| h3yfsx.dgwt.my.id/img-sys/server_misconfigured.png | 172.67.180.71 | 200 OK | 3.2 kB |
URL GET HTTP/3h3yfsx.dgwt.my.id/img-sys/server_misconfigured.png IP172.67.180.71:443
Requested byhttps://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi CertificateIssuerLet's Encrypt Subjectdgwt.my.id Fingerprint23:F4:DB:42:D1:64:BC:30:C9:80:30:3E:51:C4:12:B2:77:F9:94:2B ValidityWed, 13 Mar 2024 14:09:00 GMT - Tue, 11 Jun 2024 14:08:59 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hashf79adaf00f83dc9757086cdbe8645ff0 82f37b8be7668eab8e1a06de828cb336799c8134 944120fb6962c7484d769d645e6d830850eead9394f6a84090aed489cfc0c41f
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | PhishTank | phishing | Other |
GET /img-sys/server_misconfigured.png HTTP/1.1
Host: h3yfsx.dgwt.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:24:44 GMT
content-type: image/png
content-length: 3164
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 03:24:44 GMT
last-modified: Mon, 21 Mar 2022 16:03:23 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K3b9eNxMx6pUKtvidGzYslArSi0gFD%2B1vXe7BmVrHd8rscTVgIe7y4QqNLN5VlfkKcqGGtXtgsD9oLaBBqOraP4KK0DFkF94gr6NwF9IhGXnHV2hZ9tjjj3iOL2jzBmszGZSrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879b38c62ebc5695-OSL
alt-svc: h3=":443"; ma=86400
|
|
| h3yfsx.dgwt.my.id/img-sys/server_moved.png | 172.67.180.71 | 200 OK | 3.3 kB |
URL GET HTTP/3h3yfsx.dgwt.my.id/img-sys/server_moved.png IP172.67.180.71:443
Requested byhttps://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi CertificateIssuerLet's Encrypt Subjectdgwt.my.id Fingerprint23:F4:DB:42:D1:64:BC:30:C9:80:30:3E:51:C4:12:B2:77:F9:94:2B ValidityWed, 13 Mar 2024 14:09:00 GMT - Tue, 11 Jun 2024 14:08:59 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hashf6590a396da81a8e4cce7ca046874ffd 7e68db322c32ca079b2c836812d3a25204ab93cc 3a22057583d3e17bc94990d92a3425d5510dc5bdb60fe40fafeb405a38f8ed28
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | PhishTank | phishing | Other |
GET /img-sys/server_moved.png HTTP/1.1
Host: h3yfsx.dgwt.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:24:44 GMT
content-type: image/png
content-length: 3327
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 03:24:44 GMT
last-modified: Mon, 21 Mar 2022 16:03:23 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EDQRYTj2R0KY5u%2BWG6%2BCZ%2FKZWyXDPAlLnEeui8G4RNasQDIzzPAqLy1sxillLFB%2Bnths6Yn4E%2Fo7EgUHbvylN5Pe4GCWQW80K4Ier8L0lnQ6mgycyZ5OoINeS10pmLZElrrkDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879b38c62ebd5695-OSL
alt-svc: h3=":443"; ma=86400
|
|
| h3yfsx.dgwt.my.id/img-sys/IP_changed.png | 172.67.180.71 | 200 OK | 2.9 kB |
URL GET HTTP/3h3yfsx.dgwt.my.id/img-sys/IP_changed.png IP172.67.180.71:443
Requested byhttps://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi CertificateIssuerLet's Encrypt Subjectdgwt.my.id Fingerprint23:F4:DB:42:D1:64:BC:30:C9:80:30:3E:51:C4:12:B2:77:F9:94:2B ValidityWed, 13 Mar 2024 14:09:00 GMT - Tue, 11 Jun 2024 14:08:59 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hashec081653bd4c836483e6d612588d18ec 91c7e4cfa061808881575a875741773a949a9e0a b19da51b5e9c9b29cd8523d85d92e99e4812c891c394929c9bf67557f560672c
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | PhishTank | phishing | Other |
GET /img-sys/IP_changed.png HTTP/1.1
Host: h3yfsx.dgwt.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:24:44 GMT
content-type: image/png
content-length: 2939
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 03:24:44 GMT
last-modified: Mon, 21 Mar 2022 16:03:23 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TA8tmoXmmyGV3Q3eiiUJFsatpYo39%2FQRq%2F02bKvjPo4f6e5XbY%2F3zhrXciNItQlSzd3yUhMxosf0vFoQYsRrV3nKjgvSXmWF8cyGlQ0Le6cBINLrjFQrO2wWQw7IInCzIjn7tQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879b38c62ebb5695-OSL
alt-svc: h3=":443"; ma=86400
|
|
| h3yfsx.dgwt.my.id/img-sys/error-bg-left.png | 172.67.180.71 | 200 OK | 8.1 kB |
URL GET HTTP/3h3yfsx.dgwt.my.id/img-sys/error-bg-left.png IP172.67.180.71:443
Requested byhttps://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi CertificateIssuerLet's Encrypt Subjectdgwt.my.id Fingerprint23:F4:DB:42:D1:64:BC:30:C9:80:30:3E:51:C4:12:B2:77:F9:94:2B ValidityWed, 13 Mar 2024 14:09:00 GMT - Tue, 11 Jun 2024 14:08:59 GMT
File typePNG image data, 410 x 400, 8-bit/color RGBA, non-interlaced Hashcdbe46a0178886162bdedff35336154e f5acc131f7d3fdfbebfc4a55be73cf51c7638937 862885b79bef22ad5716b2dbfa714d52f628a439f2921bb9520a4630bbea5d4e
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | PhishTank | phishing | Other |
GET /img-sys/error-bg-left.png HTTP/1.1
Host: h3yfsx.dgwt.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:24:44 GMT
content-type: image/png
content-length: 8072
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 03:24:44 GMT
last-modified: Mon, 21 Mar 2022 16:03:23 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cqweEW2T40PsR6O%2BR0ymTaQUdn07U5RgQoerylpolJGW3LgvtUzFbuA6p7liHOedxD9D1pfv7Xb3vrQEu3gy5eubyNrufCPTMKyv9E9SMHemmFG%2BwxdaULmXorhMiJSOn0MGDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879b38c63ec85695-OSL
alt-svc: h3=":443"; ma=86400
|
|
| h3yfsx.dgwt.my.id/favicon.ico | 172.67.180.71 | 404 Not Found | 10 kB |
URL GET HTTP/3h3yfsx.dgwt.my.id/favicon.ico IP172.67.180.71:443
Requested byhttps://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi CertificateIssuerLet's Encrypt Subjectdgwt.my.id Fingerprint23:F4:DB:42:D1:64:BC:30:C9:80:30:3E:51:C4:12:B2:77:F9:94:2B ValidityWed, 13 Mar 2024 14:09:00 GMT - Tue, 11 Jun 2024 14:08:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4070) Hashd27201bd5675bbab4d37519a3f6c455f 752d2560ab7127e81e88a4932dd55f1480247ce6 b7dd23a77ed6bd88516a58ba880c87f51ef0ec58b7b82f4d582e2f7858f55893
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | PhishTank | phishing | Other |
GET /favicon.ico HTTP/1.1
Host: h3yfsx.dgwt.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 03:24:44 GMT
content-type: text/html
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s5vCVexErlAuCh6ErpM5iBedYDqkyUEKUN6pJK5GPzdYOGkTfdx1rv71UjE9%2Bbxg1H4nUPRT%2FzvuqKvZsR3JX2y1f49%2BGEASK8OlUFEgRr6%2FXON9KZsp8nKPTqqePR54VdGkbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879b38c94f7c5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi | 172.67.180.71 | 200 OK | 7.2 kB |
URL User Request GET HTTP/3h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi IP172.67.180.71:443
CertificateIssuerLet's Encrypt Subjectdgwt.my.id Fingerprint23:F4:DB:42:D1:64:BC:30:C9:80:30:3E:51:C4:12:B2:77:F9:94:2B ValidityWed, 13 Mar 2024 14:09:00 GMT - Tue, 11 Jun 2024 14:08:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (7507), with no line terminators Hash1cc0c264b73eadae6e742e03fa7750e5 6228e4fdf67127a9715a213cb458862c0efe9787 36eef75259120b1f8622df9f6c81cac7ae597090043f82c3dad9f0d6f6568480
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | PhishTank | phishing | Other |
GET /cgi-sys/defaultwebpage.cgi HTTP/1.1
Host: h3yfsx.dgwt.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:24:43 GMT
content-type: text/html
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Wt87pQHGSCZEOwXCFM0obHHE%2FIOH95JdmxDVQJOFIj2p%2FMgsBhMSasVuFKKdlQaorvtXIQ23a8%2BVuFCz2EAmT8CdpWhD9bGcXqhMFkVJDjoMZHeBVy%2Ff%2F11VmoDI99AggYxtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879b38c31ddf5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| h3yfsx.dgwt.my.id/img-sys/powered_by_cpanel.svg | 172.67.180.71 | 200 OK | 5.6 kB |
URL GET HTTP/3h3yfsx.dgwt.my.id/img-sys/powered_by_cpanel.svg IP172.67.180.71:443
Requested byhttps://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi CertificateIssuerLet's Encrypt Subjectdgwt.my.id Fingerprint23:F4:DB:42:D1:64:BC:30:C9:80:30:3E:51:C4:12:B2:77:F9:94:2B ValidityWed, 13 Mar 2024 14:09:00 GMT - Tue, 11 Jun 2024 14:08:59 GMT
File typeSVG Scalable Vector Graphics image Hashcfcf3d7719b124ecd2625b83cfdf014d 8d9090b5c06b0507aca2d4348779b1e5d22b7941 65055fa73adca7e37605eb5c65d74ca7bf0295d78e9b0a2461fb034974d94584
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | PhishTank | phishing | Other |
GET /img-sys/powered_by_cpanel.svg HTTP/1.1
Host: h3yfsx.dgwt.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:24:44 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 03:24:44 GMT
last-modified: Mon, 21 Mar 2022 16:03:23 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qJVJV6S%2FQCg9c2c5QSmotAUM9mrkMGo%2FEIL6lK%2F3v%2Bbz4k%2FVO%2F0DSOBWa5svwVjMxU3bSKYk1TlZGnLpQmUbmQ3akG7zluA2W%2BC12YWiQ89UNOmRGEmEv00fSzfiqyU4FWorOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879b38c62ebf5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| h3yfsx.dgwt.my.id/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 172.67.180.71 | 200 OK | 1.2 kB |
URL GET HTTP/3h3yfsx.dgwt.my.id/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP172.67.180.71:443
Requested byhttps://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi CertificateIssuerLet's Encrypt Subjectdgwt.my.id Fingerprint23:F4:DB:42:D1:64:BC:30:C9:80:30:3E:51:C4:12:B2:77:F9:94:2B ValidityWed, 13 Mar 2024 14:09:00 GMT - Tue, 11 Jun 2024 14:08:59 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp | PhishTank | phishing | Other |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: h3yfsx.dgwt.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://h3yfsx.dgwt.my.id/cgi-sys/defaultwebpage.cgi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:24:43 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 20:54:07 GMT
etag: W/"6622d9ef-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g7kjmSzlfkgcXtVRGHBgvlTBGcXjuORZdQRFUnVIkxsSfEO3X1Y%2Btyy9ZWoFOkQxC1UfFTXogh%2FekvnsJXTzghf5clLwYW46Jn3YQW36uwNS2mVHmr5lx6lDdOscLvjUnRTxfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879b38c62ec05695-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 27 Apr 2024 03:24:43 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|