ocsp.usertrust.com/
172.64.149.23 471 B IP 172.64.149.23:0
Hash 86df7b6c23cc86082fa9a9263c784e02
87388cf2380b9f8c34d56d8f2834885b93c0398b
7a61073ebaaf0d29ed1eb274189fa2390febe6e87b0d7a44e55ccdae7dc77d41
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 16:47:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 08 Dec 2023 12:21:43 GMT
Expires: Fri, 15 Dec 2023 12:21:42 GMT
Etag: "87388cf2380b9f8c34d56d8f2834885b93c0398b"
Cache-Control: max-age=588269,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 83267d24a946b505-OSL
access-synchronizationftp03.ukit.me/css/lib/animate.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 4.8 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/css/lib/animate.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65348)
Hash c0be8e53226ac34833fd9b5dbc01ebc5
b81ef1b22de26af8a7a4656f565fbc91a69d7518
5fbaeb9f8e25d7e0143bae61d4b1802c16ce7390b96ceb2d498b0d96ff4c853f
GET /css/lib/animate.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Tue, 10 Aug 2021 12:36:17 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "611272c1-11846"
age: 0
content-length: 4793
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/css/lib/bootstrap.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 4.3 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/css/lib/bootstrap.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (20306)
Hash 53e2d06928bb6f9d58727487c089fc86
477efd9ad738b7eea986d54198106b57a5c3f0df
1a9c87b682bad723063364a927bcd342309dff88d718ec2b4541a56b081136ae
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /css/lib/bootstrap.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Wed, 07 Dec 2016 14:14:05 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192d-50b9"
age: 0
content-length: 4321
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/css/devicePublish.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 212 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/css/devicePublish.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (724), with no line terminators
Hash 09fb9fdcc48b3b2d7b73cfcc5d367106
799143c2926c4cc0848b10bff430cc719b7980ec
ed39f5b2e159d3ac4d7d308caeb35d30226a8c0a2f9d767bd2e64a81a0af66ea
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /css/devicePublish.min.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Thu, 26 Aug 2021 11:46:11 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "61277f03-2d4"
age: 0
content-length: 212
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/ulib/performance.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 483 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/ulib/performance.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (732)
Hash 0a3a605496dbfacd7fa957623dda2490
16cad3c30124794bc92ec28b5d8a79fb3e499543
7593fbf9194fd063d11576bad118fb0bd636d76653633421221cc89234613726
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /js/ulib/performance.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 15 Jan 2019 11:48:35 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5c3dc893-6183"
age: 0
content-length: 483
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/lib/cssrelpreload.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 526 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/lib/cssrelpreload.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1062)
Hash fd8a94b4537f4d6e6335de7a7811631e
01b79cae1a74830df260ee1ac29cb75e86e01582
dbaff48cbe654765166a7f38b1e76218dbc7b02430e1462421e1a7f0a6cb26eb
GET /js/lib/cssrelpreload.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 16 Feb 2018 14:24:16 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5a86e990-84a5"
age: 0
content-length: 526
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/dist-version/css/pub.v1.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 3.0 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/dist-version/css/pub.v1.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (7628)
Hash 2b4ecb1fc48b1a84d2b7e6807e489616
ce37ddfb076356f9180b1e20b598f9cf37a476d9
58498a9950836f80523da220beb901621aa62f0ef77c636e717b3e4ea91e3137
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /dist-version/css/pub.v1.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Wed, 20 Apr 2022 10:52:05 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "625fe5d5-477c"
age: 0
content-length: 3022
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/lib/requirejs.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 6.8 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/lib/requirejs.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (539)
Hash 36a1fa5a5ed5536889d0e25d473b108e
8c2236f5c3c85ce942dc6fa85e2af674856e2296
2fa19f6b3c28f9c731ff02b27efc3dedde8c2f71e95521c0aec2cbe12de16405
GET /js/lib/requirejs.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: gzip
ddg-cache-status: MISS,MISS
etag: "5848192e-3b81"
age: 0
content-length: 6830
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/css/require/scroll-animation.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 249 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/css/require/scroll-animation.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Hash 355d53d50023d570e08319507ecd0f4b
ca47bf60c5ebc7846a35ef5f7e5fcc1bb5bfda1d
862dab3ceff058e0c5520463eb332f640b5c4ee31f8ecd4f01c237f5096fa77b
GET /css/require/scroll-animation.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Tue, 31 Aug 2021 11:48:21 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "612e1705-229"
age: 0
content-length: 249
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/sitecss/srcset-6566693430885034836e2216-all.css?v=1
185.129.100.126200 OK 68 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/sitecss/srcset-6566693430885034836e2216-all.css?v=1
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (25737), with no line terminators
Hash a969da2aa90c4ee2e4dcb02bd2e87687
e0f2aae120b3c0507f0396dc23cf0d13e11208b9
25b7a37613518fa9d5b2dd728f5935a8c7202ad728b1858e5424d954c85be7c2
GET /sitecss/srcset-6566693430885034836e2216-all.css?v=1 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css; charset=utf-8
x-powered-by: Express
vary: Accept-Encoding
content-encoding: br
x-cms: ukit
cache-control: public, max-age=600
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/ulib/backgroundBlockColor.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 904 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/ulib/backgroundBlockColor.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (555)
Hash 9d800247db546e38a5629b94d8a7b0ea
c6d1d9a42ce088b4c050021074e33f8571cf47ea
6f243262f48e7e934b2767c221ca1ba5426c13dfbd51717685b0e5b72d6ea7fc
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /js/ulib/backgroundBlockColor.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 24 Sep 2019 11:22:23 GMT
etag: W/"5d89fc6f-5b9f"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/css/lib/fontawesome-brand.min.css
185.129.100.126200 OK 38 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/css/lib/fontawesome-brand.min.css
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (12215), with no line terminators
Hash bb98cd49300a8af6b48e3788a6751d9c
255084873817251bfc0fb4e6bf96867cdd66fbb7
fc9d7a1e8342e00b98832d450395db818253e6bb9db9bfb39a23fab673032a7e
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /css/lib/fontawesome-brand.min.css HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Thu, 20 Sep 2018 13:31:31 GMT
etag: W/"5ba3a133-2fb7"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/ulib/upbutton.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 48 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/ulib/upbutton.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1023)
Hash a80286a9e7f621c844fda4faa1360081
3cf3a559990e926e9b4cc3d015ae831191281118
341533d2f82992a8d77213695bcd89f608ad205df6ae9a2f89bbc35996f817c6
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /js/ulib/upbutton.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 24 Jul 2019 11:14:41 GMT
etag: W/"5d383da1-4f41"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Sans:700,700i,400,400i&subset=cyrillic
142.250.74.106200 OK 1.3 kB URL GET HTTP/2 fonts.googleapis.com/css?family=PT+Sans:700,700i,400,400i&subset=cyrillic
IP 142.250.74.106:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash 6496daf76d68525971591c92a6a7e685
c3314853f077a8c5f2688e85ff08a76fd8da0a4e
b3a0d1e0b0dfef6af02a2cf653ed102265a763057b508b144f7e0ab5db3f1553
GET /css?family=PT+Sans:700,700i,400,400i&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 16:47:12 GMT
date: Fri, 08 Dec 2023 16:47:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/uploads/s/e/e/j/eejrixzz4c4g/img/full_RJZj5GzE.png
185.129.100.126200 OK 167 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/uploads/s/e/e/j/eejrixzz4c4g/img/full_RJZj5GzE.png
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type PNG image data, 1500 x 678, 8-bit/color RGBA, non-interlaced\012- data
Size 167 kB (166602 bytes)
Hash ba88d5cff3cc59ad81233c5feb7b93fd
8596ec2701aaeddd8f1b1b4c221b6649faaf7620
26d4993766240340dc2388dceecc81133a09c07bb1f43f1833deb68c5819781c
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /uploads/s/e/e/j/eejrixzz4c4g/img/full_RJZj5GzE.png HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/png
content-length: 166602
last-modified: Tue, 28 Nov 2023 23:06:03 GMT
cache-control: max-age=3600, must-revalidate, public
accept-ranges: bytes
etag: "6566725b-28aca"
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/img/ukit-copyright-dark.svg
185.129.100.126200 OK 1.8 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/img/ukit-copyright-dark.svg
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1439)
Hash 132f46cadc92ae7f7bb3e5c7d927bfe0
1e1175c9ae1e9248257ec52e5f45072bef7e7914
eb31801bb8a6b29d7be687d0cf84357a88b3798182bafa8db7d1a38d2a5b2efb
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /img/ukit-copyright-dark.svg HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/templates/ul_remont/css/main-g-theme-site-1-desktop.css
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/svg+xml
last-modified: Fri, 05 Jul 2019 10:57:13 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5d1f2d09-1306"
age: 0
content-length: 1754
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/ulib/critical.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 48 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/ulib/critical.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (4784)
Hash 0dc7cc20d7beba13babc24156e826287
0104550a63cc4667d5b3a015727d11c2b882e879
1fc98f3350dec125f58e451c08bbcb5a4c5011817089f37b6811e1e042a38c98
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /js/ulib/critical.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 18 Dec 2021 14:05:40 GMT
etag: W/"61bdeab4-2292"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/__scale/uploads/s/e/e/j/eejrixzz4c4g/img/full_2n2gNUES.png?quality=60&width=1170&webp=1
185.129.100.126200 OK 4.4 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/__scale/uploads/s/e/e/j/eejrixzz4c4g/img/full_2n2gNUES.png?quality=60&width=1170&webp=1
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1170x162, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 51730395664980043f5891de5b794589
66bbd0ee58e92186a271783ba7ee7ddbd4eda740
dc555aeb5f08e117a7cc4b7900db855ed27f3188b9e75e5c4e4f22ae2f646f30
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /__scale/uploads/s/e/e/j/eejrixzz4c4g/img/full_2n2gNUES.png?quality=60&width=1170&webp=1 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/webp
content-length: 4394
last-modified: Tue, 28 Nov 2023 22:59:01 GMT
accept-ranges: bytes
etag: "656670b5-27ee"
cache-control: max-age=3600, must-revalidate, public, max-age=3600, must-revalidate, public
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/ulib/ulErrorHandler.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 812 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/ulib/ulErrorHandler.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1764)
Hash 05e02e9941935e975055a70e2400ccde
9413940405f59b42297bc7cb33e2299286630b4a
533d7d7adefad76fe26771716186816069dac601d088ac38a8e1c8372faff65f
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /js/ulib/ulErrorHandler.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Jul 2018 11:31:14 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5b51c802-7a64"
age: 0
content-length: 812
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/sitecss/typography.css?v=1
185.129.100.126200 OK 35 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/sitecss/typography.css?v=1
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (2935)
Hash 977b775ef6b90ce10d385dcd6ef10ab9
463e25fc61e1e8137515c19c4daa772c02dcf965
2acd75affe48c12165f060a6c49843e368ff4e36d195efd56cd36dcfbc66fe7f
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /sitecss/typography.css?v=1 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css; charset=utf-8
x-powered-by: Express
vary: Accept-Encoding
content-encoding: br
x-cms: ukit
cache-control: public, max-age=600
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/lib/error-stack-parser.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 1.6 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/lib/error-stack-parser.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (4672)
Hash 120beee18caf6652e4bc1837488c0265
e2cba6bb53b9b4254ee61d65ba4cfcaeeef8fcd5
c23785796f4d4692c656777ba12b495c9b4431e757b50799e708431f03c16e89
GET /js/lib/error-stack-parser.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-1241"
age: 0
content-length: 1610
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/lib/jquery-2.1.0.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 30 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/lib/jquery-2.1.0.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (32065)
Hash ed9cc403240d6bb8795d9dab787bb992
a7505476a2af3a88f0745b4a772ba44052ab6b2c
82c0e95421976376332a5c09dda6ad817660a852770f73f70992b47b6c49faaf
GET /js/lib/jquery-2.1.0.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-1469e"
age: 0
content-length: 29483
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/ulib/viewportObserver.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 1.2 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/ulib/viewportObserver.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1343)
Hash ad5bc9edeb7c7eab97eced3712e56c9d
4302887c0b03c7df4500050b7b99282368da864f
7e4b8a392e3044dcaf63bde4bacaeeb0bb130cfd892157d48f53650565886eb8
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /js/ulib/viewportObserver.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 24 Jul 2019 11:14:41 GMT
etag: W/"5d383da1-6059"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/favicon.ico?v=08291986055094935
185.129.100.126200 OK 3.7 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/favicon.ico?v=08291986055094935
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 6559a5d8bd1b5c2a0b14254a46644c85
d17a4ec9d00648690d5c585c997ac9694b76d438
07330cbd950c0b92d01ab839c614af9abb2aba43c083ecbb6d4378d92304d263
GET /favicon.ico?v=08291986055094935 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/x-icon
last-modified: Tue, 28 Nov 2023 22:27:04 GMT
etag: W/"65666938-1536"
cache-control: max-age=3600, must-revalidate, public
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/lib/css.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 720 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/lib/css.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1385), with no line terminators
Hash 8b18dc4ce1fc58e8357f6619bd0a3a5c
fa0c0f2e270f3c9c94eb38c941c9eaf291921514
2bd7aac5d7147a77b554ab84cf2ec825520c7cdb34a11b4ce7685aa78a6b84f5
GET /js/lib/css.min.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=pddOOUlaeQ7RfCKuactq; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-569"
age: 0
content-length: 720
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/css/require/emailStatusDialog.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 148 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/css/require/emailStatusDialog.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Hash 80a3030e7d16691245098e5276b7a901
780dc0ed81aaea0e58c6f09df5863bb31701df21
8ad0edd2a2278b2d5bf0a7847dbbf923db5fecbcbf3de6210a72c30a695ed1c7
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /css/require/emailStatusDialog.css?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=pddOOUlaeQ7RfCKuactq; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: text/css
last-modified: Wed, 30 Aug 2017 12:19:04 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "59a6ad38-90"
age: 0
content-length: 148
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/widgets/feedBack/js/recaptchav2.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 726 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/widgets/feedBack/js/recaptchav2.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1688)
Hash 85fa034f46578213c3a5ff24b4312659
cd9a467c89349e542931498b1819bcf712bea28d
e078960bf707e08eee58506b8b8d7358fa6d88f7a89abdb9967c0cbf9dc3a75a
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /widgets/feedBack/js/recaptchav2.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=pddOOUlaeQ7RfCKuactq; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 03 Dec 2019 14:53:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5de676d2-47c7"
age: 0
content-length: 726
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/widgets/feedBack/js/interaction.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 25 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/widgets/feedBack/js/interaction.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (8409)
Hash 38832391230610a059253c953926dd80
d27d09fd752fcac15aaf3f5f9eb207488775f4dc
5d748c1a6ff02a8dee965138b4355cc65a09a4c7f5ebfbee93cdf49f0540d6cb
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /widgets/feedBack/js/interaction.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 03 Dec 2019 14:53:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5de676d2-6208"
age: 0
content-length: 3109
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/api/feedBack/pass
185.129.100.126200 OK 46 B URL GET HTTP/2 access-synchronizationftp03.ukit.me/api/feedBack/pass
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 774eaf53aaee84e8a27548b4a3308184
8653501283f44c924412a55c9b44b605abc48c45
2fb6acc83960fbbe1cb8a34cfff18b6908e147de2670ead4892dc1956c3665bf
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /api/feedBack/pass HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=pddOOUlaeQ7RfCKuactq; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-credentials: true
set-cookie: x-csrf-token=CeYcibM1OSXD5ko1OwIp; Path=/
session=97XCTcIh_-62oznZyNYsKQ._bKYZ6OxkzhcPgqTaqTOEZpwmEtIR80iuPJwYH1z9odYAUzW2HhUSb57GOpeg5Wkl5UYBPguPa6MwPVkwWLIOYtY-TsaMGNkLgWK2VMxGaI-nR-I9eAG3MPy4WXNVfaylph6xyDJIT6QQRSGDxXH92R2nvCN4DAEGgX5VGYltYSpJZjVMUgGVUpSW2UoVv-At0ALaHj7Qdr3Ykv-d1lpQ87lE9Ji-BXxHYrrMSc1mQYpYExgVppetQHG2gwI2ICwquj7AiZy0COLrV3bj7EWaPmKJYn5I-IJkUNaTbY9ksKiuJhw4ou7qRSeJNNRKOsWZJfqTFWa-2PAfQab2bE0ijOUdJttM8IRNcMDhn6kcRDNlOrJbensEbWHjeu7vn3T.1702054032910.630720000000.2cXfJHKeKiKQpeAlZszfuDfFxDEABmiHIsiqLqsakis; path=/; expires=Thu, 03 Dec 2043 16:47:13 GMT; secure; httponly
etag: W/"2e-pd06xTcJ85S9lRXMIyI1+Q"
cache-control: no-cache, no-store, max-age=0, must-revalidate, post-check=0, pre-check=0
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
216.58.207.227200 OK 45 kB URL GET HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 216.58.207.227:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 16:09:25 GMT
expires: Fri, 06 Dec 2024 16:09:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
age: 88668
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/ulib/eventDispatcher.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 37 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/ulib/eventDispatcher.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (481)
Hash b099986e5000c95f4d1b35967840ecbc
d4613e67d333d0fbc42537f506752548b1882f3d
de6e8b3cc836e6778e0f59baa3dc09148b24b4d7f62e22c2444d69d591ef7d08
GET /js/ulib/eventDispatcher.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-9124"
age: 0
content-length: 279
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/
185.129.100.126200 OK 115 kB URL User Request GET HTTP/2 access-synchronizationftp03.ukit.me/
IP 185.129.100.126:443
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Size 115 kB (115206 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Outlook
GET / HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; Domain=.ukit.me; HttpOnly; Path=/; Expires=Sat, 07-Dec-2024 16:47:12 GMT
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
vary: Accept-Encoding
content-encoding: gzip
x-cms: ukit
cache-control: public, max-age=600
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/lib/modernizr-webp.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 7.8 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/lib/modernizr-webp.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (8051), with no line terminators
Hash f9216db86af1944a98c72e6101dea2f3
17cd493ab7e26f26c17ff3a61714127aaf25307a
e3a5974caca7922f8b2b872e957cff0c0294c6d2ecc591d8650459727b2816c7
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /js/lib/modernizr-webp.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 18 Dec 2021 14:05:40 GMT
etag: W/"61bdeab4-1e51"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/api/loadsitesstat/resolve
185.129.100.126200 OK 0 B URL POST HTTP/2 access-synchronizationftp03.ukit.me/api/loadsitesstat/resolve
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Outlook
POST /api/loadsitesstat/resolve HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 57
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: text/html; charset=utf-8
vary: Origin, X-HTTP-Method-Override, Accept-Encoding
access-control-allow-credentials: true
set-cookie: x-csrf-token=pddOOUlaeQ7RfCKuactq; Path=/
session=0Wz_PfixEiQrrHjozLmD9Q.G1GrHTXfk_YCCRbgmueXj9ec8w5y1W2fYtTPfDla8Oe5l6f8PPG3ztGW5yaYSNt6xsI_CFTlPPcfLjDO7X7haQREfcfw09V6WriJJpbzyk9DpT-XoPgQg_r6lB9zR8ZxfqiTF3RdvHfGuAgyaiiMJcuBkdKQ6EpTzh4Aacs5VLQD-mrudITn7Mjkmwq9pXErIkP4xtWMDC6iGMsipCc4Hbr6AEiziY3yR0JB5aYPsnRqzP-bOkveqZMbDg2A67wX0RfJRdKhEF-mhEmW7uZ_d-1IEu869GBDTZzTNDstcAPh9qrh_uRriJ7v9gy2C9WUqQ6aDQiKH2E5-qS8K6PU5toI3ig123gM3qXLW3-kPALkSORVFkqqgWXaptBOiclP.1702054032910.630720000000.htzD9abplDdTBicUbczDf3qJ6cq2oGrXs4Pzv44tBYU; path=/; expires=Thu, 03 Dec 2043 16:47:13 GMT; secure; httponly
etag: W/"0-1B2M2Y8AsgTpgAmY7PhCfg"
cache-control: no-cache, no-store, max-age=0, must-revalidate, post-check=0, pre-check=0
x-xss-protection: 1; mode=block
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
216.58.207.227200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP 216.58.207.227:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:57 GMT
expires: Fri, 06 Dec 2024 23:21:57 GMT
cache-control: public, max-age=31536000
age: 62716
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
216.58.207.227200 OK 47 kB URL GET HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP 216.58.207.227:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Hash 87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1
GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:06:18 GMT
expires: Fri, 06 Dec 2024 05:06:18 GMT
cache-control: public, max-age=31536000
age: 128455
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
104.18.10.207200 OK 22 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
IP 104.18.10.207:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (21822)
Hash feda974a77ea5783b8be673f142b7c88
b71d1c7c315b67c614563382d1c2a868ac14d729
0fb1bbca73646e8e2b93c82e8d8b219647b13d4b440c48e338290b9a685b8de1
GET /font-awesome/4.2.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-08-02 19:09:15
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: a20f8f9fd039c143ec88748f1e9f7c9f
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 994181
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83267d289fb556aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/widgets/feedBack/js/view.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 14 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/widgets/feedBack/js/view.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (1118)
Hash 50ef8ee57c20ecdc0472095927ca8ad5
7992524f0ef91e0c316eeeb6157bb0a3721df512
73a4ef98fe89d7cfe624f2eae07e37e6ea928ed6874fdaa0aa3ce065758d30d9
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /widgets/feedBack/js/view.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Feb 2020 15:00:41 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5e3d7b99-375e"
age: 0
content-length: 585
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/i18n/en/widgets.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 74 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/i18n/en/widgets.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /i18n/en/widgets.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 08:52:17 GMT
etag: W/"656ee4c1-1232e"
cache-control: max-age=3600, must-revalidate, public
content-encoding: gzip
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/ulib/scroll-animation.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 10 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/ulib/scroll-animation.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (5475)
Hash 512b0771486f8c57ec82f9e87b581533
24635c9a623704dce4bc7335b54402a6e5b6fad6
d0b50460570d0495f410940349f1435c4180a86fc99e8e977754f6d444ac9deb
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /js/ulib/scroll-animation.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 21 Dec 2021 09:32:58 GMT
etag: W/"61c19f4a-286f"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/api/loadsitesstat/add
185.129.100.126200 OK 0 B URL POST HTTP/2 access-synchronizationftp03.ukit.me/api/loadsitesstat/add
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Outlook
POST /api/loadsitesstat/add HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 57
Origin: https://access-synchronizationftp03.ukit.me
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/html; charset=utf-8
vary: Origin, X-HTTP-Method-Override, Accept-Encoding
access-control-allow-credentials: true
set-cookie: x-csrf-token=Q5DRfRmJqXpDRC2xSL98; Path=/
i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; Max-Age=604800; Path=/; Expires=Fri, 15 Dec 2023 16:47:12 GMT; HttpOnly; Secure
session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4; path=/; expires=Thu, 03 Dec 2043 16:47:13 GMT; secure; httponly
etag: W/"0-1B2M2Y8AsgTpgAmY7PhCfg"
cache-control: no-cache, no-store, max-age=0, must-revalidate, post-check=0, pre-check=0
x-xss-protection: 1; mode=block
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Sans%20Caption:700,700i,400,400i&subset=cyrillic
142.250.74.106200 OK 2.8 kB URL GET HTTP/2 fonts.googleapis.com/css?family=PT+Sans%20Caption:700,700i,400,400i&subset=cyrillic
IP 142.250.74.106:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (2876), with no line terminators
Hash 29b476f48aa2e73ad0c2d4e6b4c570ef
b7ec408b491483361c8c1a180cd0a3b9ae5b5972
c91139e5a430d7bac37116d4bbfe9528a0f86ede40559b9c36785c705d54c305
GET /css?family=PT+Sans%20Caption:700,700i,400,400i&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 16:47:12 GMT
date: Fri, 08 Dec 2023 16:47:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/dist-version/js/pub.v1.bundle.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 1.1 MB URL GET HTTP/2 access-synchronizationftp03.ukit.me/dist-version/js/pub.v1.bundle.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Size 1.1 MB (1148459 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dist-version/js/pub.v1.bundle.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 26 Oct 2023 13:00:48 GMT
etag: W/"653a6300-11862b"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/ulib/orderForm.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 4.3 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/ulib/orderForm.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (4480), with no line terminators
Hash bc9993e0cfbf00f73a6df34492e20c9d
49adfc07199811794bfc93e111ab54ca17a51a18
2791c25a53f2d56282f035cc29074d2538b2efcbf6b64d1ba062c48926eee2a8
GET /js/ulib/orderForm.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Jan 2022 09:32:03 GMT
etag: W/"61ee7213-10ae"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/img/upbutton.svg
185.129.100.126200 OK 1.5 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/img/upbutton.svg
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1562), with no line terminators
Hash c211fd46e0ed220c6efaf4dac2b7ef75
4fd2c8863eec9f20e6d3f2e6a0b5e27ecbc96d5f
a4fc5922f071360a3329c05d560c8a6abc15677ac7972cdc081776e57c6cd483
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /img/upbutton.svg HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/templates/ul_remont/css/main-g-theme-site-1-desktop.css
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: image/svg+xml
last-modified: Wed, 07 Dec 2016 14:14:06 GMT
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
etag: "5848192e-5d0"
age: 0
content-length: 676
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/js/requireConf.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 55 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/js/requireConf.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (32065)
Hash 08ffd87764a67a4b74cc28913a86777f
5101ef61f1b77e709c156f948648923e521e3a8c
b26248035a70f01d37a38b4fe64abda5ded10ec3a6416b6f583e7dd738549000
GET /js/requireConf.js?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 08:52:18 GMT
etag: W/"656ee4c2-d5f3"
cache-control: max-age=3600, must-revalidate, public
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/i18n/en/constructor.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
185.129.100.126200 OK 68 kB URL GET HTTP/2 access-synchronizationftp03.ukit.me/i18n/en/constructor.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /i18n/en/constructor.json?v=2023_11_27T11_38_07_03_00_2081fae145e6e706fc2961672e27c33b9222c9e7 HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1; x-csrf-token=Q5DRfRmJqXpDRC2xSL98; i18n_b97b50e59a0819bd0fc9d477f903e77e923a904d2d8b87f90a15548b35124351=s%3A1d55f595832a8d0bc05384ecc183517a68d9ab00529e722f9a084a64b670788c24d06d606dead78fcc844ef5caa2e7502ffcce48a6cbe298a9b1a6e67cfacb7eee1d3124a75f61fcc057581a4de10838f7d51cd623df.q%2Br2FNrpzZ2fXqSt7zWU1Y%2BSHyFDW17%2F7XOKAU%2BjpQ8; session=F1nNuLZkCar9BOh8rCyHBg.gDW_FO6sSkidAh8ch2JgcFqxhrk_yMr4yg_LBJPRTHT3ZsNWW8MPI31LpvGv7q1V8C9-r-yFRzyw5g8yArV3TTYdNY_BVIWq8ppOU9To-O3kvULmFnSrVMyjFi4sfOJs_eCl4ivCgxWR3_dWIzHA67UGaLP7ccGvd2m0FpESOedyEUdFlUd12OozPJJ54zWemRdzjMUVr0r2JmAv9mEGKClRH7FgvIq6gtnzFVYw1Vt9strpQ2Ael4b-wOJc-MeN8pssw--xgS4N0MPxmKQfrw6_gKFaX8pb2hSXW3Zcy2XYOwZQWycXH_0XRvG5Nthhe01BkoQDgodEXFgIHymqrCKHiTebrtw3PzFlU0N-BF94gA7QR2r7c1X2M7ADYMnb.1702054032910.630720000000.dnh0OVnRLBMXg2Syj1p1pyD6Ws7KotwXEkGEPoewDJ4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:13 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 08:52:17 GMT
etag: W/"656ee4c1-109b7"
cache-control: max-age=3600, must-revalidate, public
content-encoding: gzip
X-Firefox-Spdy: h2
access-synchronizationftp03.ukit.me/templates/ul_remont/css/main-g-theme-site-1-desktop.css
185.129.100.126200 OK 1.3 MB URL GET HTTP/2 access-synchronizationftp03.ukit.me/templates/ul_remont/css/main-g-theme-site-1-desktop.css
IP 185.129.100.126:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoGetSSL
Subject*.ukit.me
Fingerprint7F:AE:D7:25:CC:82:AC:B7:2B:CF:67:95:84:C7:9A:DC:E7:43:5E:0D
ValidityMon, 30 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Size 1.3 MB (1280743 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Outlook
GET /templates/ul_remont/css/main-g-theme-site-1-desktop.css HTTP/1.1
Host: access-synchronizationftp03.ukit.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Cookie: __ddg1_=Fqq0bnuQw4nyb4DteAI1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Fri, 08 Dec 2023 16:47:12 GMT
content-type: text/css
last-modified: Fri, 27 May 2022 14:38:48 GMT
cache-control: max-age=600, public, must-revalidate
content-encoding: br
vary: Accept-Encoding
etag: "6290e278-138ae7"
age: 0
content-length: 66589
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Ubuntu:400,700italic,700,500italic,500,400italic,300italic,300&subset=latin,greek,greek-ext,cyrillic-ext,latin-ext,cyrillic
142.250.74.106200 OK 14 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Ubuntu:400,700italic,700,500italic,500,400italic,300italic,300&subset=latin,greek,greek-ext,cyrillic-ext,latin-ext,cyrillic
IP 142.250.74.106:443
Requested by https://access-synchronizationftp03.ukit.me/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash 13757dd82e5036146757616f6aa738f3
f6cc6c98bc6109c2fc671c780c1bafc7d99f5708
fa4a24934e267242231a14021b1fcd6cad62ee5425e7732d000db9b89c62920a
GET /css?family=Ubuntu:400,700italic,700,500italic,500,400italic,300italic,300&subset=latin,greek,greek-ext,cyrillic-ext,latin-ext,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://access-synchronizationftp03.ukit.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 16:47:12 GMT
date: Fri, 08 Dec 2023 16:47:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2