| mail.tevashoesindonesia.com/ | 196.196.152.109 | | 243 B |
URL User Request GET mail.tevashoesindonesia.com/ IP196.196.152.109:0 ASN#58065 Orion Network Limited
File typeHTML document, ASCII text Hash36b52ba3b6623a49f5954440fc6b0d38 25505b5beb1f0b85978bc7c78871757c5e7ba9bb 0e0433265f2e8b45cf9282fe01f8267442c8f207ca536e82f6eedfa68ab60c21
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: mail.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Location: https://www.tevashoesindonesia.com/
Content-Length: 243
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| www.tevashoesindonesia.com/ | 196.196.152.109 | 200 OK | 48 kB |
URL User Request GET HTTP/1.1www.tevashoesindonesia.com/ IP196.196.152.109:443 ASN#58065 Orion Network Limited
CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4739), with CRLF, LF line terminators Hashf69c22c4217efc67301c3c5713c154d8 fb61a71b4a0120405603d37257f2ae2796f7e62e c58315341b80b26b1231d080a6c1e87164904b41da57a9e1e46a22f87440abfb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Set-Cookie: cookie_test=please_accept_for_session; expires=Sat, 18-May-2024 10:51:55 GMT; Max-Age=2592000; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/style.css | 196.196.152.109 | 200 OK | 25 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/style.css IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeASCII text, with very long lines (1470) Hash0269f25a408028ad7d1fa88f3fc07c32 bdf70b66b3a9a09ed1b009ccd694b89574646d9c 4225c3ed92bfc238dee21c99754cc70c6be9605fd4613f706c9ea927b00606d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/css/style.css HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 24572
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet1.css | 196.196.152.109 | 200 OK | 18 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet1.css IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeASCII text, with very long lines (876) Hash65356c76905c2bcc499a15f61b455acc b01b31d5b63b2a81c6718f60767aaef87fdc22af 09e75cd6aa3157fc83e8770b48e67412e29ec68c8212020e0698821d7e763aba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/css/stylesheet1.css HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 17947
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_slick.css | 196.196.152.109 | 200 OK | 4.2 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_slick.css IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeASCII text, with CRLF line terminators Hash4a136f0086c9b81460944cd83a1f5ea5 9bbec22c164bbdf1c9d64129ff9058c2ca057c3b 7b8fd7515477516008eafc3d716102e05ec7c2b1495dc0fd9aea87be40f4465b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/css/stylesheet_slick.css HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 4154
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_header_menu.css | 196.196.152.109 | 200 OK | 3.7 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_header_menu.css IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeASCII text, with CRLF line terminators Hash036a5a54d5c9139c1e511b61279ad6c7 cc19372d54ee0660cb632f6d5dd59583143215e4 a3a21e87b530cf3630de457e69db791e775b56892634796ff011faacef2c98cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/css/stylesheet_header_menu.css HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 3705
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_categories_menu.css | 196.196.152.109 | 200 OK | 2.3 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_categories_menu.css IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
Hash77ac4aa1fc1b80426aa7ad8033dcb40c fa30830acbbe5458aa445be97ecd00be2e1d60fa 93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/css/stylesheet_categories_menu.css HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_jquery.mmenu.all.css | 196.196.152.109 | 200 OK | 11 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_jquery.mmenu.all.css IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
Hashe2eb2f35cf8f984d3f5f03df844b336e 763043a9a6ca87e841eb2c4e037f7359b66097b8 af696727609018b4e408eaf3c67d3f4b8e4185163ca22cbe64b13405edbfdc7a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/css/stylesheet_jquery.mmenu.all.css HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 10914
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_lightbox.css | 196.196.152.109 | 200 OK | 2.4 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_lightbox.css IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeASCII text, with CRLF line terminators Hash4156c4f3b3e8eb75b3f0ffc31b9b3c48 d2e2362789756890af0cd16178e7dc00b66a2032 9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/css/stylesheet_lightbox.css HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_1.11.1.min.js | 196.196.152.109 | 200 OK | 86 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_1.11.1.min.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with very long lines (32069) Hash93c4b563622d278b1065690a3d93709e f00d128cf399f17322b1d4ee02fa8cd892e081bd 601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 85588
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_jquery_kinSlideshow.js | 196.196.152.109 | 200 OK | 9.7 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_jquery_kinSlideshow.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ISO-8859 text, with very long lines (8513), with CRLF line terminators Hash08a763acea723e1d88cbce2f1c9b3317 ea20687e4f773bf67907b0edb029ebafbc110fc1 c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_slick.js | 196.196.152.109 | 200 OK | 89 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_slick.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text Hash5f8f4aed010e1afe499184d8197309f9 097f6a1b4f115e9b6ebefa70d76d830733bcc9ba 0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/jscript/jscript_slick.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 88955
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_lightbox.js | 196.196.152.109 | 200 OK | 20 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_lightbox.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ISO-8859 text, with very long lines (797), with CRLF line terminators Hash3d79a6c53803295ef00c052546d76500 f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc 93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/jscript/jscript_lightbox.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_all.css | 196.196.152.109 | 200 OK | 122 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_all.css IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeASCII text, with CRLF line terminators Size122 kB (122365 bytes) Hash4baf06ea99414e45047b6b879f69cbd2 e9db63ffe9f6586ecccca5f661b731bcb21ea46d f7fd679a5e8329b5e9a4fe6a6f5527d12963d8c6eaa2ece6d4409ee24623c765
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/css/stylesheet_all.css HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 122365
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_jquery.js | 196.196.152.109 | 200 OK | 86 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_jquery.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65168) Hashe85aed5c30d734f1e30646e030d7a817 b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad 8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/jscript/jscript_jquery.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/jquery.mmenu.min.all.js | 196.196.152.109 | 200 OK | 39 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/jquery.mmenu.min.all.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with very long lines (401) Hash5b2edbe2f95659b625a0b919ebf98286 1c5722696e849953fccdf41e0f0a01e3f37a80da a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/modernizr.custom.js | 196.196.152.109 | 200 OK | 7.7 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/modernizr.custom.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with very long lines (7558) Hash02009db489ef4805210aafa21a6b8276 d3c333feb80a2e4045a6a353838171aaee6b878d 0cdb507e0527a90fb5b98b238843f6d2be8ded6d71f40458ff8e75b731405cad
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/modernizr.custom.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 7671
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/classie.js | 196.196.152.109 | 200 OK | 1.8 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/classie.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text Hasha9df1cfb76ce492afd9d13f3320272fd 782b9564f015a2ec7bdf9c89e238fab9b44bd587 717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/classie.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 1835
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/uisearch.js | 196.196.152.109 | 200 OK | 6.0 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/uisearch.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with very long lines (2051), with CRLF line terminators Hash028b2e146eff5f378e21e7fe48131468 af6b54a64da88204e2d2c527c1a941dc17e790e3 86f2854513305e334b86057c752cf3821b72156d1f6aa0fd8132c57bec74d285
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/uisearch.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 6033
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_2.2.0.min.js | 196.196.152.109 | 200 OK | 143 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/jscript/jscript_2.2.0.min.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (522) Size143 kB (142713 bytes) Hash674b896ffae27a70571b1fc5bd65919d 63c8c73c7e5ba15aa940aba8f1c43b6150a9f941 a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/jscript/jscript_2.2.0.min.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 142713
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/jquery-1.7.2.min.js | 196.196.152.109 | 200 OK | 158 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/jquery-1.7.2.min.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with very long lines (749) Size158 kB (157648 bytes) Hash6f3d61313966fcd43b0334aa5fad66b9 22b2b120da5b405a348e4abdd865c496625d87ab f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:55 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/js/layer.js | 196.196.152.109 | 200 OK | 38 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/js/layer.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with very long lines (984) Hashf679a433cba7ebde1bbe121fffd8c60c 4d2159e06a5e80328e0ba9554e02fb2422ed0b36 60c2f96124f2970788057614a90229fe470b13f5420e5794d90d73c9e08ce2f0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/js/layer.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 37747
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/js/re_login.js | 196.196.152.109 | 200 OK | 11 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/js/re_login.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with CRLF line terminators Hash7bd679d5c675a092b612e5b4b7a56dbd 6e62d5cf6e15493d5d34173348f255dfe6e9dac5 ca6d5aa9dc260b677698d2eebce1167f1beee6d848768c476b7d7ba25fbadb28
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/js/re_login.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 10927
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/swiper.min.js | 196.196.152.109 | 200 OK | 96 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/swiper.min.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with very long lines (31999) Hash4945be5f0a07cb3f0970023969a9adb3 36bd0298e6e6c099c4fc7679d2e9225b280d8b4b 7ced2a234a4545ea6d85be94375f586f36dd0182b99ec3568abc5eea2b176213
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/swiper.min.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 96300
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/slick.js | 196.196.152.109 | 200 OK | 87 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/slick.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text Hashb56bbf351b271132a8fdab2ed21c82ab 8274eb6924ead2f5d8616fd162ef24bebd3c0b21 c37611fa51880e07f6a12795e03e5cd3eb4699b82f69be67036f735ffb5ecb60
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/slick.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 87046
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/slick_new.js | 196.196.152.109 | 200 OK | 1.9 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/slick_new.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeASCII text, with CRLF line terminators Hash37192079541f105b380c4d17cb5b1a45 4cf67b7d006b630a2e063acb52740d1b8cfa08c4 faffeb52bd73185450a0e8bad135ac6209a599c01d2247636e29fe4d640557cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/slick_new.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 1859
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/jquery.jxa.js | 196.196.152.109 | 200 OK | 2.7 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/jquery.jxa.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashca643ec9e974f881e4c904db35bc40c7 759df5ef14b4e2c0c46770b5e408f600972294ca a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.jxa.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/js/jquery.jxb.js | 196.196.152.109 | 200 OK | 158 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/jquery.jxb.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with very long lines (749) Size158 kB (157648 bytes) Hash6f3d61313966fcd43b0334aa5fad66b9 22b2b120da5b405a348e4abdd865c496625d87ab f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.jxb.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Brown_-5229419.jpg | 196.196.152.109 | 200 OK | 210 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Brown_-5229419.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=576, bps=0, orientation=upper-left, width=1110], baseline, precision 8, 950x950, components 3 Size210 kB (210097 bytes) Hash85e0ebcec879c88191b9f20e9ff54c89 ea1e345ff0edef7f88b8ba58880d4b229ab5b2ac 6d279f07c9709fa55810b3f333d8a6daa39d48f704f28e9d8cc1392474ee3db8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Original_Universal_Sandals_Brown_-5229419.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 210097
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Black_1046-1046154.jpg | 196.196.152.109 | 200 OK | 157 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Black_1046-1046154.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 950x950, components 3 Size157 kB (157394 bytes) Hashfe4ca6d24d0f512eb3efb1cb51e33874 3831ddb0008e78e323631c937a2b4c527b2a5d3f c90d61f502a01dd64740f99b18f89f2029703d84d4988259fdfc7931b6b84b2e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Black_1046-1046154.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 157394
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Multicol-4590270.jpg | 196.196.152.109 | 200 OK | 202 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Multicol-4590270.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=553, bps=0, orientation=upper-left, width=1110], baseline, precision 8, 950x950, components 3 Size202 kB (201459 bytes) Hash42fc648d3ea35f91174946b7ed608e4a 4f3c71a242773d8602109c9613913c13b8ee3ec3 53d9fedd2af9c40ee3e9f4c89a0d999c05b898e69b12c15bc5f95415e5ad6bd7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Original_Universal_Sandals_Multicol-4590270.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 201459
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Black_-2251124.jpg | 196.196.152.109 | 200 OK | 202 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Black_-2251124.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=540, bps=0, orientation=upper-left, width=1110], baseline, precision 8, 950x950, components 3 Size202 kB (201727 bytes) Hashc361cf20387d6e6cbe7ce37fa4dce43b 3c12ae49daa86e5561acf3d8a0e5c1e2188ac443 dc37167c50e3540194ef47d4d6ea2cf0af79898039f5e2bfe6a0cbc8ae9fe3b6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Original_Universal_Sandals_Black_-2251124.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 201727
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241500223590.jpg | 196.196.152.109 | 200 OK | 123 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241500223590.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 970x676, components 3 Size123 kB (123232 bytes) Hashb7eb148f5c9066c53aa00dba72898d82 fea02033cecf7175e50116e741c5e7998d569740 10bb8c0aada420491109b4c983a03059678fa5d8c4bb26ce009dcb72893a33cd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241500223590.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 123232
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Midform_Universal_Platform_Sandals_-4146424.jpg | 196.196.152.109 | 200 OK | 223 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Midform_Universal_Platform_Sandals_-4146424.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=595, bps=0, orientation=upper-left, width=1110], baseline, precision 8, 950x950, components 3 Size223 kB (222929 bytes) Hashe97b3fe7a24a82a782f09ed637fb50e7 c4ac8e841af22c144f5ed07d1fdbe5fe607bddf6 06f326dc1f17b3ce8e6f010a16391f843d809451d8441d47f3bcaf4d1f1c7999
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Midform_Universal_Platform_Sandals_-4146424.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 222929
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Universal_Sandals_Multicolor_9540-9540605.jpg | 196.196.152.109 | 200 OK | 197 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Universal_Sandals_Multicolor_9540-9540605.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 950x950, components 3 Size197 kB (197337 bytes) Hash48541db66cba2653a245680c13ecfc9d 2860a1dc274a30af8e4696f487ce5cec4e1c742d 5575d5efe1b3511be9ad57de3b6db4a91cadcb9fb59b496f1179d2f33c6471ce
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Universal_Sandals_Multicolor_9540-9540605.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 197337
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Multicol-6505049.jpg | 196.196.152.109 | 200 OK | 162 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Multicol-6505049.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=510, bps=0, orientation=upper-left, width=1110], baseline, precision 8, 950x950, components 3 Size162 kB (161661 bytes) Hashd5c8467fb162f321d8300f3138a35aed 2aa48839727da3140f5263b2af08cc9cd33c07db 55f176569f365f3044cabc7c4d7726ca43c02c726e9284261064deacdbd98db1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Original_Universal_Sandals_Multicol-6505049.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 161661
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241501037284.jpg | 196.196.152.109 | 200 OK | 46 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241501037284.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1110x602, components 3 Hashf00ba66f9ecf535ce5c087f4e81a8f8a b25e2059b071e4bd80a1b1f0f6190d946df86e3e 62e5ffc7e8ebd9afe7542f24e67947086157485482352387f44177bb64c0859c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241501037284.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 46421
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241500221847.jpg | 196.196.152.109 | 200 OK | 217 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241500221847.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.0 (Macintosh), datetime=2022:07:08 00:32:51], baseline, precision 8, 970x676, components 3 Size217 kB (216624 bytes) Hash397592872e9199b8436a6934f4ddf109 ab9c3cc042dfc2e6ff0010c123a6ce0609a8163b 13f290556be13664f8467ed893c999f40fadda9992817820960d02aa8c32aa64
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241500221847.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 216624
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241437444141.png | 196.196.152.109 | 200 OK | 9.3 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241437444141.png IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typePNG image data, 200 x 111, 8-bit/color RGBA, non-interlaced Hashad41ab9fcb44207df4e948669fd7a417 e08a04f5df47fc510cfc55c30a740dad364ffad4 224dee010bc1390e6e640dc685f5473a529528c39bf843bcc0da50f3a841d968
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241437444141.png HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 9346
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Multicolor_-4281536.jpg | 196.196.152.109 | 200 OK | 189 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Multicolor_-4281536.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 950x950, components 3 Size189 kB (189384 bytes) Hash2307d9a3c57b11c849ad03c2c09ae28c 08078808f691eddc51ca86a81e9af555781052f5 63575cb8c52adedea29fefdbfe16c9dfd0f886eb90dbe9993fdb59bf89853ea6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Multicolor_-4281536.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 189384
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241500221126.jpg | 196.196.152.109 | 200 OK | 106 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241500221126.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 970x676, components 3 Size106 kB (105632 bytes) Hash7d4fcf4f25678a53da3cc5962d48541e 89fef8f96ecaeca2f3113a8b21f055faeb6f599b d9d82272f350829517c807b37ff4b1717b974df215a67ecf3884ced80b337404
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241500221126.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 105632
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241501039980.jpg | 196.196.152.109 | 200 OK | 563 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241501039980.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typePNG image data, 1110 x 602, 8-bit/color RGB, non-interlaced Size563 kB (563274 bytes) Hashc0f4630a45c3790dba1127b2e05ab537 732ad7cc2f02943020d55692e75e39ac32716b7c ce3ec942d9a9d62c9f4d39b62602ac1dcb464011c9bd90b11aa6a44334f0750b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241501039980.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 563274
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/js/jquery-1.7.2.min.js | 196.196.152.109 | 200 OK | 158 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/js/jquery-1.7.2.min.js IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJavaScript source, ASCII text, with very long lines (749) Size158 kB (157648 bytes) Hash6f3d61313966fcd43b0334aa5fad66b9 22b2b120da5b405a348e4abdd865c496625d87ab f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241500225579.jpg | 196.196.152.109 | 200 OK | 427 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241500225579.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 970x676, components 3 Size427 kB (427444 bytes) Hashe0471cd93557de0a9a8a68bd16402b6c 1689b4bd38dfc6e8531f6541fca63084747f8c88 53c0a963ef5fd36d39b5cf11200dc9544dd4f603bf1a4efce205bbfa703f6dab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241500225579.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 427444
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241500223478.jpg | 196.196.152.109 | 200 OK | 301 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241500223478.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.0 (Macintosh), datetime=2022:06:09 17:34:56], baseline, precision 8, 970x676, components 3 Size301 kB (300685 bytes) Hashaf8fd7226d926f00c6879fa6b01f8ef4 62071ce97703bc079b99019f3a0619de6f473ce2 7bd56e8d7d4bd1eaf9c012edc2b98aad78dd8e27085739a8843dd68513518f01
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241500223478.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 300685
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241518488041.jpg | 196.196.152.109 | 200 OK | 108 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241518488041.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x753, components 3 Size108 kB (107726 bytes) Hashfaece93d442d90577cda68608358884a 8ae459a642c19d90306a5e695b4bbb0376179a18 5e2a66e53273808c55d35093b7a015f9858591144c834816876cc8c61f5695cb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241518488041.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 107726
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241501575178.jpg | 196.196.152.109 | 200 OK | 246 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241501575178.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typePNG image data, 1110 x 602, 8-bit/color RGB, non-interlaced Size246 kB (245484 bytes) Hash4e860095094df881c3423f49f3815fbe 98da8bb582cdce3300ff8d22cb987279353acff2 cce479a67388de6909872dd001de28a426f82fb791e0b4bc59ea570640a4fdd5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241501575178.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 245484
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241501037226.jpg | 196.196.152.109 | 200 OK | 149 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241501037226.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1110x602, components 3 Size149 kB (149261 bytes) Hash0cfe78c5c1a0dc800f04bcfffa5f78de 6345e5ab861741930ef0fedbd7d3f53171ca4431 7130697af2b4f901de3109f61553ed77dd4bd9ff5b97ca9e77ceed70a0f745b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241501037226.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 149261
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/images/flag/IDN.png | 196.196.152.109 | 200 OK | 176 B |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/images/flag/IDN.png IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typePNG image data, 27 x 17, 8-bit/color RGB, non-interlaced Hashe211d38f1348e5194ee056a1cca357f6 bb7c775ade9d3ba907348a7583e4a1a9cb662a5b 7cea734039221cf9de89435212f8fb69d8458376bba58fd6049c9466f59b825d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/images/flag/IDN.png HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 176
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/js/theme/default/layer.css?v=3.5.0 | 196.196.152.109 | 200 OK | 17 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/js/theme/default/layer.css?v=3.5.0 IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeASCII text, with CRLF line terminators Hash94ae7c3e6834f7e25a85ff97c2d9cd88 953ea6a358fdbd59f99eef88c93f467a749d27e4 38d12ae4119d3c7ae42cf9ffb240d53b351716c8f44ae4b1acb0f4c15b003eb9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/js/theme/default/layer.css?v=3.5.0 HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 17360
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Orange_-4383354.jpg | 196.196.152.109 | 200 OK | 193 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Original_Universal_Sandals_Orange_-4383354.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=547, bps=0, orientation=upper-left, width=1110], baseline, precision 8, 950x950, components 3 Size193 kB (193333 bytes) Hashc373e73ab5feb0b0d085a3ec18422bfb f78e8c8ac09e1de088bb21d0fab1b8322930a5cd b536630ef95934a690e1aa525b3af795448c3cc2e4fca55336d8f42d55c7c337
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Original_Universal_Sandals_Orange_-4383354.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 193333
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241501574025.jpg | 196.196.152.109 | 200 OK | 486 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241501574025.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typePNG image data, 1110 x 602, 8-bit/color RGB, non-interlaced Size486 kB (486105 bytes) Hash446a4240e6b904652ac557660e76a091 229986cd32eca82f185bbb4be5e3b2e90e056d54 9c49e78293a33a381d76802ad2f6f9b2b55952d4a926156479c276c5b1ca076c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241501574025.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 486105
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Multicolor_-1151011.jpg | 196.196.152.109 | 200 OK | 197 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Multicolor_-1151011.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 950x950, components 3 Size197 kB (196856 bytes) Hash4cf69c91d1c9478f70b8d6b89f647445 6eeec8ac6d7094e7d615c3c069deff7bbbf59ea1 6b68659f2acd16b89625d3d0644cad0d797d0d0ee57212695ecc9fdf373f633d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Multicolor_-1151011.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 196856
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Blue_30364-3036470.jpg | 196.196.152.109 | 200 OK | 182 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Blue_30364-3036470.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 950x950, components 3 Size182 kB (182240 bytes) Hash218041140274ed3540481cfc20f7f505 230a4e46b8b861d39d89ff561e5a08272228696b 20983b37e84b46a5f7ca9b8d6a1107de86f261463d4b4d5dd2e04dae458c6953
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Blue_30364-3036470.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 182240
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Universal_Sandals_Black_8778089-8778089.jpg | 196.196.152.109 | 200 OK | 202 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Universal_Sandals_Black_8778089-8778089.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 950x950, components 3 Size202 kB (202312 bytes) Hash836885d60748ecf30f5cf2fbf15d65fb ce76e74a8460959ed0db3300b6c492e19ffb144c a6158c03e72a036748d41d2925270ae4b20532a3772b03eb429c0b625e42b5ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Universal_Sandals_Black_8778089-8778089.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 202312
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Strata_Universal_Sandals_Black_23-2397007.jpg | 196.196.152.109 | 200 OK | 161 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Strata_Universal_Sandals_Black_23-2397007.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 950x950, components 3 Size161 kB (160654 bytes) Hash633914e22bf5473b94033c2f0f0fda9e 3791e91c8946c25fb13e2dab305a7a526637f2fd 63c3b422c348b05e163ebe30ad86c1e8a34e55006b85050c6523d21a5357aaf9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Strata_Universal_Sandals_Black_23-2397007.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 160654
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Black_3256-3256279.jpg | 196.196.152.109 | 200 OK | 144 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Black_3256-3256279.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=525, bps=0, orientation=upper-left, width=1110], baseline, precision 8, 950x950, components 3 Size144 kB (143481 bytes) Hash4327d750931bd5610b5f9803e2459577 6463b20991218176f31e8c34b2c901cc381459b7 b09571027012ade2f7a88b9dd7ed579e9648c6b9adc5aa1937f47ddee66c97a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Black_3256-3256279.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 143481
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_Drift_Sandals_Yellow_57-5726210.jpg | 196.196.152.109 | 200 OK | 166 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_Drift_Sandals_Yellow_57-5726210.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=527, bps=0, orientation=upper-left, width=1110], baseline, precision 8, 950x950, components 3 Size166 kB (166462 bytes) Hash03792bc6c43393431a45a89ceee4fefb c69b083d1c0bb3f9804a4311d520bd6f1ac18aaf ecd426b38a04d1956fe0049a6437aa72a69c41201084cde96dceeec93d2713c2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Hurricane_Drift_Sandals_Yellow_57-5726210.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 166462
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Khaki_3015-3015258.jpg | 196.196.152.109 | 200 OK | 185 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Khaki_3015-3015258.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=549, bps=0, orientation=upper-left, width=1110], baseline, precision 8, 950x950, components 3 Size185 kB (185433 bytes) Hash655cf50cf0b2babc898835d317cc93a5 9bfa12db76ce1cac8d4cd0eb904c5374648e204c ae3aec6b13e6f2af7bc9bf30dfba505a7221d7af994dbed7d77aebefc855f902
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Khaki_3015-3015258.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:57 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 185433
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Dark_Olive_-6832937.jpg | 196.196.152.109 | 200 OK | 171 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Dark_Olive_-6832937.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 950x950, components 3 Size171 kB (171346 bytes) Hashce8fca34331894b2c3017d1b5e6e1053 6566b88d979da0a812e04bafddafeb37c9fa0a16 dccde0d4ae6dd490770aac91cd0bf5b7fc98f5be5a86eab0e0b35a3357f9715f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Dark_Olive_-6832937.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 171346
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241530125907.jpg | 196.196.152.109 | 200 OK | 103 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241530125907.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x400, components 3 Size103 kB (103353 bytes) Hash7d069c61d6f85b51910ede137a98cfda b5881b927b081cd7a46cb743a9e3642eb864f602 1091a21a95a74ea57d7b0f8c44dcfbf19d7741bfb2877555f2f71982d3e12c32
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241530125907.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:57 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 103353
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241530127720.jpg | 196.196.152.109 | 200 OK | 110 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241530127720.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x753, components 3 Size110 kB (109917 bytes) Hash809618f8f2bc50643744c9e44a709910 744ff39552f1cc644c2457d962c03e5a2baeb047 1dfdf103aa8619443e12e2cda444498fab623154f9a587f09c9223e91fa39814
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241530127720.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:57 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 109917
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241530128487.jpg | 196.196.152.109 | 200 OK | 110 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241530128487.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x753, components 3 Size110 kB (110482 bytes) Hash895c85eeeec3267c9946d8a86123668d bd8d33bb6994c701e59b41cfd5312aadb6e686f7 88075a9900fafd1d9fadc5c04e29f3340f3b2ace7bb0f3f500794a640e661fcb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241530128487.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:57 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 110482
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/api/country | 196.196.152.109 | 200 OK | 110 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/api/country IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
Size110 kB (109934 bytes) Hashae0e7f83820fe847b51136f02bbebd2c 10ac6898e8769c95c44c1f2d155c7c09ae5ae605 9d9dd96b599b95645f9bef69d00d3badd6e731da86acad6833a600bb86569a3a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/country HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: cookie_test=please_accept_for_session; expires=Sat, 18-May-2024 10:51:56 GMT; Max-Age=2592000; path=/
zenid=orkgqs926h4ojmo70untd2c3i1; path=/; HttpOnly
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json
|
|
| www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Orange_751-7513711.jpg | 196.196.152.109 | 200 OK | 4.5 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Orange_751-7513711.jpg IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash586d30303e8eba15d24b9bd84e2c7d64 750bc3a7f49915d55b67e6e0bf33fb902c9e70ce 369e54076b5f8d2ecdd1629d6a9bb03f77820cf0ede2c0f5c8ba0fcf3f6ce270
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/tevaindonesia/Teva_Hurricane_XLT2_Sandals_Orange_751-7513711.jpg HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:14 GMT
Accept-Ranges: bytes
Content-Length: 200229
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/ajax-loader.gif | 196.196.152.109 | 404 Not Found | 36 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/ajax-loader.gif IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4739), with CRLF, LF line terminators Hash6ad73e32aa8224b6f4a373cb5b0a4218 13ff18f2f6fe66eb8f1e44fbbf3414d45f438dfb 785e258e55692f4b91b26379c037c0c8b6f12716ede8582ee0227d4bf5042db4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /includes/templates/tevaindonesia/css/ajax-loader.gif HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/includes/templates/tevaindonesia/css/stylesheet_slick.css
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 18 Apr 2024 10:51:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: cookie_test=please_accept_for_session; expires=Sat, 18-May-2024 10:51:57 GMT; Max-Age=2592000; path=/
zenid=tnuma47hopjcs16l7opkpk6j63; path=/; HttpOnly
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
|
|
| fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 | 216.58.207.227 | 200 OK | 128 kB |
URL GET HTTP/2fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 IP216.58.207.227:443
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 128352, version 1.0 Size128 kB (128352 bytes) Hash53436aca8627a49f4deaaa44dc9e3c05 0bc0c675480d94ec7e8609dda6227f88c5d08d2c 8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tevashoesindonesia.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 06:44:19 GMT
expires: Sun, 13 Apr 2025 06:44:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
age: 446858
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241458514687.png | 196.196.152.109 | 200 OK | 3.0 MB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241458514687.png IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typePNG image data, 2535 x 1119, 8-bit/color RGB, non-interlaced Size3.0 MB (2987020 bytes) Hash9b7649c08a9a1cc9e31683f20652ea80 ec09e6809d8e91bd23cde645362c417aa2d265bd a16c2906ba45e2c8955dcefd3924f775fed5d32328d72fc93f54895ea4304a6b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241458514687.png HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:56 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 2987020
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.tevashoesindonesia.com/images/hoverimg/202302241459044463.png | 196.196.152.109 | 200 OK | 3.0 MB |
URL GET HTTP/1.1www.tevashoesindonesia.com/images/hoverimg/202302241459044463.png IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typePNG image data, 2535 x 1119, 8-bit/color RGB, non-interlaced Size3.0 MB (2987020 bytes) Hash9b7649c08a9a1cc9e31683f20652ea80 ec09e6809d8e91bd23cde645362c417aa2d265bd a16c2906ba45e2c8955dcefd3924f775fed5d32328d72fc93f54895ea4304a6b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/hoverimg/202302241459044463.png HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:57 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:15 GMT
Accept-Ranges: bytes
Content-Length: 2987020
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.tevashoesindonesia.com/favicon.ico | 196.196.152.109 | 200 OK | 3.5 kB |
URL GET HTTP/1.1www.tevashoesindonesia.com/favicon.ico IP196.196.152.109:443 ASN#58065 Orion Network Limited
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerLet's Encrypt Subjecttevashoesindonesia.com FingerprintB2:2E:42:36:7B:ED:2C:83:9C:91:37:F1:82:CF:C2:48:07:28:AB:93 ValiditySat, 23 Mar 2024 10:16:04 GMT - Fri, 21 Jun 2024 10:16:03 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash70e4b82593c905e3b19a55e5bde01c39 b86493e417f124eb0ad3bbea03e15eb05379d303 6c8993da52b2f333449b077fda9baa15bfd680ab5f38492360e4a53efb1c6a60
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: www.tevashoesindonesia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Cookie: cookie_test=please_accept_for_session; zenid=tnuma47hopjcs16l7opkpk6j63
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 10:51:57 GMT
Server: Apache
Last-Modified: Mon, 22 Jan 2024 12:05:11 GMT
Accept-Ranges: bytes
Content-Length: 3528
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/x-icon
|
|
| fonts.googleapis.com/icon?family=Material+Icons | 142.250.74.106 | 200 OK | 565 B |
URL GET HTTP/2fonts.googleapis.com/icon?family=Material+Icons IP142.250.74.106:443
Requested byhttps://www.tevashoesindonesia.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (588), with no line terminators Hash959a533a3dc02649e0cc3f8f67d942af 34db49ff64aed8b51beaba5b9928ad504a4df335 24864ed3ee6fab66640980d4c24640e579e5583764a8ee8c4f09decf27977247
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.tevashoesindonesia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 10:51:56 GMT
date: Thu, 18 Apr 2024 10:51:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|