# uppholdzloginl-1.gitbook.io — MALICIOUS

> uppholdzloginl-1.gitbook.io is a credential phishing domain flagged by 12/95 VirusTotal vendors. Users should avoid entering login details.

## Summary
The domain uppholdzloginl-1.gitbook.io is engaged in credential phishing, a threat where attackers attempt to steal user login credentials by impersonating legitimate services. This domain specifically targets users by deceiving them into submitting sensitive information, risking unauthorized access to personal or financial accounts.

This domain was registered on March 30, 2014, through Cloudflare, Inc and currently resolves to IP address 104.18.40.47. It is actively flagged by 12 out of 95 security vendors on VirusTotal, indicating significant suspicion. Additionally, it appears on one security blocklist and is blocked by OpenPhish, a reputable threat intelligence provider. Google Safe Browsing has classified the domain under the SOCIAL_ENGINEERING category, confirming its malicious intent. The SSL certificate issued by Google Trust Services may lend a false sense of legitimacy to unsuspecting users.

Users who have visited uppholdzloginl-1.gitbook.io should immediately refrain from entering any credentials or personal information. If credentials were submitted, users should change their passwords on the legitimate service immediately and enable multi-factor authentication where available. It is also advised to monitor accounts for unauthorized activity and report suspicious emails or links to their IT or security teams. Maintaining updated security software and relying on trusted blocklists can help prevent exposure to such high-risk credential phishing domains.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2014-03-30 06:09:09
- Registrar: Cloudflare, Inc
- IP: 104.18.40.47

## Detection Status
- VirusTotal: 12 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["OpenPhish"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/837597bc-8114-49c2-b7ef-e1e3d5c71abb
- PhishDestroy: https://phishdestroy.io/domain/uppholdzloginl-1.gitbook.io/
- LLM endpoint: https://phishdestroy.io/domain/uppholdzloginl-1.gitbook.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/uppholdzloginl-1.gitbook.io/
Last updated: 2026-04-12