CONTINUOUS INTERNET TELEMETRY24H DRIFT3,093 material changesacross 2,827 domains · -305 vs yesterdayDNS DRIFT18 domains changed DNS providertop destination cloudflare.com · -9 vs yesterdayEMAIL DRIFT5 domains switched email providertop destination google.com · -1 vs yesterdayCERT DRIFT6 domains switched issuing CA24h · -1 vs yesterdayNOW3,326 curated domains not answering-6,392 vs yesterdayERRORS10,912 responded with an errorlast probe · 5xx / 404 / 429 / 40324H DRIFT3,093 material changesacross 2,827 domains · -305 vs yesterdayDNS DRIFT18 domains changed DNS providertop destination cloudflare.com · -9 vs yesterdayEMAIL DRIFT5 domains switched email providertop destination google.com · -1 vs yesterdayCERT DRIFT6 domains switched issuing CA24h · -1 vs yesterdayNOW3,326 curated domains not answering-6,392 vs yesterdayERRORS10,912 responded with an errorlast probe · 5xx / 404 / 429 / 403

utm.my

Observed 2026-07-13T09:11:18.221Z (11h ago). Every field below was attested with an Ed25519 signature at scan time.

Up right now
Runs onCloudflare
Email byGoogle Workspace
Also usesGoogle Search Console
15 subdomains · tranco_40k
Every line above is a signed observation. Check the math at the bottom of the page.
INFRASTRUCTURE MAPwhat utm.my actually stands on - every host below is a signed observation
utm.my
A / AAAA
161.139.22.123
Cloudflareserves the site
NS
ns3.utm.myns1.utm.my
utm.myanswers its DNS
MX
alt2.aspmx.l.google.comalt3.aspmx.l.google.comaspmx.l.google.comalt4.aspmx.l.google.com+1 more
Google Workspacereceives its email

HTTPS probe

redirect Redirecting (3xx) 308 → https://www.utm.my/
HTTP status308
Servercloudflare
TLS protocolHTTP/2
TLS issuernot observed
Behind Cloudflareyes
Response time1182 ms
DNS resolutionNOERROR
Redirect chain
https://www.utm.my/

Every field above is part of the same signed observation as the records below. Blank means not observed, never "none".

DNS Records

A 1

  • 161.139.22.123

MX 5

  • 5alt2.aspmx.l.google.com
  • 10alt3.aspmx.l.google.com
  • 1aspmx.l.google.com
  • 10alt4.aspmx.l.google.com
  • 5alt1.aspmx.l.google.com

TXT 10

  • v=spf1 ip4:161.139.0.0/16 ip6:2001:df0:41f::/48 include:_spf.google.com include:postmaster.mygovuc.gov.my ~all
  • MS=ms30347168
  • google-site-verification=chhfN_VAU9FhvcEeYYjyJswRGukzALDpdwrzGSThN2A
  • google-site-verification=7PeaxDZrduXJGfy9j3cHL5bcBetmzThBfN8aO0qiYHk
  • snAiakN6Ix8rgBy7jTLOltHMHp+qir236BqCScaHLPY=
  • google-site-verification=zXiq7dfMJajNyg4qhx857lEamCFRM0VTvwOoLHibGOw
  • google-site-verification=RcXy_uRrhwCMuezjJroyyuSEsWCkisOjqvR2zpDHS1U
  • cisco-ci-domain verification=10d9c1d4b99291ea8fc349efd6af9b8a9638430a17857cb8f3124132ab3c62db
  • v=DMARC1; p=quarantine; sp=none; rua=mailto:dmarc-report@utm.my!10m; rf=afrf; pct=100; ri=86400
  • v=DKIM1; (detected)

NS 2

  • ns3.utm.my
  • ns1.utm.my

SOA 1

  • ns3.utm.my root.utm.my

TLS Certificates (0)

None.

Subdomains (15)

The proof

Signed at scan time. Check the math yourself. Every line above is part of one signed observation. Re-hash it and check the Ed25519 signature in your own browser; nothing leaves your machine.

Verify this receipt

Put the receipt on your own site. A live badge showing what DomainDrift observes and signs for utm.my. It updates itself. It attests a signed observation - not that the site is safe.

DomainDrift signed-observation badge for utm.my <a href="https://domaindrift.io/t/utm.my"> <img src="https://domaindrift.io/badge/utm.my.svg" width="300" height="64" alt="DomainDrift signed observations for utm.my"> </a>

Ed25519 Receipt

Receipt ID
c5411228-dc21-4025-b4b8-cd68e4ce6320
Output Hash
7910e3b0614b46909915a315e752a7ddca50f3c741eeca36d10808e12bff84ad
Signature
ed25519:c691eaf1c89d494d3875be9b11d2347bd31b0b93744019b991e845317f6f4d4364d359b0fbcaa7ff61cf44348aff4328dba7664b47e882eb681468a650c73203
Public Key
ed25519:d610d74ef18f683e5beb859d241d5e67dff0c122e8928b06bec1c2476f4ba27b
Parent
(genesis)
Plane
fast
Verify this in your browser