretty URL access-synchronizationftp03.ukit.me/js/lib/jquery-2.1.0.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:44 Last Seen2024-07-25 10:00:37 Times Seen197 Hash ed9cc403240d6bb8795d9dab787bb992 a7505476a2af3a88f0745b4a772ba44052ab6b2c 82c0e95421976376332a5c09dda6ad817660a852770f73f70992b47b6c49faaf Loading...

	access-synchronizationftp03.ukit.me/js/lib/requirejs.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	15 kB	2023-03-07	2024-07-25
Pretty URL access-synchronizationftp03.ukit.me/js/lib/requirejs.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:44 Last Seen2024-07-25 11:47:22 Times Seen645 Hash 36a1fa5a5ed5536889d0e25d473b108e 8c2236f5c3c85ce942dc6fa85e2af674856e2296 2fa19f6b3c28f9c731ff02b27efc3dedde8c2f71e95521c0aec2cbe12de16405 Loading...

	access-synchronizationftp03.ukit.me/js/ulib/scroll-animation.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	10 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/js/ulib/scroll-animation.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:05 Last Seen2023-12-18 17:05:31 Times Seen14 Hash 512b0771486f8c57ec82f9e87b581533 24635c9a623704dce4bc7335b54402a6e5b6fad6 d0b50460570d0495f410940349f1435c4180a86fc99e8e977754f6d444ac9deb Loading...

	access-synchronizationftp03.ukit.me/js/ulib/backgroundBlockColor.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	24 kB	2023-12-07	2024-04-28
Pretty URL access-synchronizationftp03.ukit.me/js/ulib/backgroundBlockColor.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:04 Last Seen2024-04-28 09:23:55 Times Seen16 Hash 9d800247db546e38a5629b94d8a7b0ea c6d1d9a42ce088b4c050021074e33f8571cf47ea 6f243262f48e7e934b2767c221ca1ba5426c13dfbd51717685b0e5b72d6ea7fc Loading...

	access-synchronizationftp03.ukit.me/js/ulib/critical.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	8.9 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/js/ulib/critical.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:04 Last Seen2023-12-18 17:05:31 Times Seen12 Hash 0dc7cc20d7beba13babc24156e826287 0104550a63cc4667d5b3a015727d11c2b882e879 1fc98f3350dec125f58e451c08bbcb5a4c5011817089f37b6811e1e042a38c98 Loading...

	access-synchronizationftp03.ukit.me/js/lib/cssrelpreload.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	34 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/js/lib/cssrelpreload.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:05 Last Seen2023-12-18 17:05:31 Times Seen18 Hash fd8a94b4537f4d6e6335de7a7811631e 01b79cae1a74830df260ee1ac29cb75e86e01582 dbaff48cbe654765166a7f38b1e76218dbc7b02430e1462421e1a7f0a6cb26eb Loading...

	access-synchronizationftp03.ukit.me/widgets/feedBack/js/view.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	14 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/widgets/feedBack/js/view.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:04 Last Seen2023-12-18 17:05:31 Times Seen18 Hash 50ef8ee57c20ecdc0472095927ca8ad5 7992524f0ef91e0c316eeeb6157bb0a3721df512 73a4ef98fe89d7cfe624f2eae07e37e6ea928ed6874fdaa0aa3ce065758d30d9 Loading...

	access-synchronizationftp03.ukit.me/widgets/feedBack/js/recaptchav2.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	18 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/widgets/feedBack/js/recaptchav2.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:05 Last Seen2023-12-18 17:05:31 Times Seen18 Hash 85fa034f46578213c3a5ff24b4312659 cd9a467c89349e542931498b1819bcf712bea28d e078960bf707e08eee58506b8b8d7358fa6d88f7a89abdb9967c0cbf9dc3a75a Loading...

	access-synchronizationftp03.ukit.me/	1.6 kB	2023-11-04	2024-07-25
Pretty URL access-synchronizationftp03.ukit.me/ IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-04 14:53:43 Last Seen2024-07-25 10:00:36 Times Seen37 Hash d82e90d594aa529baeff421df1ae7ebd 36117232bd89a44f4a1ce8c09469f125bea5b107 98365000238f20030690d95d94a33706af1fda348318bf759ca2fa4cb64e0ee1 Loading...

	access-synchronizationftp03.ukit.me/js/ulib/viewportObserver.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	25 kB	2023-12-07	2023-12-18
Pretty URL access-synchronizationftp03.ukit.me/js/ulib/viewportObserver.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 05:47:04 Last Seen2023-12-18 17:05:31 Times Seen14 Hash ad5bc9edeb7c7eab97eced3712e56c9d 4302887c0b03c7df4500050b7b99282368da864f 7e4b8a392e3044dcaf63bde4bacaeeb0bb130cfd892157d48f53650565886eb8 Loading...

	access-synchronizationftp03.ukit.me/js/lib/css.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7	1.4 kB	2023-03-12	2024-06-09
Pretty URL access-synchronizationftp03.ukit.me/js/lib/css.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 IP 185.129.100.126 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:24:47 Last Seen2024-06-09 02:05:19 Times Seen92 Hash 8b18dc4ce1fc58e8357f6619bd0a3a5c fa0c0f2e270f3c9c94eb38c941c9eaf291921514 2bd7aac5d7147a77b554ab84cf2ec825520c7cdb34a11b4ce7685aa78a6b84f5 Loading...

		Size	First Seen	Last Seen
	#1 Write - b567e2a102bf9afa6d9a55da09c30e86	160 B	2023-07-06	2023-12-08
Pretty Observations First Seen2023-07-06 00:31:54 Last Seen2023-12-08 17:47:47 Times Seen2 Hash b567e2a102bf9afa6d9a55da09c30e86 2f3dedac71d34b926440157fe82e5a3b53c86a24 e97e8c7a98000fa1ac61c0bf27b267a64974ba5b6f5c06d341ae565937b4d541 Loading...

HTTP Transactions (49)

URL IP Response Size

ocsp.usertrust.com/

172.64.149.23

471 B

URL
ocsp.usertrust.com/
IP
172.64.149.23:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
86df7b6c23cc86082fa9a9263c784e02
87388cf2380b9f8c34d56d8f2834885b93c0398b
7a61073ebaaf0d29ed1eb274189fa2390febe6e87b0d7a44e55ccdae7dc77d41

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 16:47:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 08 Dec 2023 12:21:43 GMT
Expires: Fri, 15 Dec 2023 12:21:42 GMT
Etag: "87388cf2380b9f8c34d56d8f2834885b93c0398b"
Cache-Control: max-age=588269,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 83267d24a946b505-OSL

access-synchronizationftp03.ukit.me/css/lib/animate.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

4.8 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/css/lib/animate.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65348)
Size
4.8 kB (4793 bytes)
Hash
c0be8e53226ac34833fd9b5dbc01ebc5
b81ef1b22de26af8a7a4656f565fbc91a69d7518
5fbaeb9f8e25d7e0143bae61d4b1802c16ce7390b96ceb2d498b0d96ff4c853f

HTTP Headers

GET /css/lib/animate.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Tue, 10 Aug 2021 12:36:17 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "611272c1-11846"
age: 0
content-length: 4793
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/css/lib/bootstrap.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

4.3 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/css/lib/bootstrap.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (20306)
Size
4.3 kB (4321 bytes)
Hash
53e2d06928bb6f9d58727487c089fc86
477efd9ad738b7eea986d54198106b57a5c3f0df
1a9c87b682bad723063364a927bcd342309dff88d718ec2b4541a56b081136ae

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /css/lib/bootstrap.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Wed, 07 Dec 2016 14:14:05 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192d-50b9"
age: 0
content-length: 4321
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/css/devicePublish.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

212 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/css/devicePublish.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (724), with no line terminators
Size
212 B (212 bytes)
Hash
09fb9fdcc48b3b2d7b73cfcc5d367106
799143c2926c4cc0848b10bff430cc719b7980ec
ed39f5b2e159d3ac4d7d308caeb35d30226a8c0a2f9d767bd2e64a81a0af66ea

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /css/devicePublish.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Thu, 26 Aug 2021 11:46:11 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "61277f03-2d4"
age: 0
content-length: 212
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/ulib/performance.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

483 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/ulib/performance.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (732)
Size
483 B (483 bytes)
Hash
0a3a605496dbfacd7fa957623dda2490
16cad3c30124794bc92ec28b5d8a79fb3e499543
7593fbf9194fd063d11576bad118fb0bd636d76653633421221cc89234613726

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /js/ulib/performance.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 15 Jan 2019 11:48:35 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5c3dc893-6183"
age: 0
content-length: 483
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/lib/cssrelpreload.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

526 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/lib/cssrelpreload.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1062)
Size
526 B (526 bytes)
Hash
fd8a94b4537f4d6e6335de7a7811631e
01b79cae1a74830df260ee1ac29cb75e86e01582
dbaff48cbe654765166a7f38b1e76218dbc7b02430e1462421e1a7f0a6cb26eb

HTTP Headers

GET /js/lib/cssrelpreload.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Feb 2018 14:24:16 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5a86e990-84a5"
age: 0
content-length: 526
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/dist-version/css/pub.v1.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

3.0 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/dist-version/css/pub.v1.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7628)
Size
3.0 kB (3022 bytes)
Hash
2b4ecb1fc48b1a84d2b7e6807e489616
ce37ddfb076356f9180b1e20b598f9cf37a476d9
58498a9950836f80523da220beb901621aa62f0ef77c636e717b3e4ea91e3137

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /dist-version/css/pub.v1.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Wed, 20 Apr 2022 10:52:05 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "625fe5d5-477c"
age: 0
content-length: 3022
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/lib/requirejs.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

6.8 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/lib/requirejs.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (539)
Size
6.8 kB (6830 bytes)
Hash
36a1fa5a5ed5536889d0e25d473b108e
8c2236f5c3c85ce942dc6fa85e2af674856e2296
2fa19f6b3c28f9c731ff02b27efc3dedde8c2f71e95521c0aec2cbe12de16405

HTTP Headers

GET /js/lib/requirejs.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: gzip
ddg-cache-status: MISS,MISS
etag: "5848192e-3b81"
age: 0
content-length: 6830
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/css/require/scroll-animation.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

249 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/css/require/scroll-animation.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
249 B (249 bytes)
Hash
355d53d50023d570e08319507ecd0f4b
ca47bf60c5ebc7846a35ef5f7e5fcc1bb5bfda1d
862dab3ceff058e0c5520463eb332f640b5c4ee31f8ecd4f01c237f5096fa77b

HTTP Headers

GET /css/require/scroll-animation.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Tue, 31 Aug 2021 11:48:21 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "612e1705-229"
age: 0
content-length: 249
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/sitecss/srcset-6566693430885034836e2216-all.css?v=1

185.129.100.126

200 OK

68 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/sitecss/srcset-6566693430885034836e2216-all.css?v=1
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (25737), with no line terminators
Size
68 kB (67535 bytes)
Hash
a969da2aa90c4ee2e4dcb02bd2e87687
e0f2aae120b3c0507f0396dc23cf0d13e11208b9
25b7a37613518fa9d5b2dd728f5935a8c7202ad728b1858e5424d954c85be7c2

HTTP Headers

GET /sitecss/srcset-6566693430885034836e2216-all.css?v=1 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css; charset=utf-8
x-powered-by: Express
vary: Accept-Encoding
content-encoding: br
x-cms: ukit
cache-control: public, max-age=600
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/ulib/backgroundBlockColor.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

904 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/ulib/backgroundBlockColor.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (555)
Size
904 B (904 bytes)
Hash
9d800247db546e38a5629b94d8a7b0ea
c6d1d9a42ce088b4c050021074e33f8571cf47ea
6f243262f48e7e934b2767c221ca1ba5426c13dfbd51717685b0e5b72d6ea7fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /js/ulib/backgroundBlockColor.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Sep 2019 11:22:23 GMT
etag: W/"5d89fc6f-5b9f"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/css/lib/fontawesome-brand.min.css

185.129.100.126

200 OK

38 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/css/lib/fontawesome-brand.min.css
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (12215), with no line terminators
Size
38 kB (37612 bytes)
Hash
bb98cd49300a8af6b48e3788a6751d9c
255084873817251bfc0fb4e6bf96867cdd66fbb7
fc9d7a1e8342e00b98832d450395db818253e6bb9db9bfb39a23fab673032a7e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /css/lib/fontawesome-brand.min.css HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Thu, 20 Sep 2018 13:31:31 GMT
etag: W/"5ba3a133-2fb7"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/ulib/upbutton.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

48 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/ulib/upbutton.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1023)
Size
48 kB (47571 bytes)
Hash
a80286a9e7f621c844fda4faa1360081
3cf3a559990e926e9b4cc3d015ae831191281118
341533d2f82992a8d77213695bcd89f608ad205df6ae9a2f89bbc35996f817c6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /js/ulib/upbutton.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 24 Jul 2019 11:14:41 GMT
etag: W/"5d383da1-4f41"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=PT+Sans:700,700i,400,400i&subset=cyrillic

142.250.74.106

200 OK

1.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=PT+Sans:700,700i,400,400i&subset=cyrillic
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
gzip compressed data, max compression\012- data
Size
1.3 kB (1274 bytes)
Hash
6496daf76d68525971591c92a6a7e685
c3314853f077a8c5f2688e85ff08a76fd8da0a4e
b3a0d1e0b0dfef6af02a2cf653ed102265a763057b508b144f7e0ab5db3f1553

HTTP Headers

GET /css?family=PT+Sans:700,700i,400,400i&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 16:47:12 GMT
date: Fri, 08 Dec 2023 16:47:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/uploads/s/e/e/j/eejrixzz4c4g/img/full_RJZj5GzE.png

185.129.100.126

200 OK

167 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/uploads/s/e/e/j/eejrixzz4c4g/img/full_RJZj5GzE.png
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
PNG image data, 1500 x 678, 8-bit/color RGBA, non-interlaced\012- data
Size
167 kB (166602 bytes)
Hash
ba88d5cff3cc59ad81233c5feb7b93fd
8596ec2701aaeddd8f1b1b4c221b6649faaf7620
26d4993766240340dc2388dceecc81133a09c07bb1f43f1833deb68c5819781c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /uploads/s/e/e/j/eejrixzz4c4g/img/full_RJZj5GzE.png HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/png
content-length: 166602
last-modified: Tue, 28 Nov 2023 23:06:03 GMT
cache-control: max-age=3600, must-revalidate, public
accept-ranges: bytes
etag: "6566725b-28aca"
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/img/ukit-copyright-dark.svg

185.129.100.126

200 OK

1.8 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/img/ukit-copyright-dark.svg
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1439)
Size
1.8 kB (1754 bytes)
Hash
132f46cadc92ae7f7bb3e5c7d927bfe0
1e1175c9ae1e9248257ec52e5f45072bef7e7914
eb31801bb8a6b29d7be687d0cf84357a88b3798182bafa8db7d1a38d2a5b2efb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /img/ukit-copyright-dark.svg HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/templates/ul_remont/css/main-g-theme-site-1-desktop.css
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/svg+xml
last-modified: Fri, 05 Jul 2019 10:57:13 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5d1f2d09-1306"
age: 0
content-length: 1754
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/ulib/critical.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

48 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/ulib/critical.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4784)
Size
48 kB (47945 bytes)
Hash
0dc7cc20d7beba13babc24156e826287
0104550a63cc4667d5b3a015727d11c2b882e879
1fc98f3350dec125f58e451c08bbcb5a4c5011817089f37b6811e1e042a38c98

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /js/ulib/critical.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 18 Dec 2021 14:05:40 GMT
etag: W/"61bdeab4-2292"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/__scale/uploads/s/e/e/j/eejrixzz4c4g/img/full_2n2gNUES.png?quality=60&width=1170&webp=1

185.129.100.126

200 OK

4.4 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/__scale/uploads/s/e/e/j/eejrixzz4c4g/img/full_2n2gNUES.png?quality=60&width=1170&webp=1
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1170x162, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.4 kB (4394 bytes)
Hash
51730395664980043f5891de5b794589
66bbd0ee58e92186a271783ba7ee7ddbd4eda740
dc555aeb5f08e117a7cc4b7900db855ed27f3188b9e75e5c4e4f22ae2f646f30

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /__scale/uploads/s/e/e/j/eejrixzz4c4g/img/full_2n2gNUES.png?quality=60&width=1170&webp=1 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/webp
content-length: 4394
last-modified: Tue, 28 Nov 2023 22:59:01 GMT
accept-ranges: bytes
etag: "656670b5-27ee"
cache-control: max-age=3600, must-revalidate, public, max-age=3600, must-revalidate, public
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/ulib/ulErrorHandler.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

812 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/ulib/ulErrorHandler.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1764)
Size
812 B (812 bytes)
Hash
05e02e9941935e975055a70e2400ccde
9413940405f59b42297bc7cb33e2299286630b4a
533d7d7adefad76fe26771716186816069dac601d088ac38a8e1c8372faff65f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /js/ulib/ulErrorHandler.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Jul 2018 11:31:14 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5b51c802-7a64"
age: 0
content-length: 812
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/sitecss/typography.css?v=1

185.129.100.126

200 OK

35 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/sitecss/typography.css?v=1
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2935)
Size
35 kB (35225 bytes)
Hash
977b775ef6b90ce10d385dcd6ef10ab9
463e25fc61e1e8137515c19c4daa772c02dcf965
2acd75affe48c12165f060a6c49843e368ff4e36d195efd56cd36dcfbc66fe7f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /sitecss/typography.css?v=1 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css; charset=utf-8
x-powered-by: Express
vary: Accept-Encoding
content-encoding: br
x-cms: ukit
cache-control: public, max-age=600
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/lib/error-stack-parser.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

1.6 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/lib/error-stack-parser.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4672)
Size
1.6 kB (1610 bytes)
Hash
120beee18caf6652e4bc1837488c0265
e2cba6bb53b9b4254ee61d65ba4cfcaeeef8fcd5
c23785796f4d4692c656777ba12b495c9b4431e757b50799e708431f03c16e89

HTTP Headers

GET /js/lib/error-stack-parser.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-1241"
age: 0
content-length: 1610
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/lib/jquery-2.1.0.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

30 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/lib/jquery-2.1.0.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32065)
Size
30 kB (29483 bytes)
Hash
ed9cc403240d6bb8795d9dab787bb992
a7505476a2af3a88f0745b4a772ba44052ab6b2c
82c0e95421976376332a5c09dda6ad817660a852770f73f70992b47b6c49faaf

HTTP Headers

GET /js/lib/jquery-2.1.0.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-1469e"
age: 0
content-length: 29483
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/ulib/viewportObserver.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

1.2 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/ulib/viewportObserver.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1343)
Size
1.2 kB (1194 bytes)
Hash
ad5bc9edeb7c7eab97eced3712e56c9d
4302887c0b03c7df4500050b7b99282368da864f
7e4b8a392e3044dcaf63bde4bacaeeb0bb130cfd892157d48f53650565886eb8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /js/ulib/viewportObserver.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 24 Jul 2019 11:14:41 GMT
etag: W/"5d383da1-6059"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/favicon.ico?v=08291986055094935

185.129.100.126

200 OK

3.7 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/favicon.ico?v=08291986055094935
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
3.7 kB (3728 bytes)
Hash
6559a5d8bd1b5c2a0b14254a46644c85
d17a4ec9d00648690d5c585c997ac9694b76d438
07330cbd950c0b92d01ab839c614af9abb2aba43c083ecbb6d4378d92304d263

HTTP Headers

GET /favicon.ico?v=08291986055094935 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/x-icon
last-modified: Tue, 28 Nov 2023 22:27:04 GMT
etag: W/"65666938-1536"
cache-control: max-age=3600, must-revalidate, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/lib/css.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

720 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/lib/css.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1385), with no line terminators
Size
720 B (720 bytes)
Hash
8b18dc4ce1fc58e8357f6619bd0a3a5c
fa0c0f2e270f3c9c94eb38c941c9eaf291921514
2bd7aac5d7147a77b554ab84cf2ec825520c7cdb34a11b4ce7685aa78a6b84f5

HTTP Headers

GET /js/lib/css.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=pddOOUlaeQ7RfCKuactq; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-569"
age: 0
content-length: 720
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/css/require/emailStatusDialog.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

148 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/css/require/emailStatusDialog.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
148 B (148 bytes)
Hash
80a3030e7d16691245098e5276b7a901
780dc0ed81aaea0e58c6f09df5863bb31701df21
8ad0edd2a2278b2d5bf0a7847dbbf923db5fecbcbf3de6210a72c30a695ed1c7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /css/require/emailStatusDialog.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=pddOOUlaeQ7RfCKuactq; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: text/css
last-modified: Wed, 30 Aug 2017 12:19:04 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "59a6ad38-90"
age: 0
content-length: 148
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/widgets/feedBack/js/recaptchav2.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

726 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/widgets/feedBack/js/recaptchav2.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1688)
Size
726 B (726 bytes)
Hash
85fa034f46578213c3a5ff24b4312659
cd9a467c89349e542931498b1819bcf712bea28d
e078960bf707e08eee58506b8b8d7358fa6d88f7a89abdb9967c0cbf9dc3a75a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /widgets/feedBack/js/recaptchav2.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=pddOOUlaeQ7RfCKuactq; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 03 Dec 2019 14:53:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5de676d2-47c7"
age: 0
content-length: 726
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/widgets/feedBack/js/interaction.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

25 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/widgets/feedBack/js/interaction.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (8409)
Size
25 kB (25096 bytes)
Hash
38832391230610a059253c953926dd80
d27d09fd752fcac15aaf3f5f9eb207488775f4dc
5d748c1a6ff02a8dee965138b4355cc65a09a4c7f5ebfbee93cdf49f0540d6cb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /widgets/feedBack/js/interaction.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 03 Dec 2019 14:53:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5de676d2-6208"
age: 0
content-length: 3109
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/api/feedBack/pass

185.129.100.126

200 OK

46 B

URL GET HTTP/2
access-synchronizationftp03.ukit.me/api/feedBack/pass
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
46 B (46 bytes)
Hash
774eaf53aaee84e8a27548b4a3308184
8653501283f44c924412a55c9b44b605abc48c45
2fb6acc83960fbbe1cb8a34cfff18b6908e147de2670ead4892dc1956c3665bf

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /api/feedBack/pass HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=pddOOUlaeQ7RfCKuactq; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-credentials: true
set-cookie: x-csrf-token=CeYcibM1OSXD5ko1OwIp; Path=/
session=97XCTcIh_-62oznZyNYsKQ._bKYZ6OxkzhcPgqTaqTOEZpwmEtIR80iuPJwYH1z9odYAUzW2HhUSb57GOpeg5Wkl5UYBPguPa6MwPVkwWLIOYtY-TsaMGNkLgWK2VMxGaI-nR-I9eAG3MPy4WXNVfaylph6xyDJIT6QQRSGDxXH92R2nvCN4DAEGgX5VGYltYSpJZjVMUgGVUpSW2UoVv-At0ALaHj7Qdr3Ykv-d1lpQ87lE9Ji-BXxHYrrMSc1mQYpYExgVppetQHG2gwI2ICwquj7AiZy0COLrV3bj7EWaPmKJYn5I-IJkUNaTbY9ksKiuJhw4ou7qRSeJNNRKOsWZJfqTFWa-2PAfQab2bE0ijOUdJttM8IRNcMDhn6kcRDNlOrJbensEbWHjeu7vn3T.1702054032910.630720000000.2cXfJHKeKiKQpeAlZszfuDfFxDEABmiHIsiqLqsakis; path=/; expires=Thu, 03 Dec 2043 16:47:13 GMT; secure; httponly
etag: W/"2e-pd06xTcJ85S9lRXMIyI1+Q"
cache-control: no-cache, no-store, max-age=0, must-revalidate, post-check=0, pre-check=0
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2

216.58.207.227

200 OK

45 kB

URL GET HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Size
45 kB (45300 bytes)
Hash
5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d

HTTP Headers

GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 16:09:25 GMT
expires: Fri, 06 Dec 2024 16:09:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
age: 88668
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/ulib/eventDispatcher.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

37 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/ulib/eventDispatcher.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (481)
Size
37 kB (37156 bytes)
Hash
b099986e5000c95f4d1b35967840ecbc
d4613e67d333d0fbc42537f506752548b1882f3d
de6e8b3cc836e6778e0f59baa3dc09148b24b4d7f62e22c2444d69d591ef7d08

HTTP Headers

GET /js/ulib/eventDispatcher.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-9124"
age: 0
content-length: 279
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/

185.129.100.126

200 OK

115 kB

URL User Request GET HTTP/2
access-synchronizationftp03.ukit.me/
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type

Size
115 kB (115206 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET / HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; Domain=.ukit.me; HttpOnly; Path=/; Expires=Sat, 07-Dec-2024 16:47:12 GMT
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Accept-Encoding
content-encoding: gzip
x-cms: ukit
cache-control: public, max-age=600
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/lib/modernizr-webp.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

7.8 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/lib/modernizr-webp.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (8051), with no line terminators
Size
7.8 kB (7761 bytes)
Hash
f9216db86af1944a98c72e6101dea2f3
17cd493ab7e26f26c17ff3a61714127aaf25307a
e3a5974caca7922f8b2b872e957cff0c0294c6d2ecc591d8650459727b2816c7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /js/lib/modernizr-webp.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 18 Dec 2021 14:05:40 GMT
etag: W/"61bdeab4-1e51"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/api/loadsitesstat/resolve

185.129.100.126

200 OK

0 B

URL POST HTTP/2
access-synchronizationftp03.ukit.me/api/loadsitesstat/resolve
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

POST /api/loadsitesstat/resolve HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 57
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: text/html; charset=utf-8
vary: Origin, X-HTTP-Method-Override, Accept-Encoding
access-control-allow-credentials: true
set-cookie: x-csrf-token=pddOOUlaeQ7RfCKuactq; Path=/
session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU; path=/; expires=Thu, 03 Dec 2043 16:47:13 GMT; secure; httponly
etag: W/"0-1B2M2Y8AsgTpgAmY7PhCfg"
cache-control: no-cache, no-store, max-age=0, must-revalidate, post-check=0, pre-check=0
x-xss-protection: 1; mode=block
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Size
35 kB (34852 bytes)
Hash
0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a

HTTP Headers

GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:57 GMT
expires: Fri, 06 Dec 2024 23:21:57 GMT
cache-control: public, max-age=31536000
age: 62716
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Size
47 kB (47048 bytes)
Hash
87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1

HTTP Headers

GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:06:18 GMT
expires: Fri, 06 Dec 2024 05:06:18 GMT
cache-control: public, max-age=31536000
age: 128455
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css

104.18.10.207

200 OK

22 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT

File type
ASCII text, with very long lines (21822)
Size
22 kB (21984 bytes)
Hash
feda974a77ea5783b8be673f142b7c88
b71d1c7c315b67c614563382d1c2a868ac14d729
0fb1bbca73646e8e2b93c82e8d8b219647b13d4b440c48e338290b9a685b8de1

HTTP Headers

GET /font-awesome/4.2.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-08-02 19:09:15
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: a20f8f9fd039c143ec88748f1e9f7c9f
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 994181
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83267d289fb556aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/widgets/feedBack/js/view.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

14 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/widgets/feedBack/js/view.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1118)
Size
14 kB (14174 bytes)
Hash
50ef8ee57c20ecdc0472095927ca8ad5
7992524f0ef91e0c316eeeb6157bb0a3721df512
73a4ef98fe89d7cfe624f2eae07e37e6ea928ed6874fdaa0aa3ce065758d30d9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /widgets/feedBack/js/view.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Feb 2020 15:00:41 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5e3d7b99-375e"
age: 0
content-length: 585
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/i18n/en/widgets.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

74 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/i18n/en/widgets.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type

Size
74 kB (74542 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /i18n/en/widgets.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 08:52:17 GMT
etag: W/"656ee4c1-1232e"
cache-control: max-age=3600, must-revalidate, public
content-encoding: gzip
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/ulib/scroll-animation.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

10 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/ulib/scroll-animation.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5475)
Size
10 kB (10351 bytes)
Hash
512b0771486f8c57ec82f9e87b581533
24635c9a623704dce4bc7335b54402a6e5b6fad6
d0b50460570d0495f410940349f1435c4180a86fc99e8e977754f6d444ac9deb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /js/ulib/scroll-animation.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 21 Dec 2021 09:32:58 GMT
etag: W/"61c19f4a-286f"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/api/loadsitesstat/add

185.129.100.126

200 OK

0 B

URL POST HTTP/2
access-synchronizationftp03.ukit.me/api/loadsitesstat/add
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

POST /api/loadsitesstat/add HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 57
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/html; charset=utf-8
vary: Origin, X-HTTP-Method-Override, Accept-Encoding
access-control-allow-credentials: true
set-cookie: x-csrf-token=Q5DRfRmJqXpDRC2xSL98; Path=/
i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; Max-Age=604800; Path=/; Expires=Fri, 15 Dec 2023 16:47:12 GMT; HttpOnly; Secure
session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4; path=/; expires=Thu, 03 Dec 2043 16:47:13 GMT; secure; httponly
etag: W/"0-1B2M2Y8AsgTpgAmY7PhCfg"
cache-control: no-cache, no-store, max-age=0, must-revalidate, post-check=0, pre-check=0
x-xss-protection: 1; mode=block
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=PT+Sans%20Caption:700,700i,400,400i&subset=cyrillic

142.250.74.106

200 OK

2.8 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=PT+Sans%20Caption:700,700i,400,400i&subset=cyrillic
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (2876), with no line terminators
Size
2.8 kB (2812 bytes)
Hash
29b476f48aa2e73ad0c2d4e6b4c570ef
b7ec408b491483361c8c1a180cd0a3b9ae5b5972
c91139e5a430d7bac37116d4bbfe9528a0f86ede40559b9c36785c705d54c305

HTTP Headers

GET /css?family=PT+Sans%20Caption:700,700i,400,400i&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 16:47:12 GMT
date: Fri, 08 Dec 2023 16:47:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/dist-version/js/pub.v1.bundle.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

1.1 MB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/dist-version/js/pub.v1.bundle.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type

Size
1.1 MB (1148459 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dist-version/js/pub.v1.bundle.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 26 Oct 2023 13:00:48 GMT
etag: W/"653a6300-11862b"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/ulib/orderForm.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

4.3 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/ulib/orderForm.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (4480), with no line terminators
Size
4.3 kB (4270 bytes)
Hash
bc9993e0cfbf00f73a6df34492e20c9d
49adfc07199811794bfc93e111ab54ca17a51a18
2791c25a53f2d56282f035cc29074d2538b2efcbf6b64d1ba062c48926eee2a8

HTTP Headers

GET /js/ulib/orderForm.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Jan 2022 09:32:03 GMT
etag: W/"61ee7213-10ae"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/img/upbutton.svg

185.129.100.126

200 OK

1.5 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/img/upbutton.svg
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1562), with no line terminators
Size
1.5 kB (1488 bytes)
Hash
c211fd46e0ed220c6efaf4dac2b7ef75
4fd2c8863eec9f20e6d3f2e6a0b5e27ecbc96d5f
a4fc5922f071360a3329c05d560c8a6abc15677ac7972cdc081776e57c6cd483

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /img/upbutton.svg HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/templates/ul_remont/css/main-g-theme-site-1-desktop.css
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-5d0"
age: 0
content-length: 676
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/js/requireConf.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

55 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/js/requireConf.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32065)
Size
55 kB (54771 bytes)
Hash
08ffd87764a67a4b74cc28913a86777f
5101ef61f1b77e709c156f948648923e521e3a8c
b26248035a70f01d37a38b4fe64abda5ded10ec3a6416b6f583e7dd738549000

HTTP Headers

GET /js/requireConf.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 08:52:18 GMT
etag: W/"656ee4c2-d5f3"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/i18n/en/constructor.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7

185.129.100.126

200 OK

68 kB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/i18n/en/constructor.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type

Size
68 kB (68023 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /i18n/en/constructor.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 08:52:17 GMT
etag: W/"656ee4c1-109b7"
cache-control: max-age=3600, must-revalidate, public
content-encoding: gzip
X-Firefox-Spdy: h2

access-synchronizationftp03.ukit.me/templates/ul_remont/css/main-g-theme-site-1-desktop.css

185.129.100.126

200 OK

1.3 MB

URL GET HTTP/2
access-synchronizationftp03.ukit.me/templates/ul_remont/css/main-g-theme-site-1-desktop.css
IP
185.129.100.126:443
ASN
#57724 Ddos-guard Ltd

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type

Size
1.3 MB (1280743 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Outlook

HTTP Headers

GET /templates/ul_remont/css/main-g-theme-site-1-desktop.css HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Fri, 27 May 2022 14:38:48 GMT
cache-control: max-age=600, public, must-revalidate
content-encoding: br
vary: Accept-Encoding
etag: "6290e278-138ae7"
age: 0
content-length: 66589
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Ubuntu:400,700italic,700,500italic,500,400italic,300italic,300&subset=latin,greek,greek-ext,cyrillic-ext,latin-ext,cyrillic

142.250.74.106

200 OK

14 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Ubuntu:400,700italic,700,500italic,500,400italic,300italic,300&subset=latin,greek,greek-ext,cyrillic-ext,latin-ext,cyrillic
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://access-synchronizationftp03.ukit.me/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text
Size
14 kB (14088 bytes)
Hash
13757dd82e5036146757616f6aa738f3
f6cc6c98bc6109c2fc671c780c1bafc7d99f5708
fa4a24934e267242231a14021b1fcd6cad62ee5425e7732d000db9b89c62920a

HTTP Headers

GET /css?family=Ubuntu:400,700italic,700,500italic,500,400italic,300italic,300&subset=latin,greek,greek-ext,cyrillic-ext,latin-ext,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 16:47:12 GMT
date: Fri, 08 Dec 2023 16:47:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash