| sgmassageservice.msge4.my.id/haykaljb/img/1f1f8-1f1ec.png | 172.67.222.230 | 200 OK | 8.9 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/haykaljb/img/1f1f8-1f1ec.png IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typePNG image data, 160 x 160, 8-bit/color RGBA, non-interlaced Hash5d0204f6f4a52541d900e8564341f2b8 3875ebc1a746d639df871ea94c599e1ea6bfeea1 0a121177ab37b48ac19968a50be2ab7c92f268d8184e1c5387caffef0b67e936
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /haykaljb/img/1f1f8-1f1ec.png HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:47:01 GMT
content-type: image/png
content-length: 8943
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 04:47:00 GMT
last-modified: Fri, 23 Dec 2022 01:39:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=quirN8BnwCyZshdpYKTMsIbDOGwLhOW1NTb0vvhfnIJcUnaMkxOt7rxf3QVIbAyquFgqn%2B3j5yvi%2FEtuaJt00DBDFKmj6KGank3vMUl%2B8H3ni41IGUqNbceuWy8fnsOpKMtz%2F4yRiYTgcnJCXspg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879373ecbbc4568a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/haykaljb/css/watermark.css | 172.67.222.230 | 200 OK | 574 B |
URL GET HTTP/3sgmassageservice.msge4.my.id/haykaljb/css/watermark.css IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
Hash6743b205311bf6f721a390e13de51365 d45faf34714b36f71333fa0d9bcf624d36d13ac4 8fd70332a89fc34c404227205d65a96908fdb027d1c4dadedf3acc1411ec6c64
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /haykaljb/css/watermark.css HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:47:01 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 04:47:00 GMT
last-modified: Sun, 16 Jul 2023 01:33:22 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=emdhnR815yGidfP3cSUNI8XXE2Ji0hEpVura4IvPitVyAyk2SaFYaWweyTZfUI0wiceeHbCiIRMKSFYNrU5JpgdvGP4GhD%2BkUwfFg3pENSM7y4ze1zPPY%2FJi6%2FnjqjEnucASZRGYjvTyMXdW8El8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879373eccbc8568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/haykaljb/img/logotele.png | 172.67.222.230 | 200 OK | 42 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/haykaljb/img/logotele.png IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typePNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced Hashbd0555749258430a1845b24baa0c3be7 e17b29619ab6404fb94e6fc930350914d041af4c 3f7e1fb8f4a13a51e554889a324198b8d0c47b2ff854d20202bc22ffe5768f51
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /haykaljb/img/logotele.png HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/haykaljb/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:47:01 GMT
content-type: image/png
content-length: 41677
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 04:47:01 GMT
last-modified: Tue, 05 Sep 2023 12:39:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aeKNMpKl4hQpIHFbna63lvcHRjETgIPM6DxL9hIPDgo4e4saVKIAYvpzaA9aErJ1L7yyoqzK2slWl2C1vjJERkCydNDHMV28BMqpgTgIEVlzDmgKCz8dFgVUfdW94VBiYSYpNzsjPlq1%2B3I7PWL%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879373f0fe9a568a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/favicon.html | 172.67.222.230 | 404 Not Found | 7.6 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/favicon.html IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0bde7d4b3da67537eaf9188e6f8049cf 64300fc482d01d38b40ab20e15960b6509665e5a 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /favicon.html HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 04:47:02 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PBaXY042JrPrn5wKO2v8PSISUYz00NdNzaI9c3wmTTQp4hIe1Ept82YcmNZ9AB0tJNAHD2ialozghYWJ0w%2BFesAY7htNycM9O1iiQdEs%2BUBsbwJ3JyqEjoJYBIC9tzMa9ggJlLmVqw9p1fTMvFRN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879373f4a94a568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/haykaljb/css/style.css | 172.67.222.230 | 200 OK | 83 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/haykaljb/css/style.css IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /haykaljb/css/style.css HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/main.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:47:01 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 04:47:00 GMT
last-modified: Tue, 05 Sep 2023 12:38:20 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nknZKyj5yYqEMNqPtbI1JcYynDEQwxiy1PxHdPk4NJyU%2BYio%2BJXgDAziFnqhfOUXTS9Ed%2BgaINXO3I3b10p9dnI5u%2BI%2FTasvL%2Be%2BuFgOL8cWD6VG5Zal3Tgz5VMoKmEg4GLFfItalNHxCi6yBIYT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879373ecbbc3568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/haykaljb/js/jquery-3.5.1.min.js | 172.67.222.230 | 200 OK | 90 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/haykaljb/js/jquery-3.5.1.min.js IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /haykaljb/js/jquery-3.5.1.min.js HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/main.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:47:01 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 04:47:00 GMT
last-modified: Fri, 07 Jul 2023 16:02:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WzsWNU5Z4EoIgN%2BfIv0kwwgfb36gztNrjLmOBoRYCLYXkJUqxT70WoJNeM%2BMWkEAscR6KiTElVQA3JV03Mv1rGqE3U7BOIy9fxxpnu7NdgZMfgI1EO%2BGsRLfgDRMoIzzUD3OZPK4nMpuSHNlj%2B1p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879373eccbc5568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/haykaljb/css/chat-bg-pattern-light.ee148af944f6580293ae.png | 172.67.222.230 | 404 Not Found | 1.2 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/haykaljb/css/chat-bg-pattern-light.ee148af944f6580293ae.png IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /haykaljb/css/chat-bg-pattern-light.ee148af944f6580293ae.png HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/haykaljb/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 04:47:01 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YlnezhbVhxMkphAz9Re3qTmp5rDKJZsmOT5nw%2F55LMplsRgW981JPyZFl%2BqRr8sQMOmLH8dN8QdF9xYs4rr66zyqhXWksdep%2BTFcWdUYv2%2F1Wy6%2F%2B1dOeG66G44L3QY9q0LrUQQXjFHuyzXV3A5Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879373f0fe95568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/haykaljb/css/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2 | 172.67.222.230 | 404 Not Found | 1.2 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/haykaljb/css/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2 IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /haykaljb/css/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.465390c6e54c60f4a15f.woff2 HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/haykaljb/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 04:47:01 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cOvNcrps16gqD%2FdgH72F9yFtjKNhKx52KYa3YrUDkDqrOwme7F7DUFXYAaEznDfLXsaJjCpw%2BECSuDuDFGw25Oq8UDXIuR%2B6uy5%2BJDFgI4ztNmyNXChUjwo9P1W1oWnEM9tAecZ6LW0cNjZgc6%2BL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879373f11ea9568a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/main.php | 172.67.222.230 | 200 OK | 7.4 kB |
URL User Request GET HTTP/2sgmassageservice.msge4.my.id/main.php IP172.67.222.230:443
CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (7901), with no line terminators Hash57d62d7931d2633cc5841b66e4d2808a fe7fd4d97ed3253e9c52ad78e029dc103d75665f a546c6312900da3fdc1d493c4d0a6a0d36455e18fb9b00157d52bf0a4895a65d
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /main.php HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:47:00 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=onrcNsiSaaY%2B8C2I8m0%2Fd0TyG0WVi1ncL4vp5xOPDYo%2F%2FDci%2FV212v%2FCPsH2NtGDk%2BjJkzDVUEFyTVLrZmFWHPR%2FC33Jn%2BiHnHVKZqtxF%2FCP%2FXQRryagLQlK20zlQh0n%2FK87FMSKwH3Yuuo0mdVW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879373e89a6e56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| sgmassageservice.msge4.my.id/haykaljb/css/chat-bg-br.f34cc96fbfb048812820.png | 172.67.222.230 | 404 Not Found | 1.2 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/haykaljb/css/chat-bg-br.f34cc96fbfb048812820.png IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /haykaljb/css/chat-bg-br.f34cc96fbfb048812820.png HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/haykaljb/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 04:47:01 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c6jC%2FdJzQnXwZggtLedrWkniLuq5NbAkCVU2OlkdKoaFAkispbUCI5k1q1oTRcFVKBEwy51F9KkrlIgW6iH3s021K9kLKnjutMEqLl7%2FLAVDhpHCXEnqtv0zzWr%2Bg2qvER7pDNLfkEGn8isJmBJy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879373f0fe92568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/haykaljb/css/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2 | 172.67.222.230 | 404 Not Found | 1.2 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/haykaljb/css/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2 IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /haykaljb/css/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.324b1e6d0f5ae7c6ab42.woff2 HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/haykaljb/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 04:47:01 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yzwvs2rMTyFuCrfbEoKG75o9zKAs704mp9m76dBFaCBZAEQVqAVj28nKMygfzV9Cw%2FqmBbnZiflXqDHMAB1iC38u%2FuqzKJ6V1ZWNaorpZSFIugj300zB6hzbxv%2FlDazjO0vNQr1o2JXrmzw7mh9p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879373f11ea4568a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sgmassageservice.msge4.my.id/icon-192x192.html | 172.67.222.230 | 404 Not Found | 1.2 kB |
URL GET HTTP/3sgmassageservice.msge4.my.id/icon-192x192.html IP172.67.222.230:443
Requested byhttps://sgmassageservice.msge4.my.id/main.php CertificateIssuerLet's Encrypt Subjectmsge4.my.id Fingerprint79:04:26:D3:3F:0B:B3:82:F6:43:82:43:7C:5B:03:F9:1E:59:1E:8F ValidityWed, 20 Mar 2024 05:06:44 GMT - Tue, 18 Jun 2024 05:06:43 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Telegram |
GET /icon-192x192.html HTTP/1.1
Host: sgmassageservice.msge4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sgmassageservice.msge4.my.id/main.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 04:47:02 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UfvdVVKUePzCxerL2XFVVStvVlumF0hh%2FZklLRClZq5cZsQUxX6ykCeuNj7BQnPpzCv7YcLkjVJfl%2FonpjiAdcAzWueixbLDmsGOpn0mXmDrWEMWm4lkbltagkdL3%2BUaN%2FZMB12Jxiabu2xZ0Fny"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879373f4a949568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|