Report - lflsoftware.com

Report Overview

Submitted URL
lflsoftware.com
IP
107.161.178.166
ASN
#33182 DIMENOC
Submitted
2024-05-08 15:32:24
Access
public
Website Title
L.F.L Software
Final URL
lflsoftware.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
180

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
lflsoftware.com	unknown	2015-03-11	2017-12-05	2024-04-15	20 kB	2.0 MB	107.161.178.166
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-05-07	512 B	1.2 kB	35.244.181.201

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed
2024-05-08	medium	lflsoftware.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	lflsoftware.com/assets/onepage2/scripts/portfolio.js	3.0 kB	2024-05-08	2024-05-19
Pretty URL lflsoftware.com/assets/onepage2/scripts/portfolio.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 17:32:25 Last Seen2024-05-19 17:32:32 Times Seen4 Hash c03c4d96f891c4a7e585db0d71a6c2be a743e1ae442cdbc033b63930038d5ae8da689e22 d9b77ed08894d873fe8d8e5971e2eb3c9039a54975676b8ba850a98a37200c28 Loading...

	lflsoftware.com/assets/plugins/cubeportfolio/cubeportfolio/js/jquery.cubeportfolio.min.js	55 kB	2024-05-08	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/cubeportfolio/cubeportfolio/js/jquery.cubeportfolio.min.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 17:32:25 Last Seen2024-05-19 17:32:32 Times Seen4 Hash a82197655346688c6da834aa7dad89c7 b2bad825bcb8b8b627915f393e669864954c953d 4e51cc10c2358c2e8e8a1e5a1a1e0760390565679336d68e3b9cedd9957a32a9 Loading...

	lflsoftware.com/assets/plugins/contacto/contact_me.js	2.8 kB	2024-05-08	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/contacto/contact_me.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 17:32:25 Last Seen2024-05-19 17:32:32 Times Seen4 Hash aaa24d0665cb003cb08f26e2ef2f887d 94ab2b2600a6bdeee625f9ae68eaa404d20c77d0 0761696f919046ce2d5e06e4a3edea778aa804393b5d728b10d704c0df4cca1c Loading...

	lflsoftware.com/assets/plugins/contacto/jqBootstrapValidation.js	36 kB	2023-05-16	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/contacto/jqBootstrapValidation.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-16 15:36:22 Last Seen2024-05-19 17:32:32 Times Seen10 Hash 17c52d1e03b508d6390a330fe5b25115 4567ed3b0d62b997572b0f035d5b8d1ba0fdb355 c99a368743cef5348ba73cd64a0b15f7145ccd347f9eac7729ab4ff02961fdea Loading...

	lflsoftware.com/assets/plugins/jquery.min.js	96 kB	2024-05-08	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/jquery.min.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 17:32:25 Last Seen2024-05-19 17:32:32 Times Seen4 Hash ea3360a4ba3c1c2af929f1dc70040ffd bf3a1c3af89374451bf1273c1dfef47b0ad29ebd 2838ee54ac169bee408dd795b5c1922e8c3c66060bf2dd8bbb441d50bc8e54a0 Loading...

	lflsoftware.com/assets/plugins/bootstrap/js/bootstrap.min.js	37 kB	2023-03-07	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/bootstrap/js/bootstrap.min.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:00:39 Last Seen2024-05-19 17:32:32 Times Seen15 Hash 526450d06b0c8765914a567a915b9f7f 3035a9dfb2069d59c41b16e8ef0cfc46058cc8a5 8415e4131dfe31df0dc7bc4d6df66d3fc323ae898c4e8eea797196d49485d438 Loading...

	lflsoftware.com/assets/plugins/jquery.parallax.js	1.8 kB	2023-11-07	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/jquery.parallax.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-07 15:26:40 Last Seen2024-05-19 17:32:32 Times Seen6 Hash bd39492203596db2bfdc707b40c6b4d0 cadec09675821ecd101da30150607c2ad44b4770 2d8a33341447bc603e06d0238063f28e3ce4ea9d278ad4b4e715342b2072008b Loading...

	lflsoftware.com/assets/plugins/smooth-scroll/smooth-scroll.js	14 kB	2024-05-08	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/smooth-scroll/smooth-scroll.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 17:32:25 Last Seen2024-05-19 17:32:32 Times Seen4 Hash a267d1559ac505582b4012a06d99fa06 2a33877adf4ba405d220157c9397b1110587e524 09a57dd10ff9a6e66f726f9801223299f4521e3780e48fafa52e032a061018aa Loading...

	lflsoftware.com/assets/plugins/owl.carousel/owl.carousel.min.js	40 kB	2023-03-07	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/owl.carousel/owl.carousel.min.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:25:32 Last Seen2024-05-19 17:32:32 Times Seen26 Hash 0fd3a0c555cc14eb917d589058b03539 d2706f202253044e09d6bce28789b6c2af59ed0e dc8aaa45b520869743f6544e243dd65cacad52d4ebf69f98a815ce3956085f29 Loading...

	lflsoftware.com/	76 B	2024-05-08	2024-05-19
Pretty URL lflsoftware.com/ IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 17:32:25 Last Seen2024-05-19 17:32:31 Times Seen2 Hash 3710f12c7a951e8dee7f7a0c7fc56be2 8a33ba5740d195ba0e99ea9ee41c37029f44b9bb 8c3df00bde5920bbfe207478b81b98f92c04f72266f1cd772ea84b028aa3e7e4 Loading...

	lflsoftware.com/assets/plugins/jquery-migrate.min.js	7.2 kB	2023-03-10	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/jquery-migrate.min.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:37:57 Last Seen2024-05-19 17:32:32 Times Seen27 Hash 7a08d5fa4f98878ae22de19a875b4f5d 31541c1781d408c6dd6cbd5d00a991ceda3095c4 53155e696af2501b19ba0bc3fcd51fb828d7fdfb19e4a92116f9e265cf1f0a03 Loading...

	lflsoftware.com/assets/plugins/jquery.easing.js	8.1 kB	2024-05-08	2024-05-19
Pretty URL lflsoftware.com/assets/plugins/jquery.easing.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 17:32:25 Last Seen2024-05-19 17:32:32 Times Seen4 Hash f890067644bb5136903aaf4e77885e5e 374dc5638747b10959c27e375e5373ee2ed40f5b 8fc67200e700103e62b53815aed388af63abb055d72eb645dd55b60d77dd2cdf Loading...

	lflsoftware.com/assets/onepage2/scripts/layout.js	5.6 kB	2024-05-08	2024-05-19
Pretty URL lflsoftware.com/assets/onepage2/scripts/layout.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 17:32:25 Last Seen2024-05-19 17:32:32 Times Seen4 Hash 8ce0b019fd339d4e3716c8adcc9c95f2 bdba0faef51842bc79703dda5c0969d5e936cf04 a5e964611f57dbc160afeee5354c85c827de8f4d397cd52a2a253d8efb732476 Loading...

	lflsoftware.com/assets/pages/scripts/bs-carousel.js	1.8 kB	2024-05-08	2024-05-19
Pretty URL lflsoftware.com/assets/pages/scripts/bs-carousel.js IP 107.161.178.166 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 17:32:25 Last Seen2024-05-19 17:32:32 Times Seen4 Hash a7631eb9c8afa2b6d9b6f8c2c53aa546 e960e3eeb49d23384b4b14fa6d56ac2bd6a0e98c 0e7547bf373f80bfc95ee3ec463e8e5844c89155240310406f7fa2534550c2c6 Loading...

HTTP Transactions (46)

URL IP Response Size

lflsoftware.com/

107.161.178.166

200 OK

5.5 kB

URL User Request GET HTTP/1.1
lflsoftware.com/
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (402)
Size
5.5 kB (5520 bytes)
Hash
5fd50b5ee60e6a3323a4585294b3f0bb
924155297ff6721988372826289c07a3273d2e7f
9ebb67d6ecdad3193e05a918f306a8e4b7d8bce77f11f345ea81f23c47a58225

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:12 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 05:02:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5520
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

lflsoftware.com/assets/plugins/font-awesome/css/font-awesome.min.css

107.161.178.166

200 OK

5.4 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/font-awesome/css/font-awesome.min.css
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (23577)
Size
5.4 kB (5443 bytes)
Hash
04425bbdc6243fc6e54bf8984fe50330
8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5
541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:44:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5443
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

lflsoftware.com/assets/onepage2/css/layout.css

107.161.178.166

200 OK

6.0 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/css/layout.css
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text
Size
6.0 kB (6033 bytes)
Hash
cd51a5c092cb8fcd7080c9ae630e05b7
04ed167f84546b7ab2b09c0eb57e397093af2028
06f9888ed8d2c9e80f807e13c22af26a3cbda2ef4c322ca2301dc417ec8e94d9

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/css/layout.css HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6033
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

lflsoftware.com/assets/plugins/simple-line-icons/simple-line-icons.min.css

107.161.178.166

200 OK

2.2 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/simple-line-icons/simple-line-icons.min.css
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (9503)
Size
2.2 kB (2161 bytes)
Hash
a53228da5bc8d11855e526f9230514ee
f7d91e012ef91f5ec9e2bd3577527019bcc55ee8
4b681a7b7a54a5f692028e2556dfc29a0e43c6e08f3e773f3daf7e3f02742bc3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/simple-line-icons/simple-line-icons.min.css HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2161
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

lflsoftware.com/assets/plugins/owl.carousel/assets/owl.carousel.css

107.161.178.166

200 OK

1.1 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/owl.carousel/assets/owl.carousel.css
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text
Size
1.1 kB (1103 bytes)
Hash
b51416af9e8adbe3d16f5f2526aba221
097c8d67412f44534449ed4cadc6dd22b025801d
dd7b97c7ad9d7b3eb79bdc728bcbc6a7ab8e3d5db0421fb0dd16d34f3dc88277

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/owl.carousel/assets/owl.carousel.css HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:44:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1103
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

lflsoftware.com/assets/pages/css/animate.css

107.161.178.166

200 OK

4.3 kB

URL GET HTTP/1.1
lflsoftware.com/assets/pages/css/animate.css
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text
Size
4.3 kB (4300 bytes)
Hash
f9ef19b8c81feae24fe5970bfadc34bb
e56fb7e673693eb0b234e2033b0760c5d3ae778a
0f43aedbc350e90a0daf474f41eec2b0b8cb1728ef1019ac3c9df35aafabc9ab

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/pages/css/animate.css HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4300
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

lflsoftware.com/assets/onepage2/css/custom.css

107.161.178.166

404 Not Found

315 B

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/css/custom.css
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/css/custom.css HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

lflsoftware.com/assets/plugins/cubeportfolio/cubeportfolio/css/cubeportfolio.min.css

107.161.178.166

200 OK

9.8 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/cubeportfolio/cubeportfolio/css/cubeportfolio.min.css
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65255)
Size
9.8 kB (9774 bytes)
Hash
2a2b69897be47f13c0196c47b22fad6a
60f444415331899b6c57db2f37f396dd934cc079
527f3b76924a79690d9f172434360d0c94b3fdd5204a68e06e61ef2f536020d9

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/cubeportfolio/cubeportfolio/css/cubeportfolio.min.css HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:44:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9774
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

lflsoftware.com/assets/plugins/bootstrap/css/bootstrap.min.css

107.161.178.166

200 OK

20 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/bootstrap/css/bootstrap.min.css
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65371)
Size
20 kB (19883 bytes)
Hash
5d5357cb3704e1f43a1f5bfed2aebf42
08df9a96752852f2cbd310c30facd934e348c2c5
31fbd99641c212a6ad3681a2397bde13c148c0ccd98385bce6a7eb7c81417d87

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:43:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 19883
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

lflsoftware.com/assets/plugins/jquery-migrate.min.js

107.161.178.166

200 OK

3.1 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/jquery-migrate.min.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7086)
Size
3.1 kB (3064 bytes)
Hash
7a08d5fa4f98878ae22de19a875b4f5d
31541c1781d408c6dd6cbd5d00a991ceda3095c4
53155e696af2501b19ba0bc3fcd51fb828d7fdfb19e4a92116f9e265cf1f0a03

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/jquery-migrate.min.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Sun, 03 Mar 2024 15:07:43 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3064
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/plugins/jquery.easing.js

107.161.178.166

200 OK

2.0 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/jquery.easing.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
2.0 kB (1994 bytes)
Hash
f890067644bb5136903aaf4e77885e5e
374dc5638747b10959c27e375e5373ee2ed40f5b
8fc67200e700103e62b53815aed388af63abb055d72eb645dd55b60d77dd2cdf

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/jquery.easing.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Mon, 04 Mar 2024 07:15:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1994
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/plugins/bootstrap/js/bootstrap.min.js

107.161.178.166

200 OK

9.7 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/bootstrap/js/bootstrap.min.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32034)
Size
9.7 kB (9745 bytes)
Hash
526450d06b0c8765914a567a915b9f7f
3035a9dfb2069d59c41b16e8ef0cfc46058cc8a5
8415e4131dfe31df0dc7bc4d6df66d3fc323ae898c4e8eea797196d49485d438

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Sun, 03 Mar 2024 12:03:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9745
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/plugins/jquery.parallax.js

107.161.178.166

200 OK

795 B

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/jquery.parallax.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
795 B (795 bytes)
Hash
bd39492203596db2bfdc707b40c6b4d0
cadec09675821ecd101da30150607c2ad44b4770
2d8a33341447bc603e06d0238063f28e3ce4ea9d278ad4b4e715342b2072008b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/jquery.parallax.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Sun, 03 Mar 2024 14:46:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 795
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/plugins/jquery.min.js

107.161.178.166

200 OK

33 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/jquery.min.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32047)
Size
33 kB (33281 bytes)
Hash
ea3360a4ba3c1c2af929f1dc70040ffd
bf3a1c3af89374451bf1273c1dfef47b0ad29ebd
2838ee54ac169bee408dd795b5c1922e8c3c66060bf2dd8bbb441d50bc8e54a0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/jquery.min.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Sun, 03 Mar 2024 19:02:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33281
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/plugins/smooth-scroll/smooth-scroll.js

107.161.178.166

200 OK

4.5 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/smooth-scroll/smooth-scroll.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
4.5 kB (4486 bytes)
Hash
a267d1559ac505582b4012a06d99fa06
2a33877adf4ba405d220157c9397b1110587e524
09a57dd10ff9a6e66f726f9801223299f4521e3780e48fafa52e032a061018aa

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/smooth-scroll/smooth-scroll.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Mon, 04 Mar 2024 01:54:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4486
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/plugins/owl.carousel/owl.carousel.min.js

107.161.178.166

200 OK

10 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/owl.carousel/owl.carousel.min.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32068)
Size
10 kB (10523 bytes)
Hash
0fd3a0c555cc14eb917d589058b03539
d2706f202253044e09d6bce28789b6c2af59ed0e
dc8aaa45b520869743f6544e243dd65cacad52d4ebf69f98a815ce3956085f29

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/owl.carousel/owl.carousel.min.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Sun, 03 Mar 2024 23:18:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10523
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/plugins/contacto/contact_me.js

107.161.178.166

200 OK

919 B

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/contacto/contact_me.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
919 B (919 bytes)
Hash
aaa24d0665cb003cb08f26e2ef2f887d
94ab2b2600a6bdeee625f9ae68eaa404d20c77d0
0761696f919046ce2d5e06e4a3edea778aa804393b5d728b10d704c0df4cca1c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/contacto/contact_me.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 01:22:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 919
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/onepage2/scripts/portfolio.js

107.161.178.166

200 OK

953 B

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/scripts/portfolio.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
953 B (953 bytes)
Hash
c03c4d96f891c4a7e585db0d71a6c2be
a743e1ae442cdbc033b63930038d5ae8da689e22
d9b77ed08894d873fe8d8e5971e2eb3c9039a54975676b8ba850a98a37200c28

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/scripts/portfolio.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Sun, 03 Mar 2024 17:02:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 953
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/plugins/cubeportfolio/cubeportfolio/js/jquery.cubeportfolio.min.js

107.161.178.166

200 OK

13 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/cubeportfolio/cubeportfolio/js/jquery.cubeportfolio.min.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32066)
Size
13 kB (12639 bytes)
Hash
a82197655346688c6da834aa7dad89c7
b2bad825bcb8b8b627915f393e669864954c953d
4e51cc10c2358c2e8e8a1e5a1a1e0760390565679336d68e3b9cedd9957a32a9

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/cubeportfolio/cubeportfolio/js/jquery.cubeportfolio.min.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Sun, 03 Mar 2024 18:17:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12639
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/plugins/contacto/jqBootstrapValidation.js

107.161.178.166

200 OK

6.8 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/contacto/jqBootstrapValidation.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
6.8 kB (6784 bytes)
Hash
17c52d1e03b508d6390a330fe5b25115
4567ed3b0d62b997572b0f035d5b8d1ba0fdb355
c99a368743cef5348ba73cd64a0b15f7145ccd347f9eac7729ab4ff02961fdea

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/contacto/jqBootstrapValidation.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Mon, 04 Mar 2024 00:40:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6784
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/onepage2/scripts/layout.js

107.161.178.166

200 OK

1.7 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/scripts/layout.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
1.7 kB (1683 bytes)
Hash
8ce0b019fd339d4e3716c8adcc9c95f2
bdba0faef51842bc79703dda5c0969d5e936cf04
a5e964611f57dbc160afeee5354c85c827de8f4d397cd52a2a253d8efb732476

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/scripts/layout.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Mon, 04 Mar 2024 00:02:35 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1683
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/pages/scripts/bs-carousel.js

107.161.178.166

200 OK

661 B

URL GET HTTP/1.1
lflsoftware.com/assets/pages/scripts/bs-carousel.js
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
661 B (661 bytes)
Hash
a7631eb9c8afa2b6d9b6f8c2c53aa546
e960e3eeb49d23384b4b14fa6d56ac2bd6a0e98c
0e7547bf373f80bfc95ee3ec463e8e5844c89155240310406f7fa2534550c2c6

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/pages/scripts/bs-carousel.js HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Sun, 03 Mar 2024 10:23:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 661
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

lflsoftware.com/assets/onepage2/img/widgets/icon1.png

107.161.178.166

200 OK

4.8 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/widgets/icon1.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 200 x 190, 8-bit/color RGBA, non-interlaced
Size
4.8 kB (4752 bytes)
Hash
ec0a7ee8408361410a684481eb540cc8
1014097cbca4c18b93d800b33e656807ed82b2c8
d3c96a05595abfc89e73419de19aae8455d443771eaad709b50eb10cca70ef84

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/widgets/icon1.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:06 GMT
Accept-Ranges: bytes
Content-Length: 4752
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/widgets/icon2.png

107.161.178.166

200 OK

17 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/widgets/icon2.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 200 x 190, 8-bit/color RGBA, non-interlaced
Size
17 kB (17314 bytes)
Hash
9f6bc1000a889bc859c4fd316400c9b4
b8544ed5be6e818fa8484b3ae5669fc19ceda2ed
168a81e7b9b4858f6b9ef6ba6974e886196f37788a3d3856a07d2ed8a2216f9e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/widgets/icon2.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:07 GMT
Accept-Ranges: bytes
Content-Length: 17314
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/widgets/icon3.png

107.161.178.166

200 OK

1.2 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/widgets/icon3.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced
Size
1.2 kB (1176 bytes)
Hash
2b427a05e7dd5dfe49ba8945645a3b7a
6c03b0d7660149db21d09abcbefd1a3699fec55a
b9dc5b8e3667218dd671cfeccfb1cc1d1adb6000c640111d2631cc350f33bbd1

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/widgets/icon3.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:07 GMT
Accept-Ranges: bytes
Content-Length: 1176
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.3.0

107.161.178.166

200 OK

57 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.3.0
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 56780, version 4.197
Size
57 kB (56780 bytes)
Hash
97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/assets/plugins/font-awesome/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:44:14 GMT
Accept-Ranges: bytes
Content-Length: 56780
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

lflsoftware.com/assets/onepage2/img/widgets/screen1.png

107.161.178.166

200 OK

12 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/widgets/screen1.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 500 x 276, 8-bit colormap, non-interlaced
Size
12 kB (11497 bytes)
Hash
515ed360fa99f0aac4e98bc26973d3e8
a3605f6db9986df057674151c2e170c3aacde69b
c0a809cc70dbb85c5ddb3b9ea3270fe246ffdef55900fae8e822f0b85444df96

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/widgets/screen1.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:08 GMT
Accept-Ranges: bytes
Content-Length: 11497
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/widgets/screen2.png

107.161.178.166

200 OK

23 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/widgets/screen2.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 500 x 276, 8-bit colormap, non-interlaced
Size
23 kB (22769 bytes)
Hash
03c25a12d7e38f3c0c50661c653f6e1e
dd0246e4034cd418893f6c22abf603704fcad00a
dc6de5cbb994a8c0e5039a46cfbba939ee735dc493f3b87e335787608d15da47

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/widgets/screen2.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:09 GMT
Accept-Ranges: bytes
Content-Length: 22769
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/widgets/screen3.png

107.161.178.166

200 OK

31 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/widgets/screen3.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 500 x 276, 8-bit colormap, non-interlaced
Size
31 kB (30954 bytes)
Hash
42ce8ec9d3722bdb621e32b2b25dfbd1
41650709d9f679cb85e94bbe4ef0979b2beefc79
e879eb4b74949e8b877d5388af061d01e3592b821f9929a887f4f252e6472897

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/widgets/screen3.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:09 GMT
Accept-Ranges: bytes
Content-Length: 30954
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/widgets/screen4.png

107.161.178.166

200 OK

18 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/widgets/screen4.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 500 x 276, 8-bit colormap, non-interlaced
Size
18 kB (17527 bytes)
Hash
4774e5ceedf3f13f37cef8cf26104aaa
9b75fad4bd5085393a7a3297b82c3fcc8cf27666
aa579d2c85790357b27139ac81783968d0a735d4162d0f6aa272374c8ea9061c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/widgets/screen4.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:09 GMT
Accept-Ranges: bytes
Content-Length: 17527
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/clients/logo1.png

107.161.178.166

200 OK

12 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/clients/logo1.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 350 x 100, 8-bit/color RGBA, non-interlaced
Size
12 kB (11708 bytes)
Hash
75c4af08e30653c54c5e1eb6278ce5a8
0f85fc93a59658b33dd9a36b8b9851107e14fed9
5e4b83906ea55e331f07cdeba456187969eede13e24d50f447512c1db1b0a0ef

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/clients/logo1.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:46 GMT
Accept-Ranges: bytes
Content-Length: 11708
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/clients/logo2.png

107.161.178.166

200 OK

14 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/clients/logo2.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 350 x 100, 8-bit/color RGBA, non-interlaced
Size
14 kB (14248 bytes)
Hash
bbfa6e767b86de36cd45a7e6489127cf
2772862f28306313f37591621e7a271268248e9c
a3a7383ad0286600a3d0ad7ccb8eb1eebc44d8ff73ce90a66d33c0c6120bf29e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/clients/logo2.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:47 GMT
Accept-Ranges: bytes
Content-Length: 14248
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/clients/logo3.png

107.161.178.166

200 OK

21 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/clients/logo3.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 350 x 100, 8-bit/color RGBA, non-interlaced
Size
21 kB (21381 bytes)
Hash
0e62830ccb1759180168d11fb22476f3
84b69bda994134b183c7cef48b50436b6fca6354
d0465d6ebf1fa9e23a6630c92adf904cfcddf6de9aec33e284283245f35b1326

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/clients/logo3.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:47 GMT
Accept-Ranges: bytes
Content-Length: 21381
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/clients/logo4.png

107.161.178.166

200 OK

14 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/clients/logo4.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 350 x 100, 8-bit/color RGBA, non-interlaced
Size
14 kB (13609 bytes)
Hash
101bf03866ae9ffe0f48b9f7b4e5dbae
47910cbdfb5d33e4fb7b1b0965e4e6cac29e13dc
0952d543274dae186b15e1ca0f79b25bb8b7634c6c0390deb6088f432957b62a

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/clients/logo4.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:48 GMT
Accept-Ranges: bytes
Content-Length: 13609
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/bg/bg_slider1.jpg

107.161.178.166

200 OK

266 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/bg/bg_slider1.jpg
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:04:16 02:55:48], progressive, precision 8, 1920x1080, components 3
Size
266 kB (266045 bytes)
Hash
6a3fdf08d4b83d3cd47c2fb62e1c54c3
56131b8270b5f2bcaa16b2989dad38db99ad957f
bd7ef07450c19e3c8a85313273cf58c95610444490ea63f2dd0039ee9fdb3d08

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/bg/bg_slider1.jpg HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/assets/onepage2/css/layout.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:42 GMT
Accept-Ranges: bytes
Content-Length: 266045
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

lflsoftware.com/assets/onepage2/img/clients/logo5.png

107.161.178.166

200 OK

23 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/clients/logo5.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 350 x 100, 8-bit/color RGBA, non-interlaced
Size
23 kB (23323 bytes)
Hash
521a08b32281d9fbe7f426d5ab72d5e6
09acdad6d0d01caf1232fe0dd1743e6ae06bd3d1
f347477456f8ec486a47f3c393c9f16f85b81ad3c4feb383a925a18dd2f68622

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/clients/logo5.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:48 GMT
Accept-Ranges: bytes
Content-Length: 23323
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/logo_default.png

107.161.178.166

200 OK

218 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/logo_default.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 2493 x 1050, 8-bit/color RGBA, non-interlaced
Size
218 kB (218306 bytes)
Hash
0e389da38ac072bf7af86b78a24fcb85
cf4e5d8ade68ff320afdb095270ea16bf7a49c57
ebb50bcfbf3c39f17e1c264af1785f3ffaec38c559493cd16f123b0b24ef4939

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/logo_default.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:13 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:01 GMT
Accept-Ranges: bytes
Content-Length: 218306
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/portfolio/03.jpg

107.161.178.166

200 OK

249 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/portfolio/03.jpg
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:04:18 01:24:08], baseline, precision 8, 600x600, components 3
Size
249 kB (248606 bytes)
Hash
baa168c0752a37480c791971a054d0e8
2b5395d667392360d85e99b79ebdfbeead41d50b
4f315e1cd410cb8db18d6e5158b1eebaeb2d3eff7692928f033094384235fa26

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/portfolio/03.jpg HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:02 GMT
Accept-Ranges: bytes
Content-Length: 248606
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

lflsoftware.com/assets/plugins/cubeportfolio/cubeportfolio/img/cbp-loading.gif

107.161.178.166

200 OK

3.2 kB

URL GET HTTP/1.1
lflsoftware.com/assets/plugins/cubeportfolio/cubeportfolio/img/cbp-loading.gif
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
GIF image data, version 89a, 32 x 32
Size
3.2 kB (3208 bytes)
Hash
be1cede97289c13920048f238fd37b85
313b867d11fc0dd6bc6ca47c334bbcf18956ca76
fd29b3b084cf11160bfc4e99d98a261f2b36bff29113b07367c5204563c5d355

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/plugins/cubeportfolio/cubeportfolio/img/cbp-loading.gif HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/assets/plugins/cubeportfolio/cubeportfolio/css/cubeportfolio.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:44:54 GMT
Accept-Ranges: bytes
Content-Length: 3208
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/gif

lflsoftware.com/assets/onepage2/img/clients/logo6.png

107.161.178.166

200 OK

54 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/clients/logo6.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 350 x 100, 8-bit/color RGBA, non-interlaced
Size
54 kB (53887 bytes)
Hash
83151434bc6cafeded7ca6399668b7a1
6a048581d874bdad9e2632f9115cb3154eed9804
b6d753e44c0822392b6bf0ed127aed047826f45399fad3eeb2fb28cf625c283b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/clients/logo6.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:48 GMT
Accept-Ranges: bytes
Content-Length: 53887
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/logo_scroll.png

107.161.178.166

200 OK

255 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/logo_scroll.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 2493 x 1050, 8-bit/color RGBA, non-interlaced
Size
255 kB (254944 bytes)
Hash
79da23a3fe09138562ba85908399868a
62c59aa28dadac12deccb22eca33d348a5504382
469ae5bebedf5ae3a6e079bcb397bf84fe5da6b084b8056a32453112c62319af

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/logo_scroll.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:40:02 GMT
Accept-Ranges: bytes
Content-Length: 254944
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/portfolio/01.jpg

107.161.178.166

200 OK

361 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/portfolio/01.jpg
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:04:18 01:09:03], baseline, precision 8, 600x600, components 3
Size
361 kB (360610 bytes)
Hash
d25ec82687b7465770d812f2e88686f6
46bd84a11eb39e92cd8312da1e8b3323f4a9b1ba
247c7d35e6b1d0b3bd7f48f6f0c4b8b95fd9aea057f8ed75b716a5015738d23c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/portfolio/01.jpg HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:00 GMT
Accept-Ranges: bytes
Content-Length: 360610
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

lflsoftware.com/assets/onepage2/img/portfolio/02.jpg

107.161.178.166

200 OK

226 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/portfolio/02.jpg
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2017:04:18 01:13:27], baseline, precision 8, 600x600, components 3
Size
226 kB (226317 bytes)
Hash
7850efe6917c99d5fac855038f0bcc2b
3134e2dcc59e741705bafc88c44c47e7edf7bbaa
9c3d667c74a67822ad67831cb6fa04c4858cc6eeea70b7263189417cc7806b23

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/portfolio/02.jpg HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:41:01 GMT
Accept-Ranges: bytes
Content-Length: 226317
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

lflsoftware.com/assets/onepage2/img/favicon.png

107.161.178.166

200 OK

4.2 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/favicon.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced
Size
4.2 kB (4238 bytes)
Hash
3eb837eb5e81fd84f6b206d6fc29ff69
722896258469908c5c5c4aa7347b5dc3eb597ce9
a18367f72a14b2a5fc50c2e6d84937af3710b01f4260f8d01f295eafc99818f0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/favicon.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:39:59 GMT
Accept-Ranges: bytes
Content-Length: 4238
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

lflsoftware.com/assets/onepage2/img/favicon.png

107.161.178.166

200 OK

4.2 kB

URL GET HTTP/1.1
lflsoftware.com/assets/onepage2/img/favicon.png
IP
107.161.178.166:443
ASN
#33182 DIMENOC

Requested by
https://lflsoftware.com/
Certificate
IssuercPanel, Inc.
Subjectlflsoftware.com
Fingerprint43:5A:8F:26:B2:F3:50:71:65:B9:D7:CA:2B:C1:E9:D5:E6:0A:38:37
ValidityThu, 21 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced
Size
4.2 kB (4238 bytes)
Hash
3eb837eb5e81fd84f6b206d6fc29ff69
722896258469908c5c5c4aa7347b5dc3eb597ce9
a18367f72a14b2a5fc50c2e6d84937af3710b01f4260f8d01f295eafc99818f0

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/onepage2/img/favicon.png HTTP/1.1
Host: lflsoftware.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lflsoftware.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 15:31:14 GMT
Server: Apache
Last-Modified: Wed, 19 Apr 2017 04:39:59 GMT
Accept-Ranges: bytes
Content-Length: 4238
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=-0IrLFq0UV4Ls7A0-kwBLW6ZU0vr1os0Q78zSLwCMdphovwJBVBAr77VvQwIGMsWDni_yCGNMkBfmrAKtpzaFSpuYxYHz0S-z9cTjVCHcTz0P_7UUB3hydJxs8iaRGVO
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Wed, 08 May 2024 15:32:00 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 16
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML