Report - mysemak.newinfo7-2025.my/

Report Overview

Visitedpublic

2025-07-10 11:22:06

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
thehimalayantimes.com	407094	2001-10-08	2012-07-19	2025-07-09	498 B	178 B	192.124.249.139
mysemak.newinfo7-2025.my	unknown	unknown	2025-07-09	2025-07-09	5.8 kB	188 kB	104.21.112.1
telegram.org	5408	2003-12-15	2013-12-18	2025-07-06	441 B	2.2 kB	149.154.167.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-07-10	medium	newinfo7-2025.my	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	mysemak.newinfo7-2025.my/	ScriptElement	193 B	2023-03-07	2025-08-11
URL mysemak.newinfo7-2025.my/ IP / ASN 104.21.112.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Information First Seen 2023-03-07 Last Seen 2025-08-11 Times Seen 54693 Size 193 B (193 bytes) MD5 9c629a0c52a2afad699d260f673481fd SHA1 a4fd0ed3e5daa31480eb6de0faa5d442f015cbf6 SHA256 ea0d804370930ee958af535ce56cddf1dda419bdc676315ae8af0fbb4c733471 Format Code Loading...

	mysemak.newinfo7-2025.my/	ScriptElement	1.3 kB	2023-06-28	2025-08-09
URL mysemak.newinfo7-2025.my/ IP / ASN 104.21.112.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Information First Seen 2023-06-28 Last Seen 2025-08-09 Times Seen 473 Size 1.3 kB (1272 bytes) MD5 36394bb4d525f225ce0bf38cd5accd2f SHA1 52b9ad5386cb79a52e51bfbb1148f985ffef086b SHA256 73fe51a9d21aa38d83a1c15caca34e312d7d59712884c204ce6e68daf2840c25 Format Code Loading...

	mysemak.newinfo7-2025.my/haykaljb/js/tgwallpaper.mineccb.js	ScriptElement	3.0 kB	2023-03-07	2025-08-11
URL mysemak.newinfo7-2025.my/haykaljb/js/tgwallpaper.mineccb.js IP / ASN 104.21.112.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Information First Seen 2023-03-07 Last Seen 2025-08-11 Times Seen 58907 Size 3.0 kB (2979 bytes) MD5 2b89d34702716a8ad2cc3977718f53a3 SHA1 04406ebd6a9e2ce79dbac5e5048cfe1384e4574a SHA256 2031e418ee10af8110729b3f327b968462fc0a9d8d1da095387bb472ccd0dee6 Format Code Loading...

HTTP Transactions (14)

URL IP Response Size

GET thehimalayantimes.com/uploads/imported_images/wp-content/uploads/2015/09/090604190347624.jpg

192.124.249.139

403 Forbidden

0 B

URL GET HTTPS

thehimalayantimes.com/uploads/imported_images/wp-content/uploads/2015/09/090604190347624.jpg

IP / ASN

192.124.249.139

#30148 SUCURI-SEC

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeN/A

First Seen0001-01-01

Last Seen2025-08-11

Times Seen5764835

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Information

IssuerStarfield Technologies, Inc.

Subjectthehimalayantimes.com

Fingerprint1A:3D:5D:4F:D2:A1:86:FF:1B:FE:3D:0C:A7:BC:19:A6:2D:B6:82:A9

ValidityTue, 24 Sep 2024 08:06:56 GMT - Wed, 24 Sep 2025 08:06:56 GMT

HTTP Headers

GET /uploads/imported_images/wp-content/uploads/2015/09/090604190347624.jpg HTTP/1.1
Host: thehimalayantimes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Thu, 10 Jul 2025 11:19:54 GMT
content-type: text/html
x-sucuri-id: 19032
x-sucuri-block: BLACK02
server: Sucuri/Cloudproxy
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/haykaljb/css/font-robotoc4ca.css

104.21.112.1

200 OK

7.0 kB

URL GET HTTPS

mysemak.newinfo7-2025.my/haykaljb/css/font-robotoc4ca.css

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeASCII text

First Seen2023-07-28

Last Seen2025-08-09

Times Seen366

Size7.0 kB (7048 bytes)

MD59d1e661a74a2b1f5a8e96c33d8a64812

SHA164379b4d3b13d138bef0da0b73f0c37f826c8f7c

SHA25649d036c044394dbe84fe6c001dad1733d25fb38f11f8861e78a94f8930b8ec24

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /haykaljb/css/font-robotoc4ca.css HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 10 Jul 2025 11:21:46 GMT
content-type: text/css
server: cloudflare
last-modified: Sun, 02 Mar 2025 05:33:50 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZTIchhkd9xA3186YQjEl3bXqYiF0v5yZMPlheG%2BrmRsdnmupM75kq9qAzLSUXlzwnwpexeBaqv3ZNCanp399AB28MPnKyJbayJBuE1Sy0Hxu10W%2BdXo%3D"}]}
cache-control: max-age=14400
cf-cache-status: MISS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
content-encoding: br
cf-ray: 95cfadef1d2756be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/external.html?link=http://telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2

104.21.112.1

404 Not Found

315 B

URL GET HTTPS

mysemak.newinfo7-2025.my/external.html?link=http://telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeHTML document, ASCII text

First Seen2023-03-07

Last Seen2025-08-11

Times Seen98066

Size315 B (315 bytes)

MD5a34ac19f4afae63adc5d2f7bc970c07f

SHA1a82190fc530c265aa40a045c21770d967f4767b8

SHA256d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /external.html?link=http://telegram.org/fonts/Roboto/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/haykaljb/css/font-robotoc4ca.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 10 Jul 2025 11:21:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lBmN5kkNHkV1F95b0pkLFyHkevdCY9exi0ZKLbE5eeBPosfBJkNKS8DGnlQeDFK4JHART7MEmf50736Sf24ZdG00BPm9Z%2Fz4Xv1x2Okk7Uwmjj%2FGfaAh9re3GenBtMM5NxsEJC0ZTm7dPMo%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: DYNAMIC
cf-ray: 95cfadf7adf3b4ff-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3182&min_rtt=570&rtt_var=2432&sent=134&recv=150&lost=0&retrans=0&sent_bytes=12563&recv_bytes=9582&delivery_rate=448688&ss_exit_cwnd=14919&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=cfc00be135afc811&ts=2307&inflight_dur=38&x=40"

GET mysemak.newinfo7-2025.my/ast/css/main.html

104.21.112.1

404 Not Found

315 B

URL GET HTTPS

mysemak.newinfo7-2025.my/ast/css/main.html

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeHTML document, ASCII text

First Seen2023-03-07

Last Seen2025-08-11

Times Seen98066

Size315 B (315 bytes)

MD5a34ac19f4afae63adc5d2f7bc970c07f

SHA1a82190fc530c265aa40a045c21770d967f4767b8

SHA256d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ast/css/main.html HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Thu, 10 Jul 2025 11:21:46 GMT
content-type: text/html; charset=iso-8859-1
server: cloudflare
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YWwMfstTfVpLSnKjSFrL0MgWqxXiUonV5V6luGrrVRyf%2Fsc3xtI3YV7uogC5e2rSTtNWmjEMmVcibM04MkAJx1YK1ytaX%2FKtC2Ov59p3GSNx2Vo6pJQ%3D"}]}
content-encoding: br
cf-ray: 95cfadef0cf156be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/haykaljb/css/bootstrap.mineccb.css

104.21.112.1

200 OK

42 kB

URL GET HTTPS

mysemak.newinfo7-2025.my/haykaljb/css/bootstrap.mineccb.css

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeASCII text, with very long lines (42164)

First Seen2023-04-07

Last Seen2025-08-11

Times Seen59860

Size42 kB (42523 bytes)

MD5c2656e265ef58a9cc9f4b70b15da5fb9

SHA185c5ebdb89d4574d72688c2650d4b84b9b09770a

SHA256f1d083ffaa644c708f11db29707aa57c19246e6d32643b03fee3f82c17b224b3

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /haykaljb/css/bootstrap.mineccb.css HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 10 Jul 2025 11:21:46 GMT
content-type: text/css
server: cloudflare
last-modified: Sun, 02 Mar 2025 05:33:50 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tKx8CuX8QhSroQFJyLF9sE75ptqWBAr9E5sSKFNbgrGYG4OzOHzVj%2BdUHBe3FwR4YruMstbDuu79qz7zpG1LGa4P5hwkYb80XKaiffwITt2ocV1TCvM%3D"}]}
cache-control: max-age=14400
cf-cache-status: MISS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
content-encoding: br
cf-ray: 95cfadef1d2f56be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/code.jquery.com/jquery-3.5.1.min.js

104.21.112.1

404 Not Found

315 B

URL GET HTTPS

mysemak.newinfo7-2025.my/code.jquery.com/jquery-3.5.1.min.js

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeHTML document, ASCII text

First Seen2023-03-07

Last Seen2025-08-11

Times Seen98066

Size315 B (315 bytes)

MD5a34ac19f4afae63adc5d2f7bc970c07f

SHA1a82190fc530c265aa40a045c21770d967f4767b8

SHA256d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /code.jquery.com/jquery-3.5.1.min.js HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Thu, 10 Jul 2025 11:21:46 GMT
content-type: text/html; charset=iso-8859-1
server: cloudflare
cache-control: max-age=14400
cf-cache-status: MISS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gSr64VD60V5Zvdtf4Vdg4cwcTMz%2BRKAeKUU%2BVzMw%2FrFNyA5BfyNg5%2FxorNWUeEjN3NNxG%2FHAgGsQJ9SlmuIgkZ2sAkkksPlrrYJdn5aaCixW0Xh5%2Bgw%3D"}]}
content-encoding: br
cf-ray: 95cfadef0cf756be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/external.html?link=http://telegram.org/img/tgme/pattern.svg?1

104.21.112.1

404 Not Found

315 B

URL GET HTTPS

mysemak.newinfo7-2025.my/external.html?link=http://telegram.org/img/tgme/pattern.svg?1

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeHTML document, ASCII text

First Seen2023-03-07

Last Seen2025-08-11

Times Seen98066

Size315 B (315 bytes)

MD5a34ac19f4afae63adc5d2f7bc970c07f

SHA1a82190fc530c265aa40a045c21770d967f4767b8

SHA256d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /external.html?link=http://telegram.org/img/tgme/pattern.svg?1 HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/haykaljb/css/telegram0116.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 10 Jul 2025 11:21:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OrWfbPew%2BlsabKP2cUc3FIEFv3Gs9iv42kbzE0k22YaZ68ZCjP4LtVouZKjHl9uIgW01YR2HXgdMwaESzyw3BPsRFDs3A8oegeHQ4ZqZHb6LQoqaRJYdDtULMKzWXRJe4dEolnlXwWS7%2B84%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 95cfadf78deeb4ff-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3182&min_rtt=570&rtt_var=2432&sent=135&recv=150&lost=0&retrans=0&sent_bytes=13532&recv_bytes=9582&delivery_rate=448688&ss_exit_cwnd=14919&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=cfc00be135afc811&ts=2329&inflight_dur=38&x=40"

GET telegram.org/img/website_icon.svg?4

149.154.167.99

200 OK

1.9 kB

URL GET HTTPS

telegram.org/img/website_icon.svg?4

IP / ASN

149.154.167.99

#62041 Telegram Messenger Inc

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeSVG Scalable Vector Graphics image

First Seen2023-05-31

Last Seen2025-08-11

Times Seen12098

Size1.9 kB (1896 bytes)

MD502f7553e1ac3129cd1c4d0442b5a0f81

SHA10dd8634450681fe1a2d0c1e5b02d6d0954e2772d

SHA2560019255c610cb0843c524d7995905fa5201651fcc393846bee8414f0610097f5

Certificate Information

IssuerGoDaddy.com, Inc.

Subject*.telegram.org

FingerprintC8:B7:84:85:FF:8F:0B:CA:9A:D6:E7:3E:81:F1:1E:94:39:D1:11:0A

ValiditySat, 10 Aug 2024 13:33:14 GMT - Thu, 11 Sep 2025 13:33:14 GMT

HTTP Headers

GET /img/website_icon.svg?4 HTTP/1.1
Host: telegram.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 10 Jul 2025 11:21:49 GMT
content-type: image/svg+xml
last-modified: Mon, 20 Jul 2020 20:41:37 GMT
etag: W/"5f160181-768"
expires: Mon, 14 Jul 2025 11:21:49 GMT
cache-control: max-age=345600
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/haykaljb/img/apple-touch-icon.png

104.21.112.1

404 Not Found

315 B

URL GET HTTPS

mysemak.newinfo7-2025.my/haykaljb/img/apple-touch-icon.png

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeHTML document, ASCII text

First Seen2023-03-07

Last Seen2025-08-11

Times Seen98066

Size315 B (315 bytes)

MD5a34ac19f4afae63adc5d2f7bc970c07f

SHA1a82190fc530c265aa40a045c21770d967f4767b8

SHA256d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /haykaljb/img/apple-touch-icon.png HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 10 Jul 2025 11:21:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qFN%2BOVP7ze2gGcGmctebI%2BanKP8XF1Pgi2wKa40AmrrnZ4ybVlcirUqWtf5Go8v71F0sDowq1bLs%2F2EbusIRZTG2%2FOER%2BPEaPgNocEcib6HiLoqPdLs0bOlNtMi6NSTKtzj%2FFOS6%2Bov31oI%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 95cfadfabe64b4ff-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2769&min_rtt=570&rtt_var=2113&sent=137&recv=152&lost=0&retrans=0&sent_bytes=14437&recv_bytes=9671&delivery_rate=448688&ss_exit_cwnd=14919&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=cfc00be135afc811&ts=2820&inflight_dur=62&x=40"

GET mysemak.newinfo7-2025.my/

104.21.112.1

200 OK

9.3 kB

URL User Request GET HTTPS

mysemak.newinfo7-2025.my/

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Information

File typeHTML document, Unicode text, UTF-8 text, with very long lines (3560)

First Seen2025-06-14

Last Seen2025-08-06

Times Seen32

Size9.3 kB (9338 bytes)

MD5d448f14b7436d7f9c14507e744e19c8d

SHA13ba786bb7f7015793c9910884a98b539e168f145

SHA256a4bd97234cf7f53fee6e11a5160ba9cabf5bc6a85a46976e942f42bedd070b0a

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 10 Jul 2025 11:21:45 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Pr8qTJ7m5RjevnQO3aOUwtDhcw34PlgNdUC8kUWV2xyuS1sb%2Bk5cfirVZBIupwPX%2FVJPXbzuR75HC3qaflGW7MuZZXonwmVOSHQQ2kYY7Kf6Uv9BdRQ%3D"}]}
content-encoding: br
cf-ray: 95cfade9291556be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/haykaljb/css/telegram0116.css

104.21.112.1

200 OK

116 kB

URL GET HTTPS

mysemak.newinfo7-2025.my/haykaljb/css/telegram0116.css

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeASCII text, with very long lines (1267)

First Seen2023-07-17

Last Seen2025-08-09

Times Seen592

Size116 kB (115583 bytes)

MD5b3fd0030266137eaa8da43673ac0ee92

SHA1a4b03dd5d1166e6d234955b89b7c0fdedb864118

SHA256b9efbe5d820d9076dd1611d0f1cad78fa323bd28ee95a48e6e6f8c366f04afb6

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /haykaljb/css/telegram0116.css HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 10 Jul 2025 11:21:46 GMT
content-type: text/css
server: cloudflare
last-modified: Sun, 02 Mar 2025 05:33:50 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=pDxlK1wYCuIIIPgx%2FEFVhzPgM6f%2BM0MX%2FljugmlY3VR67QC6FaJlaWPQw3bIBWhDbwNte6ZxCrMtyMKkWA1ZoNMDDHDaGC17vsj%2FwGd639vEm15QZf8%3D"}]}
cache-control: max-age=14400
cf-cache-status: MISS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
content-encoding: br
cf-ray: 95cfadef1d3356be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/haykaljb/js/tgwallpaper.mineccb.js

104.21.112.1

200 OK

3.0 kB

URL GET HTTPS

mysemak.newinfo7-2025.my/haykaljb/js/tgwallpaper.mineccb.js

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeASCII text, with very long lines (2979), with no line terminators

First Seen2023-03-07

Last Seen2025-08-11

Times Seen58907

Size3.0 kB (2979 bytes)

MD52b89d34702716a8ad2cc3977718f53a3

SHA104406ebd6a9e2ce79dbac5e5048cfe1384e4574a

SHA2562031e418ee10af8110729b3f327b968462fc0a9d8d1da095387bb472ccd0dee6

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /haykaljb/js/tgwallpaper.mineccb.js HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 10 Jul 2025 11:21:46 GMT
content-type: text/javascript
server: cloudflare
last-modified: Sun, 02 Mar 2025 05:33:50 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Pr5CtsWbsxN34wjAzc0z8jmDU1bTO25bTzoWn1JfyOEhibEngS9iSFsy4nlQD6%2FlNbplQsqHOyNK5UUcvB0SCCJFIkUns46aGJkqBA%2By56vU1Rb63Rw%3D"}]}
cache-control: max-age=14400
cf-cache-status: MISS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
content-encoding: br
cf-ray: 95cfadef1d3556be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/haykaljb/css/watermark.css

104.21.112.1

200 OK

104 B

URL GET HTTPS

mysemak.newinfo7-2025.my/haykaljb/css/watermark.css

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeASCII text

First Seen2023-07-12

Last Seen2025-08-09

Times Seen395

Size104 B (104 bytes)

MD56743b205311bf6f721a390e13de51365

SHA1d45faf34714b36f71333fa0d9bcf624d36d13ac4

SHA2568fd70332a89fc34c404227205d65a96908fdb027d1c4dadedf3acc1411ec6c64

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /haykaljb/css/watermark.css HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 10 Jul 2025 11:21:46 GMT
content-type: text/css
server: cloudflare
last-modified: Sun, 02 Mar 2025 05:33:50 GMT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YOjh2INpqXyvuOpdKKmTLtMd37%2BpB3yaIP8SuzvGJ%2BMApgMYDQ%2BQxBloP6645t6tTTJ5bw5hNxzjSEFRg1Jb6V%2FbUweRgbJyd27gL%2BvXDmA6UAB6rMA%3D"}]}
cache-control: max-age=14400
cf-cache-status: MISS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
content-encoding: br
cf-ray: 95cfadef2d3a56be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET mysemak.newinfo7-2025.my/external.html?link=http://telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2

104.21.112.1

404 Not Found

315 B

URL GET HTTPS

mysemak.newinfo7-2025.my/external.html?link=http://telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://mysemak.newinfo7-2025.my/

Resource Information

File typeHTML document, ASCII text

First Seen2023-03-07

Last Seen2025-08-11

Times Seen98066

Size315 B (315 bytes)

MD5a34ac19f4afae63adc5d2f7bc970c07f

SHA1a82190fc530c265aa40a045c21770d967f4767b8

SHA256d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Certificate Information

IssuerGoogle Trust Services

Subjectnewinfo7-2025.my

Fingerprint2C:64:45:3D:8B:AF:A8:46:1B:40:04:4A:79:A1:42:1B:5B:19:15:68

ValiditySat, 05 Jul 2025 04:53:14 GMT - Fri, 03 Oct 2025 05:25:57 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /external.html?link=http://telegram.org/fonts/Roboto/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: mysemak.newinfo7-2025.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://mysemak.newinfo7-2025.my/haykaljb/css/font-robotoc4ca.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 10 Jul 2025 11:21:48 GMT
content-type: text/html; charset=iso-8859-1
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uc4iJF49kiY0JsF%2BjOCMzadMFx0RvTBCHziHLPfGPWCGxbG9nzJjuIJQwsfLoCEkuWu9jajREQnbnjLGII52hCxGHpFrjcrNgGJLlSFy3WrXd%2BWU63aJp4HyUPk2w5m%2BulIYj40PRuGoASI%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: DYNAMIC
cf-ray: 95cfadf7adf1b4ff-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3403&min_rtt=570&rtt_var=2654&sent=132&recv=149&lost=0&retrans=0&sent_bytes=11527&recv_bytes=9537&delivery_rate=357595&ss_exit_cwnd=14919&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=cfc00be135afc811&ts=2285&inflight_dur=36&x=40"