d.cgdyi.icu/assets/Guide-b915acd8.css
34.92.155.184200 OK 167 B URL GET HTTP/2 d.cgdyi.icu/assets/Guide-b915acd8.css
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
Hash 6e646cd14d0b5001d927f98b0152df35
102fb3acf536ab5c016e54512db152864821bd06
b915acd878290d75d9aaa86e9ac55b3d341b8924de20e774f2c2e62ef25f2fc9
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/Guide-b915acd8.css HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:28 GMT
content-type: text/css
content-length: 167
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-a7"
expires: Wed, 24 Apr 2024 08:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/_plugin-vue_export-helper-c27b6911.js
34.92.155.184200 OK 91 B URL GET HTTP/2 d.cgdyi.icu/assets/_plugin-vue_export-helper-c27b6911.js
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
Hash 25e3a5dcaf00fb2b1ba0c8ecea6d2560
7850b3fd4aeb69387bdb5a60025d15c41351d5eb
cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/_plugin-vue_export-helper-c27b6911.js HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://d.cgdyi.icu/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:28 GMT
content-type: application/javascript
content-length: 91
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-5b"
expires: Wed, 24 Apr 2024 08:20:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?56999c069800319574299541bbc6f466
111.45.3.198200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?56999c069800319574299541bbc6f466
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (629)
Hash 419ae0b14621b2354f930507c862a0c0
9e43c68312a80b59053c84b6e811d7d6fd2bd477
d6267db88ffa141eb2b3c96b796a485f04305a455d225330a5b1ddc2301b15bd
GET /hm.js?56999c069800319574299541bbc6f466 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11267
Content-Type: application/javascript
Date: Wed, 24 Apr 2024 03:58:28 GMT
Etag: 03d1d4b0a812d1ad3822baf0aee4de91
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=BEC3AC30F942735E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
d.cgdyi.icu/assets/_plugin-vue_export-helper-c27b6911.js
34.92.155.184200 OK 91 B URL GET HTTP/2 d.cgdyi.icu/assets/_plugin-vue_export-helper-c27b6911.js
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
Hash 25e3a5dcaf00fb2b1ba0c8ecea6d2560
7850b3fd4aeb69387bdb5a60025d15c41351d5eb
cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/_plugin-vue_export-helper-c27b6911.js HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/assets/Index-a0cbf82a.js
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:29 GMT
content-type: application/javascript
content-length: 91
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-5b"
expires: Wed, 24 Apr 2024 08:20:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1493546447&si=56999c069800319574299541bbc6f466&v=1.3.0&lv=1&sn=59789&r=0&ww=1280&u=https%3A%2F%2Fd.cgdyi.icu%2F%23%2F&tt=WhatsApp%20Web
111.45.3.198200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1493546447&si=56999c069800319574299541bbc6f466&v=1.3.0&lv=1&sn=59789&r=0&ww=1280&u=https%3A%2F%2Fd.cgdyi.icu%2F%23%2F&tt=WhatsApp%20Web
IP 111.45.3.198:443
ASN #56040 China Mobile communications corporation
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=1493546447&si=56999c069800319574299541bbc6f466&v=1.3.0&lv=1&sn=59789&r=0&ww=1280&u=https%3A%2F%2Fd.cgdyi.icu%2F%23%2F&tt=WhatsApp%20Web HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 24 Apr 2024 03:58:29 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=583679C82911058B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
d.cgdyi.icu/apple-touch-icon.png
34.92.155.184200 OK 4.8 kB URL GET HTTP/2 d.cgdyi.icu/apple-touch-icon.png
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type PNG image data, 194 x 194, 8-bit colormap, non-interlaced
Hash e872691e449e137aac21b048c42b9539
bc1d23d193fdee85fad4e0c392a512645d07dd30
8286d412dd31e8fab1f6d67092d86685fbc4f9702863f8262ce8fef566c96592
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /apple-touch-icon.png HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:29 GMT
content-type: image/png
content-length: 4803
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-12c3"
expires: Thu, 23 May 2024 08:16:27 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d.cgdyi.icu/img/favicon.png
34.92.155.184200 OK 787 B URL GET HTTP/2 d.cgdyi.icu/img/favicon.png
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Hash c5088e888c97ad440a61d247596f88e5
865a0d1bb7e1245e046c5e1bae988cce53330280
d0cadf240e89340b93df35240e7809039c1c574be05fbe2cf3243e2f487bc9ec
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /img/favicon.png HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:29 GMT
content-type: image/png
content-length: 787
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-313"
expires: Thu, 23 May 2024 08:15:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/Guide-de8c86d1.js
34.92.155.184200 OK 306 kB URL GET HTTP/2 d.cgdyi.icu/assets/Guide-de8c86d1.js
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type gzip compressed data, from Unix
Size 306 kB (306394 bytes)
Hash c9a4fedf047d731e755574bfb77f60c4
b9be0b7b2c1e288626950c849432af151efe296b
8c6e3f3646d67a90502b17834d858ce8e14229d588c743ca1dc8cead1316b262
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/Guide-de8c86d1.js HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/assets/Index-a0cbf82a.js
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:29 GMT
content-type: application/javascript
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-30fb"
expires: Wed, 24 Apr 2024 08:20:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
dsfihi.icu/api/registerChat
47.76.124.188204 No Content 0 B URL OPTIONS HTTP/2 dsfihi.icu/api/registerChat
IP 47.76.124.188:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerLet's Encrypt
Subjectdsfihi.icu
FingerprintE0:FA:AC:96:93:24:84:4F:98:47:5F:AE:EC:0A:5B:44:5C:83:14:30
ValiditySat, 16 Mar 2024 04:58:23 GMT - Fri, 14 Jun 2024 04:58:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/registerChat HTTP/1.1
Host: dsfihi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://d.cgdyi.icu/
Origin: https://d.cgdyi.icu
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
cache-control: no-cache, private
date: Wed, 24 Apr 2024 03:58:30 GMT
access-control-allow-origin: *
vary: Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/duihao-2f6339d6.png
34.92.155.184200 OK 18 kB URL GET HTTP/2 d.cgdyi.icu/assets/duihao-2f6339d6.png
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type PNG image data, 461 x 464, 8-bit/color RGBA, non-interlaced
Hash fa20d34143683442dbb6dff3ddba3102
b2a5fac1718e47e661ebdcc8cdfba0b7b23ceef2
2f6339d62088f4c277cccfb6dc83c72f1db263c20f353e5201210d1a031402c7
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/duihao-2f6339d6.png HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: image/png
content-length: 17553
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-4491"
expires: Tue, 21 May 2024 11:42:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dsfihi.icu/api/webhook?event=msg.reload
47.76.124.188200 OK 0 B URL POST HTTP/2 dsfihi.icu/api/webhook?event=msg.reload
IP 47.76.124.188:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerLet's Encrypt
Subjectdsfihi.icu
FingerprintE0:FA:AC:96:93:24:84:4F:98:47:5F:AE:EC:0A:5B:44:5C:83:14:30
ValiditySat, 16 Mar 2024 04:58:23 GMT - Fri, 14 Jun 2024 04:58:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/webhook?event=msg.reload HTTP/1.1
Host: dsfihi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://d.cgdyi.icu/
Origin: https://d.cgdyi.icu
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
cache-control: no-cache, private
date: Wed, 24 Apr 2024 03:58:31 GMT
access-control-allow-origin: *
vary: Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dsfihi.icu/api/getSocketAddress
47.76.124.188204 No Content 0 B URL OPTIONS HTTP/2 dsfihi.icu/api/getSocketAddress
IP 47.76.124.188:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerLet's Encrypt
Subjectdsfihi.icu
FingerprintE0:FA:AC:96:93:24:84:4F:98:47:5F:AE:EC:0A:5B:44:5C:83:14:30
ValiditySat, 16 Mar 2024 04:58:23 GMT - Fri, 14 Jun 2024 04:58:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/getSocketAddress HTTP/1.1
Host: dsfihi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://d.cgdyi.icu/
Origin: https://d.cgdyi.icu
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
cache-control: no-cache, private
date: Wed, 24 Apr 2024 03:58:31 GMT
access-control-allow-origin: *
vary: Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/photo-265cdaea.svg
34.92.155.184200 OK 140 kB URL GET HTTP/2 d.cgdyi.icu/assets/photo-265cdaea.svg
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type SVG Scalable Vector Graphics image
Size 140 kB (140125 bytes)
Hash 1cfbb750f23757aa09c2fd25fd8f5b90
0934bdb1906a8c5f6804d376fb58db621aee70af
265cdaeafd9290b671b7c8ac839c19f1f4dc2a306941303f03a415b0490aa52e
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/photo-265cdaea.svg HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: image/svg+xml
content-length: 140125
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-2235d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/laba-441f0c04.svg
34.92.155.184200 OK 2.5 kB URL GET HTTP/2 d.cgdyi.icu/assets/laba-441f0c04.svg
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type SVG Scalable Vector Graphics image
Hash a69c63844658e8b046e0ef34f794ab19
a5649a909d6e8c72d2f89c3e03a1bf31750d6162
441f0c04419ad2b737867bcf6bbb501b2095daf400918391608b46f0d721330a
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/laba-441f0c04.svg HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: image/svg+xml
content-length: 2499
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-9c3"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/msgloadding-2dcd60de.svg
34.92.155.184200 OK 1.8 kB URL GET HTTP/2 d.cgdyi.icu/assets/msgloadding-2dcd60de.svg
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type SVG Scalable Vector Graphics image
Hash e5ad9f252400104557820922a28930c9
0798be5aa825f239554eec573ad9012a39048f77
2dcd60dec742f9917a82b6c39a2694b244327af1419a3862ca836122698d722f
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/msgloadding-2dcd60de.svg HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: image/svg+xml
content-length: 1828
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-724"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/xiaolian-33f1b2b8.svg
34.92.155.184200 OK 2.4 kB URL GET HTTP/2 d.cgdyi.icu/assets/xiaolian-33f1b2b8.svg
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type SVG Scalable Vector Graphics image
Hash f710611094f42cbe754f0a692c81bad6
3a63c6fffd5986ccb9a341928d666f4bae2079c8
33f1b2b8beb484536f9f46e015b540ea3cb40362c310c6f07fdfe6274494bd7b
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/xiaolian-33f1b2b8.svg HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: image/svg+xml
content-length: 2377
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-949"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/tupian-75b5624a.svg
34.92.155.184200 OK 1.9 kB URL GET HTTP/2 d.cgdyi.icu/assets/tupian-75b5624a.svg
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type SVG Scalable Vector Graphics image
Hash 78a332f85a8edc6de50e77ec146201dd
064251199e997f4ada05cfbfba475098009cdb47
75b5624a5ec7b46246241edd329b65edbc075960a48dcdeca4cb78a4b95a151b
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/tupian-75b5624a.svg HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: image/svg+xml
content-length: 1888
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-760"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/huixingzheng-98a8f77f.svg
34.92.155.184200 OK 3.6 kB URL GET HTTP/2 d.cgdyi.icu/assets/huixingzheng-98a8f77f.svg
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type SVG Scalable Vector Graphics image
Hash f251b50a44dfcbd47d64184512376fc6
276cfa8c809597977f4dec3466128d4ceac37930
98a8f77f2aca32a2a1b67788f514827c1373f589d5309f227a9c04d9bbf3e46d
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/huixingzheng-98a8f77f.svg HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: image/svg+xml
content-length: 3561
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-de9"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dsfihi.icu/api/registerChat
47.76.124.188204 No Content 6.8 kB URL OPTIONS HTTP/2 dsfihi.icu/api/registerChat
IP 47.76.124.188:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerLet's Encrypt
Subjectdsfihi.icu
FingerprintE0:FA:AC:96:93:24:84:4F:98:47:5F:AE:EC:0A:5B:44:5C:83:14:30
ValiditySat, 16 Mar 2024 04:58:23 GMT - Fri, 14 Jun 2024 04:58:22 GMT
File type Unicode text, UTF-8 text, with very long lines (5341)
Hash 6d5f38644720caca092ead81d468209b
a2acd4b0fa05863db6b099298eebcab40ccfa024
644ae00a9a7d6806eae90ae8cb83fb0cae4e4ac727cec0fc3ad248b18414e374
POST /api/registerChat HTTP/1.1
Host: dsfihi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 20
Origin: https://d.cgdyi.icu
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: no-cache, private
date: Wed, 24 Apr 2024 03:58:30 GMT
x-ratelimit-limit: 60
x-ratelimit-remaining: 59
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/bg-b0fa5029.png
34.92.155.184200 OK 88 kB URL GET HTTP/2 d.cgdyi.icu/assets/bg-b0fa5029.png
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type PNG image data, 540 x 981, 4-bit colormap, non-interlaced
Hash a4be512e7195b6b733d9110b408f075d
216772b72be47c45b2b975cc6d2ca591798cd09a
b0fa502976056ad9b9613c59d1f264b70da06afe9f3a03321602dfeb1575b158
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/bg-b0fa5029.png HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/assets/Index-ab45c7fd.css
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: image/png
content-length: 88534
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-159d6"
expires: Tue, 21 May 2024 11:42:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/bg.png
34.92.155.184404 Not Found 146 B URL GET HTTP/2 d.cgdyi.icu/assets/bg.png
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/bg.png HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
dsfihi.icu/wsapi/channel/messagesync
47.76.124.188200 OK 0 B URL POST HTTP/2 dsfihi.icu/wsapi/channel/messagesync
IP 47.76.124.188:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerLet's Encrypt
Subjectdsfihi.icu
FingerprintE0:FA:AC:96:93:24:84:4F:98:47:5F:AE:EC:0A:5B:44:5C:83:14:30
ValiditySat, 16 Mar 2024 04:58:23 GMT - Fri, 14 Jun 2024 04:58:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /wsapi/channel/messagesync HTTP/1.1
Host: dsfihi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://d.cgdyi.icu/
Origin: https://d.cgdyi.icu
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 24 Apr 2024 03:58:32 GMT
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, token, accept, origin, Cache-Control, X-Requested-With, appid, noncestr, sign, timestamp
access-control-allow-methods: POST, OPTIONS, GET, PUT,DELETE,PATCH
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dsfihi.icu/wsapi/channel/messagesync
47.76.124.188200 OK 66 B URL POST HTTP/2 dsfihi.icu/wsapi/channel/messagesync
IP 47.76.124.188:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerLet's Encrypt
Subjectdsfihi.icu
FingerprintE0:FA:AC:96:93:24:84:4F:98:47:5F:AE:EC:0A:5B:44:5C:83:14:30
ValiditySat, 16 Mar 2024 04:58:23 GMT - Fri, 14 Jun 2024 04:58:22 GMT
Hash 2b23a9b90345473b8052b5e2c1841fc4
cd98328d7d120665cc77c4bf46bf2a3186b2453e
bb4f9144a8cbfa2e83d65e879979bc37e93824f9941fd90bd91be954ce2309fc
POST /wsapi/channel/messagesync HTTP/1.1
Host: dsfihi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 126
Origin: https://d.cgdyi.icu
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:32 GMT
content-type: application/json; charset=utf-8
content-length: 66
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, token, accept, origin, Cache-Control, X-Requested-With, appid, noncestr, sign, timestamp
access-control-allow-methods: POST, OPTIONS, GET, PUT,DELETE,PATCH
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dsfihi.icu/ws/
47.76.124.188 0 B IP 47.76.124.188:0
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerLet's Encrypt
Subjectdsfihi.icu
FingerprintE0:FA:AC:96:93:24:84:4F:98:47:5F:AE:EC:0A:5B:44:5C:83:14:30
ValiditySat, 16 Mar 2024 04:58:23 GMT - Fri, 14 Jun 2024 04:58:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/ HTTP/1.1
Host: dsfihi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://d.cgdyi.icu
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ELPnWyM6yy8xu1ibuAoBVw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 24 Apr 2024 03:58:32 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yQRxXZkmPOVyqDd2hhxixBZf+xs=
d.cgdyi.icu/assets/duihua-1ccb10f9.svg
34.92.155.184200 OK 88 kB URL GET HTTP/2 d.cgdyi.icu/assets/duihua-1ccb10f9.svg
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type SVG Scalable Vector Graphics image
Hash 2b9f4599159760a9ae92a6590c5b07af
d4ed568e8ea865a2073eeb8627bfddf4fac4a36b
1ccb10f9123fed78b3f869177d478d6ab5906600d51f41677dff0b4a40d635ab
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/duihua-1ccb10f9.svg HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/assets/Index-ab45c7fd.css
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:33 GMT
content-type: image/svg+xml
content-length: 88240
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-158b0"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dsfihi.icu/storage/images/42e30a1175061056ecfdae12ef8c9ba6.png
47.76.124.188200 OK 173 kB URL GET HTTP/2 dsfihi.icu/storage/images/42e30a1175061056ecfdae12ef8c9ba6.png
IP 47.76.124.188:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerLet's Encrypt
Subjectdsfihi.icu
FingerprintE0:FA:AC:96:93:24:84:4F:98:47:5F:AE:EC:0A:5B:44:5C:83:14:30
ValiditySat, 16 Mar 2024 04:58:23 GMT - Fri, 14 Jun 2024 04:58:22 GMT
File type PNG image data, 1018 x 570, 8-bit/color RGB, non-interlaced
Size 173 kB (173237 bytes)
Hash 4492822a9082710fd057a9f536d5bf62
afdcf6b5ae70e67aec0f9f7f2036698957c06020
12dc76eb3fe3b2b7781862f5faeb0e2fce87ed9c011b17039d0d398007061b7b
GET /storage/images/42e30a1175061056ecfdae12ef8c9ba6.png HTTP/1.1
Host: dsfihi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:33 GMT
content-type: image/png
content-length: 173237
last-modified: Sat, 16 Mar 2024 20:18:12 GMT
etag: "65f5fe84-2a4b5"
expires: Fri, 24 May 2024 03:58:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
34.92.155.184200 OK 6.6 kB URL User Request GET HTTP/2 IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type HTML document, ASCII text, with very long lines (6978), with no line terminators
Hash bbd0bb2f9ee842e4fe5df36724b5ecf5
8a7bb0c788566ec0667a2d482bbbde0097e4e5a6
33ec1c40910abed33c1e8c69a9442515511e831318912ac1cb82762b74db411a
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET / HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:26 GMT
content-type: text/html
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-19f7"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/app.css
34.92.155.184200 OK 240 kB IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
Size 240 kB (239722 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /app.css HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:26 GMT
content-type: text/css
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-3a86a"
expires: Wed, 24 Apr 2024 08:33:23 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/index-931903a7.css
34.92.155.184200 OK 524 kB URL GET HTTP/2 d.cgdyi.icu/assets/index-931903a7.css
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
Size 524 kB (523956 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/index-931903a7.css HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:26 GMT
content-type: text/css
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-7feb4"
expires: Wed, 24 Apr 2024 08:33:23 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/Index-a0cbf82a.js
34.92.155.184200 OK 70 kB URL GET HTTP/2 d.cgdyi.icu/assets/Index-a0cbf82a.js
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/Index-a0cbf82a.js HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://d.cgdyi.icu/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:28 GMT
content-type: application/javascript
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-10fc5"
expires: Wed, 24 Apr 2024 08:20:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/Index-a0cbf82a.js
34.92.155.184200 OK 70 kB URL GET HTTP/2 d.cgdyi.icu/assets/Index-a0cbf82a.js
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/Index-a0cbf82a.js HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/assets/index-2cc19a0f.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:28 GMT
content-type: application/javascript
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-10fc5"
expires: Wed, 24 Apr 2024 08:20:51 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/index-2cc19a0f.js
34.92.155.184200 OK 1.5 MB URL GET HTTP/2 d.cgdyi.icu/assets/index-2cc19a0f.js
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
Size 1.5 MB (1470324 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/index-2cc19a0f.js HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:26 GMT
content-type: application/javascript
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-166f74"
expires: Wed, 24 Apr 2024 08:20:29 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/stylex.css
34.92.155.184200 OK 224 kB IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type ASCII text, with CRLF line terminators
Size 224 kB (224420 bytes)
Hash ec29913ddea7b670486fc5f1340a342b
abbbeacf67be5f19dabd146989f18e35f3b19fb3
a00f31e77b5364355e2f80e2ef9f65f879c30823bdda515bc31dc2145e5802ba
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /stylex.css HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:26 GMT
content-type: text/css
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-36ca4"
expires: Wed, 24 Apr 2024 08:33:23 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/index.css
34.92.155.184200 OK 327 kB IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
Size 327 kB (326636 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /index.css HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:26 GMT
content-type: text/css
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-4fbec"
expires: Wed, 24 Apr 2024 08:33:23 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/zhifeiji-23c1a9bc.svg
34.92.155.184200 OK 1.5 kB URL GET HTTP/2 d.cgdyi.icu/assets/zhifeiji-23c1a9bc.svg
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type SVG Scalable Vector Graphics image
Hash 75982f5e476706aabeb7993e6392ffa3
4c63348fbf1c9411eb33edbef2fd23c8e9d10aef
962a6f173064c2309a6463f34378d5f0d14781af034d56bfe8008510f30a720f
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/zhifeiji-23c1a9bc.svg HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:31 GMT
content-type: image/svg+xml
content-length: 1527
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-5f7"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
dsfihi.icu/ws/
47.76.124.188101 Switching Protocols 0 B IP 47.76.124.188:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerLet's Encrypt
Subjectdsfihi.icu
FingerprintE0:FA:AC:96:93:24:84:4F:98:47:5F:AE:EC:0A:5B:44:5C:83:14:30
ValiditySat, 16 Mar 2024 04:58:23 GMT - Fri, 14 Jun 2024 04:58:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/ HTTP/1.1
Host: dsfihi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://d.cgdyi.icu
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ELPnWyM6yy8xu1ibuAoBVw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 24 Apr 2024 03:58:32 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yQRxXZkmPOVyqDd2hhxixBZf+xs=
d.cgdyi.icu/assets/en-4020694c.js
34.92.155.184200 OK 2.5 kB URL GET HTTP/2 d.cgdyi.icu/assets/en-4020694c.js
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type Unicode text, UTF-8 text, with very long lines (2535), with no line terminators
Hash ae3d4eb4f17a3f6d16e01753f483f39d
09363789ce856e8fe77d6b885c7b19062b996969
bcb520d74acbdc9cb36e3102ebca9d4b06cc1377f88440aedbfbffea00712891
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/en-4020694c.js HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/assets/index-2cc19a0f.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:28 GMT
content-type: application/javascript
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-9a4"
expires: Wed, 24 Apr 2024 08:20:39 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/Index-ab45c7fd.css
34.92.155.184200 OK 6.4 kB URL GET HTTP/2 d.cgdyi.icu/assets/Index-ab45c7fd.css
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type ASCII text, with very long lines (6388), with no line terminators
Hash 828ec5b813296c19ad55d94fce69ed6e
231de59e1b4260783f41d7eb5581d4a619f94de2
47ba534af901ccdeb0238eb17eb906132230d0b0bb71547cf3bc054c0c72ad08
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/Index-ab45c7fd.css HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:28 GMT
content-type: text/css
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6623226c-18f3"
expires: Wed, 24 Apr 2024 08:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
d.cgdyi.icu/assets/en-1fe2d0b7.png
34.92.155.184200 OK 300 kB URL GET HTTP/2 d.cgdyi.icu/assets/en-1fe2d0b7.png
IP 34.92.155.184:443
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectd.cgdyi.icu
FingerprintAF:B4:AA:CE:8E:DA:8C:21:97:94:1E:F9:46:2A:57:3F:EE:88:FE:80
ValidityTue, 23 Apr 2024 07:15:10 GMT - Mon, 22 Jul 2024 07:15:09 GMT
File type PNG image data, 750 x 1621, 8-bit colormap, non-interlaced
Size 300 kB (300024 bytes)
Hash 31ccf89bf040de48419e9cb90f700471
f7e2df3a00b162c2336cf0c929e70894c684898b
1fe2d0b753d23b34cfb679553079b1a943e7cbf2277c5f86193f0346877c42af
Analyzer Verdict Alert OpenPhish phishing WhatsApp
GET /assets/en-1fe2d0b7.png HTTP/1.1
Host: d.cgdyi.icu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.cgdyi.icu/
Cookie: Hm_lvt_56999c069800319574299541bbc6f466=1713931109; Hm_lpvt_56999c069800319574299541bbc6f466=1713931109
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 03:58:29 GMT
content-type: image/png
content-length: 300024
last-modified: Sat, 20 Apr 2024 02:03:24 GMT
etag: "6623226c-493f8"
expires: Thu, 23 May 2024 08:15:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2