MalwareTips
SAFE

No threats detected

All checks passed. This site appears legitimate — but always stay alert for phishing even on trusted domains.

Security Review

Is fp.bpjs-kesehatan.go.id legit or a scam?

Our verdict:Safe· 90/100

Official Indonesian government health insurance API subdomain for biometric fingerprint validation; 890 days old, clean reputation, no fraud indicators.

Why we trust it
Official subdomain of BPJS Kesehatan, Indonesia's government health insurance agency.Domain age of 890 days aligns with the JKN biometric transformation program timeline.Explicitly documented in multiple official installation manuals and hospital software guides as the required webservice URL.
fp.bpjs-kesehatan.go.idScanned 1h ago
Post Facebook
0
Trust score
SAFE
Heuristics 95·MT 88
Category tags
governmenthealth insuranceapi service95% MT confidence
View density

Analysis Summary

Threat Intelligence
0/91
All engines report clean
Domain Age
2 years old
Registered Dec 30, 2023
MT Intelligence
Safe
Low likelihood · 95% confidence

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Low scam likelihoodengineMT · Guardiantrust88/100
MT AgentLive web researchVisual inspection
0%
Confidence
fp.bpjs-kesehatan.go.id is a confirmed subdomain of bpjs-kesehatan.go.id, the official website of BPJS Kesehatan (Indonesia's national health insurance body). Our research found the endpoint /finger-rest explicitly documented in multiple official installation manuals, hospital software guides, and GitHub repositories as the required webservice URL for fingerprint biometric registration within the JKN (Jaminan Kesehatan Nasional) program. The domain is 890 days old, hosted on a clean IP with zero abuse reports, and carries zero detections from our antivirus network. No scam reports, complaints, or negative mentions appear in any search results. The page returns a 503 error or JavaScript-required message, which is consistent with it being a backend API rather than a public-facing website — this is expected behaviour for an internal government webservice.
Full dossier
Analysis complete

Page Content

The page returns a 503 error or 'JavaScript must be enabled' message. This is expected for a backend API endpoint rather than a public-facing website. The /finger-rest path is documented in official BPJS Kesehatan biometric software manuals as the webservice URL for fingerprint validation.

Infrastructure

Hosted on IP 160.25.179.72 with zero abuse reports and a clean reputation score. SSL certificate status unavailable, but the domain is a government subdomain under the official .go.id registry. No redirects, no homoglyph tricks, no cross-domain behaviour detected.

Domain History

Registered 890 days ago under PANDI Registrar (Indonesia's official domain registry). Age aligns with BPJS Kesehatan's ongoing biometric transformation program for JKN participants. WHOIS privacy is not enabled, consistent with official government transparency.

Web Reputation

Zero detections from our antivirus network (0/91 engines). Clean browser blocklists. No scam reports, complaints, or negative mentions found in any search. Multiple official PDF manuals and GitHub repositories confirm this subdomain as the legitimate webservice endpoint for fingerprint biometric registration.

Positive Signals
5
  • Official subdomain of BPJS Kesehatan, Indonesia's government health insurance agency.
  • Domain age of 890 days aligns with the JKN biometric transformation program timeline.
  • Explicitly documented in multiple official installation manuals and hospital software guides as the required webservice URL.
  • Hosting IP has zero abuse reports and clean reputation.
  • Zero detections from our antivirus network and clean browser blocklists.
AI Recommendation
This is a safe, official government webservice. If you are a hospital or healthcare provider implementing BPJS Kesehatan biometric registration, this is the correct endpoint to use. Do not enter personal payment information on this page — it is a backend API, not a public portal.
Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of fp.bpjs-kesehatan.go.id
LIVE RENDER
fp.bpjs-kesehatan.go.id

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for fp.bpjs-kesehatan.go.id, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
2.4 yrs
Registered Dec 2023
Business registration
Active · Indonesia
Site traces back to an actively registered business.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
No scam reports found
No complaints, no negative coverage turned up in our sweep.
Key findings
7 headline facts from open-web research
  • fp.bpjs-kesehatan.go.id is a subdomain of the official Indonesian government health insurance agency BPJS Kesehatan (bpjs-kesehatan.go.id).
  • The endpoint /finger-rest is repeatedly referenced in official installation guides, hospital software (Anjungan Mandiri/SEP), and GitHub repos as the webservice URL for fingerprint (sidik jari) biometric registration and validation in BPJS
  • Multiple PDF manuals (Scribd, PDFCoffee) for "Aplikasi Sidik Jari BPJS Kesehatan" and hospital implementations explicitly list https://fp.bpjs-kesehatan.go.id/finger-rest as the required Web Service URL.
  • The page itself returns a "JavaScript must be enabled" message or 503 error, consistent with it being a backend API/webservice rather than a public-facing site.
  • BPJS Kesehatan maintains multiple official subdomains (web.bpjs-kesehatan.go.id for login, aman jkn, data.bpjs-kesehatan.go.id, etc.) and actively warns about impersonation scams, but no reports link this specific subdomain to fraud.
  • Domain age of 890 days aligns with ongoing biometric transformation program for JKN (Jaminan Kesehatan Nasional) participants.
  • No scam reports, complaints, or negative mentions found in searches for the exact domain combined with scam/penipuan/phishing terms.
Business registration
Status: active · Indonesia

Subdomain of official government agency BPJS Kesehatan (Badan Penyelenggara Jaminan Sosial Kesehatan)

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

We searched scam-report databases, consumer-review sites, and general web sources for fp.bpjs-kesehatan.go.id and found zero scam reports or complaints. Our research confirmed that this subdomain is explicitly documented in official BPJS Kesehatan installation manuals, hospital software guides, and GitHub repositories as the required webservice URL for fingerprint (sidik jari) biometric registration and validation within Indonesia's JKN health insurance program. No negative mentions or fraud indicators were found.

Antivirus Engines

Clean pass · verified
Clean across 91 engines

We cross-check every URL against our antivirus network of 91 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious58Harmless91Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Domain & Encryption

Domain History
Age2 years old
RegistrarPANDI Registrar
RegisteredDec 30, 2023
ExpiresUnknown
Owner privacyVisible
Hosting & Technology
HostingBPJS KESEHATAN
Server locationID

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPBPJS KESEHATAN
Usage typeCommercial

Still, stay alert

No major threat indicators — but a clean scan does not guarantee every page is safe, and phishing emails routinely spoof real domains.

  • Double-check the exact URL in your address bar

    Confirm you are actually on fp.bpjs-kesehatan.go.id and not a lookalike like f-p.bpjs-kesehatan.go.id.com or an IDN homoglyph.

  • Use a password manager

    Password managers only auto-fill on the exact domain they were saved for — they refuse to fill lookalike domains, which is the single best phishing defence.

  • Discuss this site on the forum

    If you have first-hand experience with this site — good or bad — share it with the MalwareTips community.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered from the scan data on this page. These are auto-generated — not hand-written — so they always match the underlying report.

  • Our automated security review found no threat indicators on fp.bpjs-kesehatan.go.id. The site appears legitimate based on the signals we checked, but always stay alert for phishing emails that spoof real domains.

Final Verdict

0
Trust / 100
Final Verdict·fp.bpjs-kesehatan.go.id
SAFE

This is a legitimate subdomain of Indonesia's official BPJS Kesehatan government health insurance agency, used as a backend webservice for biometric fingerprint registration. No scam reports or complaints exist.

This is a safe, official government webservice. If you are a hospital or healthcare provider implementing BPJS Kesehatan biometric registration, this is the correct endpoint to use. Do not enter personal payment information on this page — it is a backend API, not a public portal.

AV engines
91
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Safe reports

Browse all reports
Safetrust84
sbjv.rdrive.io
17m ago
Read the review
Safetrust81
marshadgill.com
17m ago
Read the review
Safetrust69
aivorins.github.io
24m ago
Read the review
Safetrust89
changehabitsofthought.quora.com
1h ago
Read the review
Safetrust82
afrikanweddingfair.fi
1h ago
Read the review
Safetrust86
shivshaktimachtech.com
1h ago
Read the review
Safetrust82
sexyaporno.com
2h ago
Read the review
Safetrust86
justblinkcastg.wpengine.com
2h ago
Read the review
Safetrust86
electricwheelchair.com.my
3h ago
Read the review
Safetrust85
ibshospitals.com
3h ago
Read the review
Safetrust89
hassans.com
3h ago
Read the review
Safetrust86
m.happymh.com
3h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.