| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css | 104.17.25.14 | 200 OK | 5.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css IP104.17.25.14:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe9365fe85b7e4db79a87015e52c3db6c 2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9 dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1117346
expires: Mon, 14 Apr 2025 05:23:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7c2dEThAdRp%2FV2O1qWuS7dKxLuHx4z%2B6fkrMWFuHBfmAkl3Tss70tHs1SlzmP3gpfG0yNUwcEqh4oTRQlatKbQeQjpyISALqB%2FJNeOGdhXFdqq4D5ees0sh9TcdWL6Z2mHsLPdQU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8793a8f898371c06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.25.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.25.14:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 644956
expires: Mon, 14 Apr 2025 05:23:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wfNEbTUZy21KTVI869a42SZbgaCKn0s2xAKfb%2BK81Rpnyo154u7vw8G9dzkYxowYeo8Tp%2B9FjrjcZZpp3%2FOF%2FWgEtgxgYLiOMcNW8U6C0jKYGwhGy1aVAwn6eRRIUJi62%2B1cu%2B24"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8793a8f898391c06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png | 152.195.133.221 | 200 OK | 8.3 kB |
URL GET HTTP/2dl.dir.freefiremobile.com/common/web_event/official2/dist/client/img/full_logo.969f536.png IP152.195.133.221:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerDigiCert Inc Subjectgarenanow.com Fingerprint65:54:F1:4C:20:75:FB:11:D3:A9:95:B8:F9:AE:05:C7:77:EF:78:58 ValidityFri, 23 Feb 2024 00:00:00 GMT - Thu, 30 May 2024 23:59:59 GMT
File typePNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced Hashc632e6bfd0076695e56477bdb3f7232c 5b4212f029814b5dfda946ac5e5a6ba97857feb9 86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c
GET /common/web_event/official2/dist/client/img/full_logo.969f536.png HTTP/1.1
Host: dl.dir.freefiremobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 332
cache-control: public, max-age=3600
content-md5: xjLmv9AHZpXlZHe9s/cjLA==
content-type: image/png
date: Wed, 24 Apr 2024 05:23:13 GMT
ec-version: v6.05
etag: "c632e6bfd0076695e56477bdb3f7232c"
expires: Wed, 24 Apr 2024 06:23:13 GMT
last-modified: Wed, 10 Apr 2024 03:54:58 GMT
server: ECAcc (ska/F692)
via: 1.1 6ace45570fc87085b524f709878ee4a8.cloudfront.net (CloudFront)
x-amz-cf-id: kjQpSi1FXnrajL4T2Zemi9-oNEDHfc_TnZBpV4BYETDhSOfMSfm5Ew==
x-amz-cf-pop: ARN53-P2
x-cache: HIT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSOCy98et/hMnZKhQHs5bo0WOz2eTPPY
x-obs-replication-status: REPLICA
x-obs-request-id: 0000018F0E89C7DB901B0F6C64DE241A
content-length: 8314
X-Firefox-Spdy: h2
|
|
| i.ibb.co/pZDr8sd/Twitter-Hide-Password.png | 162.19.58.159 | 200 OK | 28 kB |
URL GET HTTP/2i.ibb.co/pZDr8sd/Twitter-Hide-Password.png IP162.19.58.159:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT
File typePNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced Hash8d1f08b46884df302bf7300fc234832c 5735d57b6fa211c400d439095d5ff2f5bb57e691 e4cff1f68b85c3343554090b3479273a54e5eed2dbb3e56ceb9f86c4ebe8b0e7
GET /pZDr8sd/Twitter-Hide-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: image/png
content-length: 28029
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i.ibb.co/PYpHF6b/Twitter-Show-Password.png | 162.19.58.159 | 200 OK | 28 kB |
URL GET HTTP/2i.ibb.co/PYpHF6b/Twitter-Show-Password.png IP162.19.58.159:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT
File typePNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced Hash2fd203703821d5ce5d18bee2a51b779a a78d7b1369ce8bc34de57909af142043cae446f0 6b82611fa96f118128b0db9692dd982ca0fe79b1b4d8048946880600cc4f97c8
GET /PYpHF6b/Twitter-Show-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: image/png
content-length: 28355
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jsjsih.dew4.my.id/img/style-img/logo.png | 172.67.165.58 | 200 OK | 8.3 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/style-img/logo.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 616 x 90, 8-bit/color RGBA, non-interlaced Hashc632e6bfd0076695e56477bdb3f7232c 5b4212f029814b5dfda946ac5e5a6ba97857feb9 86ccbc1dbeb58af3e6bce5ee52f86a47399da998ad34a0fd2ce9b0b539d92f6c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/logo.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: image/png
content-length: 8314
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sun, 07 Apr 2024 19:48:20 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vw7qS0Gf%2BCyMFKqEsUAjKfLSMvzSFBZNQfx35josMC%2BAC2jrN1ZJvmSE%2Fzyh%2BI1zWFfOi%2FWjyN9%2F2AkeDBkmcIkb%2FcnU9aJTiRSNQ430a%2FscrP%2BTnPH9anOjQgrLQZGTumfOBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f87d59b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/tokens.png | 172.67.165.58 | 200 OK | 5.5 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/tokens.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 135 x 130, 8-bit colormap, non-interlaced Hashc17d58c98659f3829c4a29a44b737861 53fd8ba7e57e6dcfcbc40b469320b21bf777cbea a20b9d4d4ba5d014e36e326e4f04f5a4a8c1d37803858ba4388b10b12e9177ac
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/tokens.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: image/png
content-length: 5474
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Tue, 09 Apr 2024 19:41:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eDn1pqFw0%2B%2FqSictt7qHTPlbCL92jPJ8KE7c0UUP9uJFDETpj34IFz2yNa8W2vGWv0fY1kvBd1lbv4QVelFrJQUtOTVyfqSCFojqzg8IQ67RZnRVPjGQYLJtR%2FN4PSH0Rf0VDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f88d71b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/style-img/icon_2.jpg | 172.67.165.58 | 200 OK | 9.6 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/style-img/icon_2.jpg IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeRIFF (little-endian) data, Web/P image Hashe595d05f92349dc2b5aa37164ae376e7 f4ed874d1fceb5eafb7bd5c213715e683fff690f 50cb8b539efb773ccb042e5f18ed308f2d99418e6974603bfe6d39b48659970f
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/icon_2.jpg HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: image/jpeg
content-length: 9604
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sun, 07 Apr 2024 19:48:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vvtZgTb42P%2FFnGz0erQm1ocEczbipe%2FsPpxR%2Fs8QvUDqOZEOSjyKK5LC3OhtMFt%2FKtbOk2Wb9U8V%2Bp1M1V4Gj%2BAkbl253dkKyhqR7VkwIjx1rXJtNKniueUKKYHEkJ3rKpnhwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8eddbb4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js | 142.250.74.170 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP142.250.74.170:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32180) Hash32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:57 GMT
expires: Fri, 18 Apr 2025 17:21:57 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 475276
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-1.10.2.min.js | 151.101.66.137 | 200 OK | 33 kB |
URL GET HTTP/2code.jquery.com/jquery-1.10.2.min.js IP151.101.66.137:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32072) Hash628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-16bb3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 24 Apr 2024 05:23:13 GMT
age: 19135587
x-served-by: cache-lga13622-LGA, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 37383
x-timer: S1713936194.833912,VS0,VE0
vary: Accept-Encoding
content-length: 32788
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js | 142.250.74.170 | 200 OK | 33 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js IP142.250.74.170:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32089) Hash397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4
GET /ajax/libs/jquery/1.9.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:40:10 GMT
expires: Fri, 18 Apr 2025 02:40:10 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 528183
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js | 142.250.74.170 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js IP142.250.74.170:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32061) Hashe40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:38:23 GMT
expires: Fri, 18 Apr 2025 17:38:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 474290
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jsjsih.dew4.my.id/img/style-img/facebook-text.png | 172.67.165.58 | 200 OK | 12 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/style-img/facebook-text.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 604 x 158, 8-bit colormap, non-interlaced Hashc8469979cfb24192fc638efb7784a921 ff2f9c8fdb233dc3bfabd2ecaf11cbb70791dfa3 0cb512d932e3ad625dfb6c1ae0d47e1dfafecdf31c9c7fd9c9677c95bf31efb5
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/facebook-text.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: image/png
content-length: 12239
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Thu, 30 Nov 2023 06:01:46 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w8Xgy6yck1%2BIzznLvMh5d4sO%2B6trxBdqp8Dx5NzEp5YHFOPSG1gN3K432G9Hxua76FMW14AZGlm5qNvyhUV947xiWCoCVh%2F7JuUi%2Fbb%2FKlhqerhqzCVzQoVDL4WgTLcU6yCcAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8ddd6b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/style-img/icon_fb.png | 172.67.165.58 | 200 OK | 4.5 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/style-img/icon_fb.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Hash8552ac3c41b10ae9e7f13d95e845a35d 86715d70cf7fada24e9d5e6647135f8678e923cf 3963edc509012e07abe8e5e3955a1793a21cadbc706859f1a299779b4289115a
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/style-img/icon_fb.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: image/png
content-length: 4538
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Thu, 30 Nov 2023 06:01:46 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q2L7GjxwpQsKuRL1U3ildoYpoW%2BU%2FT9n%2FxQOKH88APiOP1Oep6SsxsDL9oby5MYSktxmYTZHgucPWMuPcpY0bmAmY95D9jNfCfm3xUTsrMcUoTtHpn9qgR0wtFud0EMJJDTNFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8ede8b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/logo.png | 172.67.165.58 | 200 OK | 11 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/logo.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 459 x 138, 8-bit/color RGBA, non-interlaced Hashf77fe97fc8f4d06fd93eaf7552c4a3e9 c73f03f3e5a9f460eb83e10ae7312738a36ce720 b695d33c5ece1af9739e89855c4cc718fd6e9550528009ee5ff644cac193cb41
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/logo.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: image/png
content-length: 11185
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sun, 07 Apr 2024 19:48:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9AHDeZLc5L8qW7huGxp4qsNG%2FVG9iS%2Bq%2FDDfqScEAx12acJxeFj%2B3p0oL7CCNRaJ7vtebvLGOpMI9qGfpG9ipGBadpgLqE5U8Q9cEDseQ20oAZqYagPVNivqcrlkOww1iQq6HA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8ededb4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.25.14 | 200 OK | 150 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.25.14:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jsjsih.dew4.my.id
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 644848
expires: Mon, 14 Apr 2025 05:23:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bWv1gP3FfBPxGEajugwCmi4%2BH0c%2FIGevBedzTzJG%2F%2BPmiFwGVydvBiLVDNwifPYiV8S%2FUMwfA0f14WWIwQQiI3xrPa4NUghF8%2BIUwQjuSw7mS0F9h113q1cH5CfN1FUQ8ZE3RUc1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8793a8fc5bdcb503-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/16.png | 172.67.165.58 | 200 OK | 35 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/16.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hasha33a705c2b41fadb89023ede7dc7c97b 2d0a585f6294b01d0928e6fb16d7eed5f1275b35 1f9348d57a1b31f7ae485250f4c8d2ad35badc798336bd34b85f0ec3f4dcdfb0
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/16.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 34998
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sat, 13 Apr 2024 15:22:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XcC1hoMrBY8JFpaBc2%2FP3z2EU9PSGV%2FypZBAbDppxv8s7IDIH%2Bkf%2BN6mJXboXTxCyzOVEY4pLCadI1%2BX8JjIm2gc6ckRO6y0XrX%2FpzB1SJLY3FnHJRW9sBFmDFlttKJTeizkxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f88d77b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/15.png | 172.67.165.58 | 200 OK | 37 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/15.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashe4e417e121ebea4226f0620eb9752cac 3f2702efce570e531ca910282f9b63de4b3f6be7 e6ba2604c1867e3ee296bbc4d834572f7c1328cd60060b8983908f4871743d10
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/15.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 36956
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sat, 13 Apr 2024 15:22:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bi4%2FBKyoAM9R7TCBXJELS0XEybXD7pTEa1GHz1jt3mHXVshQGenICUjTZA2USzFBR%2F0119bJFsNBQEA7K7WXL4N8sBIPYRdz1UL2JbAtJbMHZUHO%2BaUIb24%2Boj9xYLTjTf3V7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f88d73b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/8.png | 172.67.165.58 | 200 OK | 27 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/8.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashb1c27165cb7e5759e4aaec691a201fe2 9c9ca79f23a92d149ce2eda361757660ac5fc3e6 5dad5d4de54205ac90ed8344999b76c6dc5e0abe8d6fbc832d427e5a07016b0d
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/8.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 27424
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Thu, 11 Apr 2024 14:58:38 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nrKg4sDt%2BzB09UP8672KGXJBS%2BgwnWUK7Cj4HX7nKcNoMeS4Ze203ex6QPH7hYplIG3PhSuZFvWdHXy8f4rGydObRnsQU8Rru6BXVYfD0JYv1IMG6bSZmQNHk%2B%2BYlz4jwolnbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f89d87b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/13.png | 172.67.165.58 | 200 OK | 27 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/13.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashf7fe5c4e5201f6c374790ff63ab1d9c2 2f975f0e1d72482aa95eacff80fc3e8012f96bd1 a6953e7160ff85adbc62fd0822a84e176da59adddb707d97878d8e16b433c3d5
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/13.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 27153
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sat, 13 Apr 2024 15:22:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MGJ2OQmDOraCXNWvPtn6T2WDHe6XvGQE%2BOeduKqo8njsHdQ2bujRuJlgWokE6tkivfeLGmDxcaLksMTXpYUteKwwu83ESiKKYsjrjaSXs1IDWW2CxleYCmgW6l95cbeLsHMOQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f87d65b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/6.png | 172.67.165.58 | 200 OK | 26 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/6.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashc23c6a39b3b2936cc8ad04a6dfc5077c f3f6d96235efeb75d17b8be20f67c59183e781b9 d3a188e5280ae801dcd1a6d0b93b9428f5f37ccfa105292878dcb413920e9bbb
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/6.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 26069
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Tue, 09 Apr 2024 19:43:20 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ru9EfUPY8mAG8HmrnQb%2BYputTVF493v1HhBrNQyX2f%2BrOue3gE%2FFhR963c%2BeOCffZ2FWwfKa5p%2FKDwO30L3D4%2FH%2Fdvl5f3gVOWIsZd2AwJiKBnwhu37UbyyqNDffoFJYusimIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8ddd0b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/17.png | 172.67.165.58 | 200 OK | 35 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/17.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashfd0b87d27d0e1ccf23c9d2171636aecd 9eba0c7733f8b950df6a1d87f3ab7bfad39ff91d ba2d33be643cd9d151862d8f9465c52bd44f88c3826e06c9f8d06ae98f803aa6
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/17.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 34934
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sat, 13 Apr 2024 15:22:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JILEsN%2BeAIz9WyC%2FD1XdJ7NeBA0RPYf%2FydYzgEfz84L9mURv%2FY0JYdI9eOHOfqSW%2FKhbsqp%2FiXyXB5fwkPKz7fdjPwFf5xqe32Dery%2Fckk90lMVYUC%2B4UPQ8VEurT2cWK1tQDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f88d78b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/18.png | 172.67.165.58 | 200 OK | 28 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/18.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash9266980f6008837076845fcbe7444d76 6e6eba3b578f08df611271021be468c274cf999d 7be6e754d03baca4401aefb28d0786e7e158881b6617e17998901bad8e1da6b0
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/18.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 28326
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sat, 13 Apr 2024 15:22:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=awtxOeJFwCc%2BercpY6x%2BC4%2FtbtXGK%2BPKM6aqcS7G6WLQjvAn2cyKO9dA5tm3ktQ4REuGtQGiIsSPerv6teL12ZjMaOIohEghgEqfPYBlYWQWJhs%2FkAIxtjkUJGCxDaPNXgRzWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f88d79b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/7.png | 172.67.165.58 | 200 OK | 29 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/7.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash3c8185e0bf8dae95bb466d08a6e3fef7 33b7322b64a4706203aca6e76388e43f0c339633 0e935acaa77b1029af26f03b1f07a0801ad12c5a199f7eea70742734f86944ca
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/7.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 29087
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Thu, 11 Apr 2024 14:58:38 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NOMX9xzDTveJa0q%2F%2Bza5iIdyRh4OGITI6wc%2F7X0wEcFpmmDjaZEbUbw0SYalbgsxve7omfTgQmqapjYgrU%2Fb8phI%2FZtHCzRsaA2W0%2BxWi4HU2gZ5%2F4pkIx8I1Xi27ZN%2BXiWvvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8ad8db4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/11.png | 172.67.165.58 | 200 OK | 30 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/11.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash0de33516662d5aeceaf915c41d77299c a69c2e046be20762c21ba36b6df9297631398ddf 12c0f85b8b970c40d9b64eb3c3a93f1e27ad74d61ef02d16a9d8e43a7edf3aa4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/11.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 30228
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Thu, 11 Apr 2024 14:58:38 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SlhZ6CU5zTDtxlROfoEMkg%2BtyTYPyBH5JBSwcQZjzN0tcx1I30kRV1hZXiKBpTTAlfDtkq6bc8upBGJ%2F8eKk3kOX%2Baz3c3foghINjFbxFxylEyAfYnipF5FRdSuTXIDCDMQNBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8bd99b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/9.png | 172.67.165.58 | 200 OK | 20 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/9.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashb410ef15f7ea730dece54bb388b87b5d f787794f2d6888b49598e5c083465efa056e9d9f 9838a3cc3165a18e05de09e15c4b24c7ecbc71ccb1639bf40aa7977de41a2677
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/9.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 20314
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Thu, 11 Apr 2024 14:58:38 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lNpBgzLE%2FGQEB18YBATIfAQmJ%2FM%2FuG8cuOA5IW7xC2pr%2BITeBbMwB1YDFWajLYcgo1DEzzIGKJP7W7UsYY172v%2BN2HZkVENNYtWZzchtqOzzpFMzueVzKvqV5r01wugeD7o8aQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8ad91b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/1.png | 172.67.165.58 | 200 OK | 40 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/1.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash8eccb06acd079ed87a81e1ba4c5fb51b bdf771d7c1955435ae169452edac3a06595d6e52 3d1af8c094a018432c4795352e04b080c6be43e11a1a3e140464d38270869aee
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/1.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 40320
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Tue, 09 Apr 2024 19:43:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B8EWpFzM6WGT7btJvr1uVN05i8M86vXVpVNRWnSB%2BGOuiUJBDXbyugwLaiEg%2FToQB24sp7%2BuLiExrA1U3KoUYxmaQYfZLQ7fdlC9p12V4ZKIVsevqXRmKYnn8xnDAk84tQxMfA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8bd9eb4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/3.png | 172.67.165.58 | 200 OK | 37 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/3.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash364602f07b223249dd1cc3adf088dec6 3ffc76f4f90f10f88e43da1fc1a1b088d60228a3 ac565c70ee52d4a94dbab5074e99f01425daff977a491a4986a917d7bfe9d4dc
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/3.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 36702
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Tue, 09 Apr 2024 19:43:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J0Fo5HFCOt5mHd5VwJLKYiSns0Ao1lX2L92%2FTEY1npFAz2oinLOJCp6ZeZ5ZlYzmI73rnVCPBWrPyLGn5hl2le0n1aLNc%2FBQL7Xg3E1za02%2BtrPrEzqo7SQuDSs1r464ReoeUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8bda8b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/5.png | 172.67.165.58 | 200 OK | 33 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/5.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash508cb0ee03f707be4fed00ffdcc9d5d8 cbdcb399b28be93cd229361371b45ae9bc6456f9 8fe82750c2a910db3a8fad44394a957b2fd34e01b6dac5b59a6cf2288944a642
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/5.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 32686
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Tue, 09 Apr 2024 19:42:36 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EUH31SzRK12r%2FqYdU63bn68eKmBy%2FCMOBCDe06lDOLdHs8r%2BNRL3HKmR74yFO2L2FpayKZegJt4rb395iOIr7X9aEpWhTxOm2JDSHISgCq%2BXe3wrFteKEJ0deF7altoD8WM8sQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8cdb6b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/2.png | 172.67.165.58 | 200 OK | 39 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/2.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash423823958a4edbfa60934173462bfa9a 15a2ff7301156ec0fd660cb358208e5aeff4bfb8 a33f4104ba666f0c0c7a87bc1c193c5695fc59d4cf03635ebebe011f0c529615
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/2.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 39163
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Tue, 09 Apr 2024 19:43:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7eAMCcs1Wq%2FL4H7kYRzAFjO8xRB8CsiythO4aPA0uiwK%2FZFY9gis68esL60zMG%2F1JgM%2BRxVBl8965IE8xp5bMuoPnq52ZWMFDgVTh0LgV8UtFmkJl4wru4XKv1FLqfTUKhsAIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8bda6b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/popup-close2.png | 172.67.165.58 | 200 OK | 358 B |
URL GET HTTP/3jsjsih.dew4.my.id/img/popup-close2.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 30 x 31, 8-bit colormap, non-interlaced Hash14f983708ddeb2052c1756e3d79f7031 56d439d66495faa3a784b161d044f6edb853f8ac 47b6e3288d9def65b44f0ac0ea8a5e45cc77aa1b934b85aab003cd9076e1ab1c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/popup-close2.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 358
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:14 GMT
last-modified: Tue, 02 Jan 2024 20:50:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xEuzhNIdJy8iJfqr4GL2YKGVRZXBndN23KtWrfhmwIEqKmzsmdW%2B12%2B3dxyF5Fk3Cps3YzNn6TGGKdcEVmitdnK2MQ0UhgAcmizRRPGr0hmr%2BTTorRy3EJQXwaTqYtp636GCqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fabfbcb4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/js-zone/debug.js | 172.67.165.58 | 200 OK | 0 B |
URL GET HTTP/3jsjsih.dew4.my.id/js-zone/debug.js IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/debug.js HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/javascript
content-length: 0
last-modified: Sun, 14 Apr 2024 00:13:42 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HTKZNiUbODxOKaYSqapaHP2bj%2B47M5gNH9efWYKmTa6ENBwlubdqqpJzlXavJyxH3RVGosyJKBmb8%2BP7v%2Byp5MeQSBbbcz%2FmPrwpX5tSWgfuNXjsNgxHp0LXVus6cHFYn8z8aw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fadfd1b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/14.png | 172.67.165.58 | 200 OK | 48 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/14.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hashcf9f3dcff142de34ed7237a74da63346 6ecbc226d694657315385d7e5d10972c63c95c01 ee124edd06d48cc3b3516ef157993cb978d17aa19daba55d3364bcd2feced1bd
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/14.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 48314
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sat, 13 Apr 2024 15:22:22 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D7eQfUCCGHuObgT7%2F%2Fut06qzxbvoYKPa1apYFWs%2BPnNwLETX66tIbHlhElAVavJVoRhKcI9ZSLl1mMcyvPV0UMkQ%2F6e4s0XnYcjEZM1ElgCkYUJrXet3hTCHSi8tEvyZdJUxkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f88d72b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/4.png | 172.67.165.58 | 200 OK | 48 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/4.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash67ccf3ec8df38ab63a0bb81b021457d8 d7020c150b2d48aa000bdb0e7cdcedf00a8a1f9f 70112e24957d4f6ed29be6e863c9af129fac70971157c18b355d36753903c2a3
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/4.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 48040
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Tue, 09 Apr 2024 19:43:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FN6gWgZtWr4qDdiLxvwzpRiFJfbR6IhDkJd8Y7YrbqxnomKg3NWsU4ZFiLTeMi8LaDYmPZ7T2DTHNIP8jcAA%2BEGxAtQR8stAhx2TFhknPlSd%2FAKkUTlX02%2BdBfAOvhnYCvH3Og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8cdb1b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/loadlogin.png | 172.67.165.58 | 200 OK | 61 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/loadlogin.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=761, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1501], progressive, precision 8, 1501x761, components 3 Hash3c5ebcea20aab3ab02a1846f3d43a039 7007048b6538caba8eb09f7abb3d79406ebeae96 5131f5f1c5377a4b4fb0f7a1fbd3fc3b10acc2f27a8cf7687fbb21921ec799f4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/loadlogin.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 61444
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Wed, 10 Apr 2024 01:11:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gFKPAl7lMr1bsvU%2B%2B%2FF1tdKWOme7oDue148Xo04%2FMGcgogvIccf6PRzKSSSoknJVrQr2mIZZ6MOffIRp9%2BEopQ9kAwoaZcyIDESz4w7HHX77pFYeTHGk%2FL15QosfZRzXQyhryg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8edeeb4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/10.png | 172.67.165.58 | 200 OK | 50 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/10.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash56a9f4ba3999c21028cbf67822c50d49 909b90b76ad223051df1ccf1e347d443e9a6d76d 81a925407e72cedc5ca601b18b9ddb580add8f34e82911fe9c129924414703d9
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/10.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 50507
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Thu, 11 Apr 2024 14:58:38 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5zsMS9YUKsrBiAKyrPEBEo6bsOQCddIbgPp7PJEExIUHCASA2Iug%2Fd5lX7x5fGgfu3j2caWd6RPhxKgVaBYQj6rt66mWG5XGl%2BQtj%2BQJ8vrklz8AmOKKVXdHsRxjnAeKiVhiDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8ad96b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/reward/12.png | 172.67.165.58 | 200 OK | 42 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/reward/12.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 480, 8-bit colormap, non-interlaced Hash01173abc84a50d5d89e74560cb3d1ea7 d5a45df53d51b8d36eb78d180a037d24e6634f7d b6f93a49e7f8b5ab56fda7fc22acaae71db1d73fae2ab8e04f5e85c0e155fe0c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/reward/12.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 42000
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Thu, 11 Apr 2024 14:58:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8ncmEBHIaExU9TRhytlfnJ9N21Vv6%2FtkUQT0kOYNP0WEXqgxFS5GLwN0QEMRxGbIQaj7bKsXN8wEDRQRe%2BYnRb0HptHnuJO36MHXr2gqZyNOeehlhggq3t6WSiIWKffRRtP81g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8bd9db4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/bg_tip2.png | 172.67.165.58 | 200 OK | 2.4 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/bg_tip2.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 294 x 60, 8-bit colormap, non-interlaced Hash40404540e54d9542385df6a5727e29ea 36652283d4ee3c000e9d9b55da32a038c7086b87 eb1db53403215fd75df47e8584881adc54ec61aa248e50ef837f0102e633e533
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/bg_tip2.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 2427
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:14 GMT
last-modified: Tue, 09 Apr 2024 19:41:50 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fysiuy%2Fx3jd3Wt0WZJvi7h%2Bcpb0RWk5J1TPYIbRP856%2BYkr%2BRIQZh5SQx6YCmQ7l7zLnR%2BKEb8r0RzHrsPH4V6ttz1ZAQl%2B6gttxNyWOxJEA9c9rNgbbIzzRjs%2FUb%2FAGomCW1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fc28b4b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/bg_tip3.png | 172.67.165.58 | 200 OK | 6.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/bg_tip3.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 691 x 91, 2-bit colormap, non-interlaced Hash19cc6d96aa7c032152f1b060b3bc6cf3 6f0d220ce43ace6f262c7218f640e92a83691f6e 933d6f824b96dbcf45f827e574f2c21ff6317ce5d4de874c4f948a91acbd724b
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/bg_tip3.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 6187
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:14 GMT
last-modified: Tue, 09 Apr 2024 19:41:50 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wh2HSoQvtlr0yb5eElDF%2F%2FuGW3xsMYnSWRXLkHM1pouGaETxBZbv6Sp7JvWxvJzhIU9Z1A4I1z%2BKBuDI1xe8xLeHCYsUAuG0EGPVu%2F8KF9J0Yw9nAjhIMW0fQ4sKzUwaH64lhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fc28b7b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/button.png | 172.67.165.58 | 200 OK | 6.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/button.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 480 x 161, 8-bit colormap, non-interlaced Hash0f7d208c792091d6563778aff3dba1ab f54a03422a36c19539abb66ce1cefae33c0b6349 68bc45702f83c903e5dc38293221981ebe1810133b36e31db62e8959402ccda3
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/button.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 6166
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:14 GMT
last-modified: Tue, 09 Apr 2024 19:41:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Acv8gFta96sIMMi4yZPx8COFOe0EhxqOUSaGzCM3CRrbjAx8ruZthAbuJb3%2FH703hSN4p7Zpq4q0tUpzKPZCw1VOGI6RhiO0Ydd4a7nddEOFHKh83BjfazaoSv404q%2FiUVgeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fc28b9b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/lazaheader/1.jpg | 172.67.165.58 | 200 OK | 136 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/lazaheader/1.jpg IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=843, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1230], progressive, precision 8, 1230x813, components 3 Size136 kB (136434 bytes) Hashab78339058792ff165716e4d914d6beb 685f6c0ed6ab0d7edc312670ab706a7e510fb2bf 4dca977be24b92f273e2d2f70be3a4b240598fa430868cd3c722412d25560020
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/lazaheader/1.jpg HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/jpeg
content-length: 136434
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sat, 13 Apr 2024 22:48:38 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7UQdMhphxDTT%2B2DDAFIpzFr8wDGJQDaRzy8xDHEXjS7QZyw0Vdmcd%2F8GX20IDyYTUQCvb8n%2F3YjyLC%2Bp7fqAJ9%2B3bzYYRVtkRKbHGLO%2BtDKu77dWJMmUye9wDGKrJ0TDfl8MXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f87d64b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/fonts/laza.woff2 | 172.67.165.58 | 200 OK | 22 kB |
URL GET HTTP/3jsjsih.dew4.my.id/fonts/laza.woff2 IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22220, version 1.0 Hash345579e8566a3dd6dc9feb5362fbe7e1 df075dd0c26e72fd7df19948f07904c1eaa72ded 1d0dfcc32b3be2bf3b3dbc371e9b7c5ce205f4bc6f7c8ce0226256cc7064c3e4
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /fonts/laza.woff2 HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: font/woff2
content-length: 22220
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:14 GMT
last-modified: Thu, 30 Nov 2023 06:01:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Tiqokkn4RkkAmUOpLPUqUviKLfu4BfBWJkZDUu0kJrO2ljKatmj99aDUka%2FICt%2FATfJtjrmeQNtcIDrx5iocVkkqv%2BGjgHJYEFeDUh4t1ah874ZKJyBb4cgQ2GudaFLoNhlmJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fc38cab4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/point-card-bg.png | 172.67.165.58 | 200 OK | 51 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/point-card-bg.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typePNG image data, 408 x 480, 8-bit/color RGBA, non-interlaced Hash9ffa7e32544eb9c5982c66dd17447420 eb3e6450ad419e171da378a9eadf1ce672233376 0c2fdda7e58cab78fe8b7307e2d1a535d638fd5c61a1f0d64824e4b3bb8c8c7c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/point-card-bg.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/png
content-length: 50640
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:14 GMT
last-modified: Sat, 13 Apr 2024 22:51:22 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tqlP19gQ5mxZ4AsSQgDbg6lYOKDISZTee6xRv8D9ngqWoU5wLUwV%2FISfsrzkTZigTrNKf2Wxuo9W2Wgf2X46zfsi03YdW9A0MDZOtH%2FbfShlw0LUTlxYlTNSd%2FDVpksxQ0Fmjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fc28b8b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/lazback.jpg | 172.67.165.58 | 200 OK | 106 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/lazback.jpg IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1720, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1000], progressive, precision 8, 1000x1241, components 3 Size106 kB (106514 bytes) Hashbebd7a9618ed1d6f43858fae13cde0d1 719b7701b28a9a9ee6e50800f9bcde561f1f61fe 544d5b2da4c18c200c75426693dce7718a201213581c6aa1338b84dc78e7beee
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/lazback.jpg HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: image/jpeg
content-length: 106514
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:14 GMT
last-modified: Sat, 13 Apr 2024 22:50:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0nVEVgm%2F%2FhD15ZmEYcmDrktgd8wlgKd%2FMv9OzaxpJZ4aaJpx316ddqBppfT9Ax3IMHh5UxpIIUStFC7yYaBVKz0RRoUPoy3H70I%2BpJB33DLFNG4rIbPE3IZymOrHh7upnvy3HQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fc089fb4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.pubgmobile.com/en/images/nav_language.svg | 95.101.11.50 | 200 OK | 675 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_language.svg IP95.101.11.50:443 ASN#20940 Akamai International B.V.
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashd8ba211bb1be1a15bf5b0143ca1b009a 215203609a551dcaccf6e434508623f302635f86 a441182568ad88fa9c54384de94a77f64148d3d54df66ea1beff4a11100967c6
GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 675
date: Wed, 24 Apr 2024 05:23:15 GMT
akamai-grn: 0.2e0b655f.1713936193.bc2cb03
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/en/images/nav_menu.svg | 95.101.11.50 | 200 OK | 426 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_menu.svg IP95.101.11.50:443 ASN#20940 Akamai International B.V.
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha1f09c4f5c87271dbccf8cb05885ad42 18bbacc9c372dcb6bc77c2475595e058c1ad1594 b0d849e0e910d13bcdab1e94f5c799dda1a9429c908e18069f9dc7f7d551d58a
GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 426
date: Wed, 24 Apr 2024 05:23:15 GMT
akamai-grn: 0.2e0b655f.1713936193.bc2cb00
X-Firefox-Spdy: h2
|
|
| freefiremobile-a.akamaihd.net/common/web_event/common/images/ff-logo-icon.png | 95.101.10.40 | 200 OK | 1.4 kB |
URL GET HTTP/1.1freefiremobile-a.akamaihd.net/common/web_event/common/images/ff-logo-icon.png IP95.101.10.40:443 ASN#20940 Akamai International B.V.
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File typePNG image data, 71 x 61, 8-bit/color RGBA, non-interlaced Hash7829ec7999775865a662468dd7e96117 d2dda88c46098945bfc1282724aa86478acddc10 049490ddf516d0c066e4245937065d8ff549ecddfd0f6ebe55891960627c86e8
GET /common/web_event/common/images/ff-logo-icon.png HTTP/1.1
Host: freefiremobile-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: OBS
x-obs-request-id: 00000185EE9543439542F10037BFF7CD
Accept-Ranges: bytes
ETag: "7829ec7999775865a662468dd7e96117"
Last-Modified: Thu, 04 Aug 2022 12:29:56 GMT
Content-Type: image/png
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSZdaWuzpmM2O+ItUV06oDUJbNs22WV8
Content-Length: 1414
Date: Wed, 24 Apr 2024 05:23:15 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Cache-Control: public, max-age=3600
Access-Control-Allow-Origin: *
|
|
| jsjsih.dew4.my.id/js-zone/slidernotif.js | 172.67.165.58 | 404 Not Found | 11 kB |
URL GET HTTP/3jsjsih.dew4.my.id/js-zone/slidernotif.js IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0bde7d4b3da67537eaf9188e6f8049cf 64300fc482d01d38b40ab20e15960b6509665e5a 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/slidernotif.js HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iKRpet9Y%2BlDKphEszn%2Bklt5o6SAb3A6J25WOU1VdU12UWJnFjioOcAzlYSS84VRigopQNZMJOpZBbazNn0IhvlH7GUO1VW0VU1h2ORXbhBlbnBWDo8lLS0jSmfyXm18ny2KLow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a900abd2b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/media/open.mp3 | 172.67.165.58 | 404 Not Found | 8.9 kB |
URL GET HTTP/3jsjsih.dew4.my.id/media/open.mp3 IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
Hashbe42af45a40931927504419af377a017 96718bb64ce55815779e57553a7abff54eca9b2c cb845f72e0f0993ff2f65a5a187356f9152f6641d7f90e059adcdcedfa42d9ea
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /media/open.mp3 HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zg%2FwCDAETT4pSeiWoc4W08bv7O6ntQn6z%2BHTTZArGF8V76VKM%2FAY669rMx%2BQm6ejRK%2BJAzMfhJp5udi76uBkDNfkG4RAzchNixsEBlZAdh36OBZjkYqXCZrfMEj5JX6milYi6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8ff3aaeb4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/js-zone/lazcode.js | 172.67.165.58 | 200 OK | 40 kB |
URL GET HTTP/3jsjsih.dew4.my.id/js-zone/lazcode.js IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashde4a7681dffe0d4647e098e39113ac38 b3400595282b92b109566477be6765b4b29cbfdc 606033e26217432c2f12eca59ed597cbac39b19afbd4a86ff3124b4f0d0657d2
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/lazcode.js HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/javascript
last-modified: Sun, 21 Apr 2024 23:19:24 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6Lbb52Dn4RxOcYWjg8Kw%2F0zg0tFtYtz2gRs5WUmRxtAWm2elllGlGkgQU%2BRpoQnzgRIPy0fxOPO2xDsDhF2Z6%2BPvfxrPo%2FOpK5%2Bi2NEILsTTlxPzvEitsAaLj0EwUHLqM1iIlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8facfc4b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/js-zone/flaglink.js | 172.67.165.58 | 404 Not Found | 6.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/js-zone/flaglink.js IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash0bde7d4b3da67537eaf9188e6f8049cf 64300fc482d01d38b40ab20e15960b6509665e5a 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/flaglink.js HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jXYt%2FKSxu1qGYQAT%2FDb5X1p6C8Rr0EDyroPl7197gNMomSS5LyumEADeWSKPhOX3Ds4ChG6DHOegoa5oPr9140GfTF2UugWbVvzrcmdWKBmILmCg9LVmcAKUulsHQ9GkrbL16Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8ff2aa2b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/slogan1.png | 172.67.165.58 | 404 Not Found | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/slogan1.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/slogan1.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2xPezuRqkJDL%2BNclghdR78zgayU0Pk9u8e4jJdAf3RMXxK48ciP8wFBEllbrtgiqXsC8NLrp5YXlyK8qkWc%2BzHpDnRB%2FOfSLgBL%2BNhUzMjav%2BnEEz7PfGeO0A4UuPTiXat1u%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fc18b1b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/media/close.mp3 | 172.67.165.58 | 404 Not Found | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/media/close.mp3 IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /media/close.mp3 HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BM6AR2W6E2OVlAGqdZy6CdvvkpPhEYYdJVb%2Fw6SBT950JGc2Wcuu%2FlPrmn7voXT8nt4%2BMVz9mgpYwo94y%2BHsRnt6G5fLEzIRDtnWoIRrSuIyyxK9aRl0oJ5W%2BHRJnfVHbJaWjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8ff3ab0b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/img/priv_laz.png | 172.67.165.58 | 404 Not Found | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/priv_laz.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/priv_laz.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7P2FkYH06Ca3fhpWKrMYo%2FCaEqpdwPxI7n0fFsbbTPwvCZKrHpsjq6AOwpXJJ5LGK46tmClmkvskIyJpeDt8DcvswFP7PnxOvpjUohmqlXe%2FwjEsQ8IyEPb%2Byl3iy5jnjPHfyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8f8fdfab4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/css-zone/link.css | 172.67.165.58 | 200 OK | 5.9 kB |
URL GET HTTP/3jsjsih.dew4.my.id/css-zone/link.css IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeASCII text, with very long lines (6475), with no line terminators Hash6a54d1d1f85e34dccf0abb8d802c043a c9e0e3542039ab854da84ba990ef998093a682de a8de9524056b5da16a51925a126fe093e75947adbbad63d873f15f08335ab890
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/link.css HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sun, 21 Apr 2024 22:26:06 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B12Aij%2Be98TVPMZ4z03f%2BTV9%2Ff7MGHqVcKRPtEqN%2BRY6tp%2FbkIxrp9zonSJ2GKahPXwymup7zvh2qdf6X7p4jbANIfdqIed0rrWb6nTKfpy2MLgq7fuomHiYcYKROHQTS64gZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f85d44b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/js-zone/sender.js | 172.67.165.58 | 404 Not Found | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/js-zone/sender.js IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/sender.js HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KAON1Ynvua8O8YaTF2I7G%2Fjn72zTTQFwFRWt6PTOZntGZQ5ERlrObM4fVY0LgrGcjok8yzKHhB2IJfoENRgk91UwrmhTHK%2FEJRBKu7r010rm5FLR0rjYkbm7nqIpnqFu4Vkimw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8facfc9b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/js-zone/gift-zone.js | 172.67.165.58 | 404 Not Found | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/js-zone/gift-zone.js IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/gift-zone.js HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f51c8Mm9XC6Q5jm7YvirfClEaJr6NZc9q4WQS5JjLw5w8N2xS1%2BWFeId6lBolmv3cd6NhqDr1Gt3LqbsHijpiosNuGOoEEBKir%2F1oVlRoKN%2F5yKbl6uySZ4Sh%2FbRl8ZlzEO5cw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8facfc1b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/css-zone/style-zone.css | 172.67.165.58 | 200 OK | 52 kB |
URL GET HTTP/3jsjsih.dew4.my.id/css-zone/style-zone.css IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeASCII text, with very long lines (7259) Hash57f73c053432bcaaf748e1ee984e83db 69642560faec1eb7284a2751e787848f8593a1a5 28860f2bc3b306e6ffc8027a8888e462dc66e6b1d19e8d56af17d7acd2537fcb
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/style-zone.css HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sun, 21 Apr 2024 22:26:06 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e6C%2B3j4ciVjLQ%2FAFFHFwxW3RDLptXCa4LOn32uNY%2FTvNm21w8TucpF0fHz6yMfsrjNSHNvFRCRflHG%2BCRpVOkkhmzMwB6pZrE23PO%2F1Qy0vPwxGEhGoGKMJIjjEjZIGxbKsFRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f86d4ab4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.cloudflareinsights.com/beacon.min.js/v2cb3a2ab87c5498db5ce7e6608cf55231689030342039 | 104.16.79.73 | 200 OK | 20 kB |
URL GET HTTP/2static.cloudflareinsights.com/beacon.min.js/v2cb3a2ab87c5498db5ce7e6608cf55231689030342039 IP104.16.79.73:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectcloudflareinsights.com Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00 ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT
File typeJavaScript source, ASCII text, with very long lines (19978), with no line terminators Hash09c0cae9d18b9ef8e6a132e71c3c245d e2237916aea3bba321d0662fc1bc188f0cd3e167 af780e357234ceb6feec085a9a31f46834c88c4d3852d79050ad9dc3658a3a67
GET /beacon.min.js/v2cb3a2ab87c5498db5ce7e6608cf55231689030342039 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jsjsih.dew4.my.id
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.7.0"
last-modified: Tue, 23 Apr 2024 12:12:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fb3a61568f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.11.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.11.207:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jsjsih.dew4.my.id
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/17/2024 23:15:38
cdn-edgestorageid: 871
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 8c8f409add726adcb8d886041a6610c4
cdn-cache: HIT
content-encoding: br
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8793a8f8a813569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| jsjsih.dew4.my.id/js-zone/slide-zone.js | 172.67.165.58 | 200 OK | 1.5 kB |
URL GET HTTP/3jsjsih.dew4.my.id/js-zone/slide-zone.js IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeASCII text, with very long lines (1606), with no line terminators Hash6a7c7ae72f791b3b8b46d76a3c4a2311 a7dc3fb632c192a76b7cf387f29703656f60df4b 985a614807422c18989e25d515b8330019b8fbfc691dc1ac3ec27b23cfb311e3
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/slide-zone.js HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/javascript
last-modified: Sun, 21 Apr 2024 23:19:26 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gOh1b%2BanpIHKTCzfGHZiwbFlTqyhq5bLUu3GWCETssZOq%2FPD4nAqpjeKYZHXcaZMEYDMehharNq8syN1Hbt%2FtFAsov3KrVcNnN85pI%2BGoDK5rB0oCET4uF8Vq4tzzi3VfP6VxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8fadfccb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/cdn-cgi/rum? | 172.67.165.58 | 200 OK | 0 B |
URL POST HTTP/3jsjsih.dew4.my.id/cdn-cgi/rum? IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1035
Origin: https://jsjsih.dew4.my.id
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:15 GMT
server: cloudflare
cf-ray: 8793a9067faeb4ff-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| | 172.67.165.58 | 200 OK | 91 kB |
URL User Request GET HTTP/2IP172.67.165.58:443
CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET / HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZmKh5aj%2Bv%2FRJQ4PXA9ShaPHu0yuXCIcNBafgcz3OpfKgU%2F21v5%2Bblpwt0fxW%2F%2BdVprI8g8QSU0q%2FfPaQtLNlgAHZsGgbW6s1%2BCaEpPEQ%2B%2BlGVAUozkcoFXzWH9dsxZF3NbOP1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f468a0b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| jsjsih.dew4.my.id/img/slogan2.png | 172.67.165.58 | 404 Not Found | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/img/slogan2.png IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /img/slogan2.png HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5dDloA0w%2F2jYjWji%2BomKRRDZI1tsPHdtyA8Cpt6sliYC6iZ8LNlvBw3dGNxe%2BkBMR47uItiI17VBfkg6q7d1MpQjhDLxBY%2Fyl%2FH2HEp6IDTrw5p%2FTgnHhr73Netz9xihWRFxLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fc18b2b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/index_files/css | 172.67.165.58 | 404 Not Found | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/index_files/css IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /index_files/css HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jx3UIaqPRUCmCP4%2B9LU38qh5UDKViV%2BrvlF9cwIZ4wFm8oVRW8NA8%2BDgkhenJJvo3SN%2Fyv76nFVnLcMeETtZfoBH2t7MExsoFa0%2BZvWbcDpqmRx11O69J01x%2Fyfw%2F%2FrQT8L1MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f85d3bb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Teko&display=swap | 142.250.74.106 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Teko&display=swap IP142.250.74.106:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (1182), with no line terminators Hash517c67874f6f9ada9c4283fe962de9cf 3ef9577a3d48a4d102dbad75e10bc5563e08d81f 6a843b3e563cf2b17bbb15e15041f252e7524deb41991c4a2ce088b0e1c7f29a
GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 05:23:13 GMT
date: Wed, 24 Apr 2024 05:23:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jsjsih.dew4.my.id/css-zone/flaglink.css | 172.67.165.58 | 200 OK | 15 kB |
URL GET HTTP/3jsjsih.dew4.my.id/css-zone/flaglink.css IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeASCII text, with very long lines (14748), with no line terminators Hash28e08cc393a5126b1f15d03289ea48e2 44c7b51c46667fdebf05a8ceb4141d1f9e7d537e 9ac44dcb07fa79ebf1e81b575258ade1ce26556bc0575187652160980b30f23e
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/flaglink.css HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sun, 21 Apr 2024 22:26:06 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xaLIocKpKz08%2FcLk4L55l1H6zvPS78tuAY96XJUCVYaraO3W1vADOpM3VuDiPLgKHm87Te%2BwUo5K1bHmdrc4cw5d0GWpUOrkDMBddTOkOIobfgyTLZG02%2F%2F%2BR9qxQAq4a9GgAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f85d46b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 | 142.250.74.106 | 200 OK | 12 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 IP142.250.74.106:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash807349734f3707b50b73c3fd626526e8 2f3ab67f0ffa01bc1f0c180cae9085ecc8d96d63 ce7d7e11e41b1b3619cbdf436bbf2557fda2d97d434e65fab281207ffae5c0d0
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 05:23:13 GMT
date: Wed, 24 Apr 2024 05:23:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jsjsih.dew4.my.id/css-zone/zero-zone.css | 172.67.165.58 | 200 OK | 5.7 kB |
URL GET HTTP/3jsjsih.dew4.my.id/css-zone/zero-zone.css IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeASCII text, with very long lines (6256), with no line terminators Hashb2db0a1d00aca4ab104b0d3219f0c0f4 80ca3f52aaa169a81470265ade8046f0eaf30ba4 6766f0bb99ab8a5ce93f6e29314d42f85b9683b8c42cb60e85e249ec29e1cace
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/zero-zone.css HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sun, 21 Apr 2024 22:26:06 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mjRz947Jkr2%2B%2FnieCmZMvltbjuoaIlnnPrUPFDqr5QaINquflt%2BcRc2XdEywFUZ2urpeJ8jLzVWPUk2pYX%2B5GZhcLXUoTcjLgaCo9Xiq2CMya7ibeQTa4ccdT9o1vF8RFiMBkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f86d4cb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/js-zone/sender.js | 172.67.165.58 | 404 Not Found | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/js-zone/sender.js IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /js-zone/sender.js HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:15 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XkKn1gv02IXZL4cixVhxT6JyW01oAaQyU41JjI5zkexTKU9u8UR%2FyZvYYqyaoL8TEmnAL3E4KXblhG4GUM%2FsfOTztio41Ok9BUS2Z5h0KUwU5RKvQqnMEK3BmbWG%2BdhkblLo%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a9022cb2b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/css-zone/animate.css | 172.67.165.58 | 200 OK | 78 kB |
URL GET HTTP/3jsjsih.dew4.my.id/css-zone/animate.css IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
Hash8eae1a9cfafdc593321d4d59ec4905ea 232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/animate.css HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Tue, 02 Jan 2024 21:53:44 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ihlXk%2B1MTfSMJbFivA7ulbnwRKXse2nG01C2Rg1OAxt40VjFHHFaZU1fcWOnAQnfSewHaD5Bn2OesX5i8NysShP49bxXODitaaR1pX%2BRFwyo8Js3SoOgxkLEhdPRRv7i1Yqsug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f85d48b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/css-zone/google.css | 172.67.165.58 | 200 OK | 4.7 kB |
URL GET HTTP/3jsjsih.dew4.my.id/css-zone/google.css IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeASCII text, with very long lines (5117), with no line terminators Hash89a5d57984f3b8f805d26d28b1186269 232b658c1f732dff7f5eb75cd45adafe60e712ab a6272b0608c58d56d36fa0bfa33ac7dcc854d4d74fa1a02adf4d2b6c738fb04d
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/google.css HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Wed, 10 Apr 2024 21:47:52 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=58ZnQ9Md7s5XtV7JUzZymbYxhGRnSx81yFJ2IZUJ%2FQtibPdnJ2Gf2iquUdVbxq7TiHcLTTXzSNLpGyy5Ql5kojckVau6QjJnvdnBrrxnaezdu5%2B7Oh%2F75qEbCaO3sVVPiC%2F%2BXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f85d40b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/media/spin.mp3 | 172.67.165.58 | 404 Not Found | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/media/spin.mp3 IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1276), with no line terminators Hash24b426fea67958554911ff4c943fdfe4 b92889146d4c1bbddccabe58ca15c814ea066f72 335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /media/spin.mp3 HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 24 Apr 2024 05:23:14 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HJkKL6Ca6cxJawLrK6AU6HSVDynpr4lk7%2BzGzqIWZqMb8WmZAz%2BRtPOPbqchIkylQGwJ48Di%2BNFD8YHmDX4RKlXw9DfIh4MHHHZHz1MpSJx9F4yJ6loNYK77PkX913Xzq5bxcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fde9d4b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/css-zone/facebook.css | 172.67.165.58 | 200 OK | 4.1 kB |
URL GET HTTP/3jsjsih.dew4.my.id/css-zone/facebook.css IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeASCII text, with very long lines (4392), with no line terminators Hash3c7f233e917b62865a60bb9f2382987a 4cd08955ccf7bb6da28940b8585d9b7d0ee52e21 04664361ca8f2a282390f27c8d7dceb86b0e43f7e0b9f42bd51d0b1f54021a3b
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/facebook.css HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Thu, 11 Apr 2024 05:36:38 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1zT5pQisr%2BlPZLrem3m456QRmIsknYdXVcsaFdEhlinWj8dXgoLt5PRO2mIDL%2F6Y4V2ZgzOL3TMqKQdRW6O2d51Kc1abGgql%2BYEPf2lIMwkonxAXjDug9uooU3Fwo2FVzCYpTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f85d3db4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsjsih.dew4.my.id/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 172.67.165.58 | 200 OK | 1.2 kB |
URL GET HTTP/3jsjsih.dew4.my.id/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 20:54:07 GMT
etag: W/"6622d9ef-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pi9cPOKRaKCh53zJvHyxpPNzjThUXeFPQIFzFBTEzTypI1gRwNc8MB92tbill2C5wjIKB%2B4pIkLCJUYut08KSUjeMR3AFMM2DQGm8K9OE2%2FMmL6WGl0aY6OyJOaYApwvHegHjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793a8fadfd5b4ff-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 26 Apr 2024 05:23:13 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| jsjsih.dew4.my.id/css-zone/twitter.css | 172.67.165.58 | 200 OK | 4.7 kB |
URL GET HTTP/3jsjsih.dew4.my.id/css-zone/twitter.css IP172.67.165.58:443
Requested byhttps://jsjsih.dew4.my.id/ CertificateIssuerLet's Encrypt Subjectdew4.my.id Fingerprint05:44:10:EC:A8:35:87:9D:A2:C7:D1:ED:B0:C4:CE:89:27:15:25:72 ValidityWed, 20 Mar 2024 22:37:32 GMT - Tue, 18 Jun 2024 22:37:31 GMT
File typeASCII text, with very long lines (5055), with no line terminators Hashd520cdc9018f0ee4be1c1277d903c9db 18ae5e599ea88303486d6b4dbc9ef5a665e1c015 73ed00e997937833b9d8f57619a092c0af363de7bc652473bf78e4e9e7177152
Analyzer | Verdict | Alert | OpenPhish | phishing | Garena |
GET /css-zone/twitter.css HTTP/1.1
Host: jsjsih.dew4.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jsjsih.dew4.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 05:23:13 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 05:23:13 GMT
last-modified: Sat, 10 Feb 2024 08:54:56 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9KYzJNheIbPXDukuR8cEIdEF%2F%2FIzRIKktTE7IPF0V82P23j1ri6m2TQIqbbTiTdHkMEJaXdpLI4gcJSxtoG4inhWtUlXFdUa%2Fx70J36njOKXdlW9wIvSTs3xoFsShA6y03wowA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8793a8f85d42b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|