Основан в 1939 году
по постановлению бюро Пермского обкома ВКП(б)
According to technical analysis and cyber-awareness reports, is a website designed to facilitate phishing attacks, specifically targeting social media and email credentials. It acts as a platform for creating "fake" or "spoofed" login pages for popular websites such as Facebook, Instagram, Gmail, and others.
Its popularity stems from its ease of use, allowing individuals with minimal technical skills to execute sophisticated phishing attacks. Status and Domain History
PHP serves as the primary server-side scripting language. z shadowinfo
Security professionals use security tools to flag malicious networks early. If you encounter a suspicious URL, look up its registration profile on authoritative WHOIS directories or verify community threat alerts via security platforms like HackerOne to see if the link has been flagged as malicious. Summary of Phishing Platform Indicators Characteristic Legitimate Login Page Spoofed PaaS Page (e.g., Z-Shadow clones) Registered by the parent company (e.g., Meta, Google).
The site itself may host malware or trackers designed to compromise the person attempting to use the phishing tools. Status and Domain History PHP serves as the
A malware analyst found a suspicious DLL loading at startup. The file was timestamped two days ago. Using , the analyst found a shadow copy from four days ago where the DLL did not exist. Another shadow from three days ago showed the DLL was written by svchost.exe (a classic sign of code injection). The analyst traced the infection back to a malicious email attachment.
A financial analyst was fired. Before leaving, they deleted a folder named Q4_Confidential . HR suspected data theft. Running on the laptop revealed that 72 hours prior to termination, the folder existed and contained a file named Client_List.xlsx . The shadow copy metadata showed a USB device mounted during the same timestamp (via USB device forensics). The company had the proof needed for legal action. with expiration extending to April 29
: The site hosted exact visual replicas of login screens for mainstream platforms, including Facebook, Instagram, Google, and gaming portals.
The domain was registered on April 29, 2018 , with expiration extending to April 29, 2027 .