| mail.ambilhadiahmu.dydd67.biz.id/ | 188.114.97.1 | | 2.8 kB |
URL User Request GET mail.ambilhadiahmu.dydd67.biz.id/ IP188.114.97.1:0
File typeHTML document, ASCII text, with very long lines (456) Hash0b7f425001531bbac8f3393de79aa15f 1e09f5055c98d6b1f74c1adf9953a5eab0878ce9 56fa0c2e224ae90cd93e5d68c9994dd8a12f08ed0e27c6565d8f3da433fcaaf5
Analyzer | Verdict | Alert | OpenPhish | phishing | DANA |
GET / HTTP/1.1
Host: mail.ambilhadiahmu.dydd67.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 00:01:17 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 12 Oct 2023 19:55:54 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XbG03YoxYs7SnamI7MvPaX8nxdMTvqvNqFkEN1d6P6bh3sMtglUPZ5UlnTkl8LqoqTmVyvQ05cCcu16UPit2blB%2BoV8G9jd3ZTRKIs%2BR0KdU4Sv0AXvBe10C0TKluMkhBLtjnYaVy9wYgRdfBB7prXF9WA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8791d15edeb5569a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js | 104.17.24.14 | 200 OK | 28 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js IP104.17.24.14:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 00:01:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1664093
expires: Mon, 14 Apr 2025 00:01:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K5pdpa37lPHaxRAeCcX1U54ReBgcuP10C%2BCqwGy1D%2FbMwQy0ZQfSRoa%2FZv8qWVbi1BZ3xCGxAlp%2B184glRnFLU5rh7oGo5drEqPMrJHPXYi0awpRa8GxAG0bGXlB8GNIliXU9XA3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8791d164fbc85688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css | 151.101.65.229 | 200 OK | 30 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css IP151.101.65.229:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeUnicode text, UTF-8 text, with very long lines (65300) Hash6d9c6fda1e7087224431cc8068bb998f 6273ac1a23d79a122f022f6a87c5b75c2cfafc3a fb1763b59f9f5764294b5af9fa5250835ae608282fe6f2f2213a5952aacf1fbf
GET /npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mail.ambilhadiahmu.dydd67.biz.id
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.2.0-beta1
x-jsd-version-type: version
etag: W/"2f3f9-YnOsGiPXmhIvAi9qh8W3XCz6/Do"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 00:01:17 GMT
age: 20038320
x-served-by: cache-fra-etou8220113-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30281
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js | 151.101.65.229 | 200 OK | 11 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js IP151.101.65.229:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (42862) Hashd5a61c749e44e47159af8a6579dda121 3b41b3bc956685015a347a2238e71db29dfa0dbb 0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740
GET /npm/slick-carousel@1.8.1/slick/slick.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"a76f-O0GzvJVmhQFaNHoiOOcdsp36Dbs"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 00:01:17 GMT
age: 7032375
x-served-by: cache-fra-eddf8230096-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11325
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.css | 151.101.65.229 | 200 OK | 1.8 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.css IP151.101.65.229:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hashf38b2db10e01b1572732a3191d538707 a94a059b3178b4adec09e3281ace2819a30095a4 de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5
GET /npm/slick-carousel@1.8.1/slick/slick.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"6f0-qUoFmzF4tK3sCeMoGs4oGaMAlaQ"
accept-ranges: bytes
date: Wed, 24 Apr 2024 00:01:17 GMT
age: 5256213
x-served-by: cache-fra-eddf8230085-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1776
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick-theme.css | 151.101.65.229 | 200 OK | 928 B |
URL GET HTTP/2cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick-theme.css IP151.101.65.229:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hashf9faba678c4d6dcfdde69e5b11b37a2e 81a434f94f2b1124f3232bb86f2944f82fb23ac0 7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a
GET /npm/slick-carousel@1.8.1/slick/slick-theme.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"c49-gaQ0+U8rESTzIyu4bylE+C+yOsA"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 00:01:17 GMT
age: 21860934
x-served-by: cache-fra-eddf8230023-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 928
X-Firefox-Spdy: h2
|
|
| i.postimg.cc/XvL4vr8c/logo.png | 162.19.88.69 | 200 OK | 3.4 kB |
URL GET HTTP/2i.postimg.cc/XvL4vr8c/logo.png IP162.19.88.69:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerLet's Encrypt Subjectpostimg.cc Fingerprint53:90:A2:AC:6E:D0:9C:56:06:D5:4F:6E:EE:C9:67:58:10:CF:9A:D6 ValidityMon, 22 Apr 2024 06:32:22 GMT - Sun, 21 Jul 2024 06:32:21 GMT
File typePNG image data, 421 x 120, 8-bit colormap, non-interlaced Hashcb69c4f551683f940ad363394e10f8dd 745c915991aa8771ee81e4c1831eee5e5a8a16ce f67654bff5f36f5fca51a27767879b5e463cc39ee29ea2e46dba036f60195ba0
GET /XvL4vr8c/logo.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 00:01:17 GMT
content-type: image/png
content-length: 3377
last-modified: Fri, 27 Jan 2023 07:02:09 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/ajax-loader.gif | 151.101.65.229 | 200 OK | 4.2 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/ajax-loader.gif IP151.101.65.229:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeGIF image data, version 89a, 32 x 32 Hashc5cd7f5300576ab4c88202b42f6ded62 7a1aa43614396382bb15e5fde574d9cdcd21698f e7b44c86b050fca766a96ddac2d0932af0126da6f2305280342d909168dcce6b
GET /npm/slick-carousel@1.8.1/slick/ajax-loader.gif HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick-theme.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 4178
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/gif
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"1052-ehqkNhQ5Y4K7FeX95XTZzc0haY8"
accept-ranges: bytes
date: Wed, 24 Apr 2024 00:01:17 GMT
age: 20633931
x-served-by: cache-fra-etou8220104-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/fonts/slick.woff | 151.101.65.229 | 200 OK | 1.4 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/fonts/slick.woff IP151.101.65.229:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeWeb Open Font Format, CFF, length 1380, version 1.0 Hashb7c9e1e479de3b53f1e4e30ebac2403a af91c12f0f406a4f801aeb3b398768fe41d8f864 26726bac4060abb1226e6ceebc1336e84930fe7a7af1b3895a109d067f5b5dcc
GET /npm/slick-carousel@1.8.1/slick/fonts/slick.woff HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mail.ambilhadiahmu.dydd67.biz.id
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1380
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"564-r5HBLw9Aak+AGus7OYdo/kHY+GQ"
accept-ranges: bytes
date: Wed, 24 Apr 2024 00:01:17 GMT
age: 4227258
x-served-by: cache-fra-etou8220033-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjr0B4gaVI.woff2 | 216.58.207.227 | 200 OK | 19 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjr0B4gaVI.woff2 IP216.58.207.227:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18720, version 1.0 Hashd26a2372aa87ea24df867be03821fc5f 5dea98349dcf3e2da8a4c4c209bbcf412d572805 1f6e5ae697330d08acadf0299418b94a102dcc63f483b3f3ec821cc7e36ef8dc
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjr0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mail.ambilhadiahmu.dydd67.biz.id
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:24:54 GMT
expires: Fri, 18 Apr 2025 17:24:54 GMT
cache-control: public, max-age=31536000
age: 455784
last-modified: Thu, 14 Dec 2023 02:00:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css | 172.67.69.29 | 200 OK | 8.5 kB |
URL GET HTTP/2code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css IP172.67.69.29:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerLet's Encrypt Subjectionicframework.com Fingerprint95:C4:03:F8:4F:FA:7F:5C:A0:92:97:95:35:00:F2:CA:27:BB:F8:D4 ValidityFri, 01 Mar 2024 03:11:34 GMT - Thu, 30 May 2024 03:11:33 GMT
File typeUnicode text, UTF-8 text, with very long lines (50806) Hash1690997909aae14b023a6580d4a2f33f a4fd9551382a3b5c9c43e14adb8c4c4149cd2352 92ac508220f5bb60ec94e07650528eb66625f82a4740ada068cde05365781286
GET /ionicons/2.0.1/css/ionicons.min.css HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 00:01:17 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 13 Apr 2023 16:20:19 GMT
access-control-allow-origin: *
etag: W/"64382bc3-c854"
expires: Wed, 17 Apr 2024 18:18:00 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 27BA:156FBE:258D251:2663C48:66201000
via: 1.1 varnish
age: 81343
x-served-by: cache-osl6534-OSL
x-cache: HIT
x-cache-hits: 1
x-timer: S1713835534.365746,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 754c9f997d2800ff268710d6f26c0af5a53bbc45
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EuVIfA%2BxxfPXa7PDiuMMuZgIAP46lVKaWvfaNnZGMSg32EkIsyxkcHoLDvwsH5McjZW9pEEu2gpfAtfIQH0trDjJQ5UHZDVahu8lFdhTRqWbrI%2F5kZ05tm1F2DDSovHye%2BzdfIqpf5pe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8791d164dc615689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mail.ambilhadiahmu.dydd67.biz.id/img/2.png | 188.114.97.1 | 200 OK | 311 kB |
URL GET HTTP/1.1mail.ambilhadiahmu.dydd67.biz.id/img/2.png IP188.114.97.1:80
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/
File typePNG image data, 1440 x 575, 8-bit/color RGB, non-interlaced Size311 kB (310892 bytes) Hash5f02dbc34d6bd5fa2e8949fb860d60b8 f907c2f687df5ea62d1fbefbd0559e1f14f4de20 92a1a4e9a5d862808a4f03c0a0d153ece11bfb639462744b0c6244ebee18f016
Analyzer | Verdict | Alert | OpenPhish | phishing | DANA |
GET /img/2.png HTTP/1.1
Host: mail.ambilhadiahmu.dydd67.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 00:01:18 GMT
Content-Type: image/png
Content-Length: 310892
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 13:52:10 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XO6WU5f1SCbp5P2p1S%2BGUhYkKBDark2p9k9vIetzJQHKuz2tuN0rH3Tl9EP3jwnd3lcw8520tNgW1iqdxiNdZ7PG7wRVfiqYqx1qWzMK4zpst3iy65lga%2Fn0KECkRjOI0hmCedJA841q5h8ejKC7cbAyAg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8791d1655f75568b-OSL
alt-svc: h2=":443"; ma=60
|
|
| mail.ambilhadiahmu.dydd67.biz.id/img/logo-ojk.png | 188.114.97.1 | 200 OK | 46 kB |
URL GET HTTP/1.1mail.ambilhadiahmu.dydd67.biz.id/img/logo-ojk.png IP188.114.97.1:80
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/
File typePNG image data, 600 x 315, 8-bit/color RGBA, non-interlaced Hash883c16c692fa7ff6c3d58c14d1447c93 2043d443b2f2f4398f0e3b86c1d769637bdcf2bb cb425bf8c81af69b5850278eca430aa7e6edd0f27f7653c072c3437faeb8319b
Analyzer | Verdict | Alert | OpenPhish | phishing | DANA |
GET /img/logo-ojk.png HTTP/1.1
Host: mail.ambilhadiahmu.dydd67.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 00:01:18 GMT
Content-Type: image/png
Content-Length: 45960
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 07:59:14 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BmxMynJNKaznG6Gwo2tCfYr1UuS4Ok9oBIofE0asdg265MNkBsv8e7TWlcFFNyKPr3BOshPLB37tUa%2FYZYEft2yKNmVGO6Oc0bCrQgUTxK0xCQb4j9qJpjFRH%2FECSkatzDwHG%2B8m6ScFRzd46uWXOianZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8791d1655d2456c0-OSL
alt-svc: h2=":443"; ma=60
|
|
| mail.ambilhadiahmu.dydd67.biz.id/img/logo-lps.png | 188.114.97.1 | 200 OK | 16 kB |
URL GET HTTP/1.1mail.ambilhadiahmu.dydd67.biz.id/img/logo-lps.png IP188.114.97.1:80
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/
File typePNG image data, 500 x 203, 8-bit colormap, non-interlaced Hashe698f4d246fab302a286d1e8eb7049e4 0737bae7c61e87ed547e4408ff1e7432edb43f48 de9a7b06966c704cc5e8da25eba02339e2842a40285e768a99f43d0318740e2a
Analyzer | Verdict | Alert | OpenPhish | phishing | DANA |
GET /img/logo-lps.png HTTP/1.1
Host: mail.ambilhadiahmu.dydd67.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 00:01:18 GMT
Content-Type: image/png
Content-Length: 15795
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 07:59:12 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GqRQjJeDmpRBkBpneF9sEYFNm5%2BSIqh0zn%2F5MKPTPwz5UO36n9ttOCOL2%2FoHwx3%2BZtfEVjc6fGTCJ59J%2Fzb64piCTVAGUB9e9trQrSUopSw8kGlzs3V7XctoOaPA%2FtL6W7B9z7GK5%2B3KVnBEYKADSY8p9w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8791d16558fb569a-OSL
alt-svc: h2=":443"; ma=60
|
|
| mail.ambilhadiahmu.dydd67.biz.id/img/1.png | 188.114.97.1 | 200 OK | 261 kB |
URL GET HTTP/1.1mail.ambilhadiahmu.dydd67.biz.id/img/1.png IP188.114.97.1:80
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/
File typePNG image data, 1440 x 575, 8-bit/color RGB, non-interlaced Size261 kB (260598 bytes) Hasheb2530a21bb5cc75939020b7c952768e 23af2b3351bd62359301075a59d56887cf18164e fb56042cb6db32182426539ec35fb748c577e98e22b583fd0b19ca99621f0e6a
Analyzer | Verdict | Alert | OpenPhish | phishing | DANA |
GET /img/1.png HTTP/1.1
Host: mail.ambilhadiahmu.dydd67.biz.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 00:01:18 GMT
Content-Type: image/png
Content-Length: 260598
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 13:52:16 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PxLnlIYExRWHfTXbPyrJM2%2FlAQNNp5V7VkyLFEIe32JFIkH8gJ6GZ%2FNqieYnLJKMOPImmau4ok%2FDP7uliEE0XDa%2FD2fuMIDmNpGhTHDohTTjcXxglZWgukp4Wv0BXLKo4L9DcSK4Bs1Hh7WjKb%2BN4MIf7w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8791d16559d1b503-OSL
alt-svc: h2=":443"; ma=60
|
|
| www.dana.id/favicon.ico | 95.101.11.49 | | 5.2 kB |
IP95.101.11.49:0 ASN#20940 Akamai International B.V.
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerDigiCert Inc Subjectwww.dana.id FingerprintA1:71:4F:1D:DC:BB:D5:7F:FC:83:4C:5E:7B:E1:36:18:79:D9:BB:E6 ValidityTue, 08 Aug 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT
File typeMS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel Hash8f1bac7ae69451bdf9c44b09577cf28c 4fe47a2d13f8b8bdf5966dc6c4e9e245b00e91c1 8cd0ee2909907b3b0f78d1fd1e7223e2ecc90069261768d98c4b8c7cbee0f9f5
GET /favicon.ico HTTP/1.1
Host: www.dana.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
last-modified: Tue, 11 Apr 2023 09:54:24 GMT
etag: "64352e50-18c5f"
x-ua-compatible: IE=Edge
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
content-length: 5210
cache-control: public, no-transform, max-age=7748223
date: Wed, 24 Apr 2024 00:01:18 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=376, origin; dur=0, ak_p; desc="1713916878547_1600457517_351913206_37557_11447_5_53_21";dur=1
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.5/css/bootstrap.min.css | 104.18.10.207 | 200 OK | 122 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.5/css/bootstrap.min.css IP104.18.10.207:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (65371) Size122 kB (122540 bytes) Hash5d5357cb3704e1f43a1f5bfed2aebf42 08df9a96752852f2cbd310c30facd934e348c2c5 31fbd99641c212a6ad3681a2397bde13c148c0ccd98385bce6a7eb7c81417d87
GET /bootstrap/3.3.5/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 00:01:17 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5d5357cb3704e1f43a1f5bfed2aebf42"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 07/07/2023 01:09:13
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1076
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 0ad4fc24207cad41168348671d66aef9
cdn-cache: HIT
cf-cache-status: HIT
age: 12951220
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8791d164ded80b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Open+Sans:wght@500&display=swap | 142.250.74.106 | 200 OK | 6.0 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Open+Sans:wght@500&display=swap IP142.250.74.106:443
Requested byhttp://mail.ambilhadiahmu.dydd67.biz.id/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (6096), with no line terminators Hashe253ffbd6a45a51c4878b78dab98c7d0 622c5ef8ab9db17f3ce483e7b7bd88bb3068c850 049eea3f3280bca0d40456fc26afbcc53d1a9ec2b70b75ecea7c0196d0bff0ab
GET /css2?family=Open+Sans:wght@500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://mail.ambilhadiahmu.dydd67.biz.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 00:01:17 GMT
date: Wed, 24 Apr 2024 00:01:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|