Report - www.haflingeraustralias.com/

Report Overview

Submitted URL
www.haflingeraustralias.com/
IP
165.231.65.240
ASN
#48950 Global Colocation Limited
Submitted
2024-05-09 18:41:34
Access
public
Website Title
Haflinger Slippers Website - Haflinger Slippers Sale | Haflinger Australia
Final URL
www.haflingeraustralias.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
102

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.haflingeraustralias.com	unknown	unknown	No data	No data	27 kB	2.5 MB	165.231.65.240
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-09	546 B	129 kB	142.250.74.131
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-09	449 B	1.2 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed
2024-05-09	medium	haflingeraustralias.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_jquery_kinSlideshow.js	10 kB	2023-04-11	2024-05-20
Pretty URL www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_jquery_kinSlideshow.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:28:27 Last Seen2024-05-20 04:06:18 Times Seen3649 Hash abbb3376ffd05856914efb567ee1f53b 4502bb187bd05f6bdc324546301c0fb3ededb453 f3e0eb53b3dc82b94ae4c1fe8c654bf827bf0d7f9f12cc01976e0689c5db9203 Loading...

	www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_slick.js	89 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_slick.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:19 Times Seen8563 Hash 5f8f4aed010e1afe499184d8197309f9 097f6a1b4f115e9b6ebefa70d76d830733bcc9ba 0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4 Loading...

	www.haflingeraustralias.com/js/classie.js	1.8 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/js/classie.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2024-05-20 04:06:19 Times Seen5214 Hash a9df1cfb76ce492afd9d13f3320272fd 782b9564f015a2ec7bdf9c89e238fab9b44bd587 717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144 Loading...

	www.haflingeraustralias.com/js/slick_new.js	1.9 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/js/slick_new.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:32 Last Seen2024-05-20 04:06:19 Times Seen3922 Hash 37192079541f105b380c4d17cb5b1a45 4cf67b7d006b630a2e063acb52740d1b8cfa08c4 faffeb52bd73185450a0e8bad135ac6209a599c01d2247636e29fe4d640557cf Loading...

	www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_2.2.0.min.js	143 kB	2023-04-05	2024-05-20
Pretty URL www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_2.2.0.min.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 13:52:00 Last Seen2024-05-20 04:06:18 Times Seen3358 Hash 391ebf61aa662184ec57e51ba5ce11c5 4359e99c16ac8e1dcc441465203d2025eaee8c48 a41091e7f49dd461b53a67d1fbbb715097796994077a2e7199f12c7a7d39c19e Loading...

	www.haflingeraustralias.com/js/jquery-1.7.2.min.js	158 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/js/jquery-1.7.2.min.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:19 Times Seen13877 Hash 6f3d61313966fcd43b0334aa5fad66b9 22b2b120da5b405a348e4abdd865c496625d87ab f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5 Loading...

	www.haflingeraustralias.com/	44 B	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/ IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:18 Times Seen4278 Hash 0f9f77c8d79923a94eaf9563663b37bf e9de64d20cf4f34a74de22d7b663634bd64f1be6 f401ef86148cd7087f19cbf14828ac17464cb4e1712f05305fb571d07521bb01 Loading...

	www.haflingeraustralias.com/js/modernizr.custom.js	7.7 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/js/modernizr.custom.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:27 Last Seen2024-05-20 04:06:19 Times Seen3707 Hash 02009db489ef4805210aafa21a6b8276 d3c333feb80a2e4045a6a353838171aaee6b878d 0cdb507e0527a90fb5b98b238843f6d2be8ded6d71f40458ff8e75b731405cad Loading...

	www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/layer.js	38 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/layer.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:19 Times Seen5499 Hash f679a433cba7ebde1bbe121fffd8c60c 4d2159e06a5e80328e0ba9554e02fb2422ed0b36 60c2f96124f2970788057614a90229fe470b13f5420e5794d90d73c9e08ce2f0 Loading...

	www.haflingeraustralias.com/js/uisearch.js	6.0 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/js/uisearch.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:27 Last Seen2024-05-20 04:06:19 Times Seen3362 Hash 028b2e146eff5f378e21e7fe48131468 af6b54a64da88204e2d2c527c1a941dc17e790e3 86f2854513305e334b86057c752cf3821b72156d1f6aa0fd8132c57bec74d285 Loading...

	www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_jquery.js	86 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_jquery.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 09:16:25 Times Seen18376 Hash e85aed5c30d734f1e30646e030d7a817 b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad 8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a Loading...

	www.haflingeraustralias.com/	74 B	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/ IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:42:27 Last Seen2024-05-20 04:06:18 Times Seen1807 Hash 77c0bd3bb3d308a78f5cd873c21fe43a 38671a50bcf4bfcfd34f5cb46c996d7b97a1254c 197e2d212246e4d08dee3d3b9e45228bbec236edaa7d31310d9de0607533a12c Loading...

	www.haflingeraustralias.com/	3.1 kB	2023-04-08	2024-05-20
Pretty URL www.haflingeraustralias.com/ IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-08 00:49:16 Last Seen2024-05-20 04:06:18 Times Seen792 Hash 43bb8afcc41296e6afc46d741cca8ee4 a0944dbd64c1dac7465cfb0da95ca654855e7fe6 d6235bd24bc349c69e8d9da4ffddf96aadb93138a01ae18ec8530ec0bd522019 Loading...

	www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_lightbox.js	20 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_lightbox.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:18 Times Seen4229 Hash 62160589e6cfe07633cf89ba5f6b850e 0ddc3da269bf68a7a86f82db9099181126c8aad5 c84699604527cf065821fe6ddb4aea785e99cfbcfbaec426a51cff1dfd617eca Loading...

	www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/re_login.js	11 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/re_login.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:32 Last Seen2024-05-20 04:06:19 Times Seen3434 Hash 7bd679d5c675a092b612e5b4b7a56dbd 6e62d5cf6e15493d5d34173348f255dfe6e9dac5 ca6d5aa9dc260b677698d2eebce1167f1beee6d848768c476b7d7ba25fbadb28 Loading...

	www.haflingeraustralias.com/	1.7 kB	2024-05-09	2024-05-09
Pretty URL www.haflingeraustralias.com/ IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-09 20:41:41 Last Seen2024-05-09 20:41:41 Times Seen1 Hash b37506f289ab99c9c7f8c08cfef6650d 9bc0de274d5a2d2a5d101768133b07f6dd1ba4c3 d425a3b0cb281b368e7b14ba41804bcb87c7bd2b4f85339b60718284dc75f1df Loading...

	www.haflingeraustralias.com/js/slick.js	87 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/js/slick.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:41 Last Seen2024-05-20 04:06:19 Times Seen5070 Hash b56bbf351b271132a8fdab2ed21c82ab 8274eb6924ead2f5d8616fd162ef24bebd3c0b21 c37611fa51880e07f6a12795e03e5cd3eb4699b82f69be67036f735ffb5ecb60 Loading...

	www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_1.11.1.min.js	86 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_1.11.1.min.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:19 Times Seen7431 Hash 93c4b563622d278b1065690a3d93709e f00d128cf399f17322b1d4ee02fa8cd892e081bd 601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e Loading...

	www.haflingeraustralias.com/	318 B	2024-05-09	2024-05-09
Pretty URL www.haflingeraustralias.com/ IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-09 20:41:41 Last Seen2024-05-09 20:41:41 Times Seen1 Hash 068531ded3f116a4b715d032ba60a833 8a50b8550b795e0155d7f562a60a5e5de71eb506 37d9f1d9f845ec5c055ae416444dda977bf7d124b62494c32ff286747c4874aa Loading...

	www.haflingeraustralias.com/	144 B	2024-05-09	2024-05-09
Pretty URL www.haflingeraustralias.com/ IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-09 20:41:41 Last Seen2024-05-09 20:41:41 Times Seen1 Hash dfb2364333047c1cf7ed53b3962d1f22 8bb69e4b946bc3df63272e083b7b33eb05a9217a 5eae8a342007f687c5d0a24d53412fbe0d277512329dd3cfddf8a09ae3802784 Loading...

	www.haflingeraustralias.com/	597 B	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/ IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:41 Last Seen2024-05-20 04:06:18 Times Seen2324 Hash 0dcfb49030f0696eed0631626f0b773a 2c88166dcdaa8372f41639a40ecc01195a012845 f0e9cf6e6cacab382ea6a8bbc66f73e345588eaff2c966d462578cf716ff74de Loading...

	www.haflingeraustralias.com/	312 B	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/ IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:18 Times Seen2844 Hash 7ce5e7d2da9a3d65ead4d2138055617e 051b88ccda03caa7daf3d18190375955b31a7b4d 4c17dfdfc4b0a40b632f760a15a335f7627fa0b6b22acb202a87e49ef511273c Loading...

	www.haflingeraustralias.com/js/jquery.jxa.js	2.7 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/js/jquery.jxa.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:19 Times Seen7747 Hash ca643ec9e974f881e4c904db35bc40c7 759df5ef14b4e2c0c46770b5e408f600972294ca a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2 Loading...

	www.haflingeraustralias.com/js/jquery.mmenu.min.all.js	39 kB	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/js/jquery.mmenu.min.all.js IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:19 Times Seen7855 Hash 5b2edbe2f95659b625a0b919ebf98286 1c5722696e849953fccdf41e0f0a01e3f37a80da a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637 Loading...

	www.haflingeraustralias.com/	21 B	2023-03-07	2024-05-20
Pretty URL www.haflingeraustralias.com/ IP 165.231.65.240 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-20 04:06:18 Times Seen3045 Hash 5a9b4911bc66f9e2f54bd20a9c333f26 8f357fb053913c958e71d7167e56aa68a698f1e4 2412af640fa9ba9f1a38f46e8b58e00b2cdd73ab4bd327a7d79be4132d960c65 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-05-20
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-20 10:43:37 Times Seen37867973 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (53)

URL IP Response Size

www.haflingeraustralias.com/

165.231.65.240

200 OK

38 kB

URL User Request GET HTTP/1.1
www.haflingeraustralias.com/
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2173), with CRLF, LF line terminators
Size
38 kB (37690 bytes)
Hash
d086de18016737a0ec78d933d7d1c6a4
c51cf521626f8479d794c9710011e91ea6898969
6f8fda5c4f09d62eb5b3d93183bdd08f42885fd03e1caebee82d138e238b19f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:06 GMT
Server: Apache
Set-Cookie: cookie_test=please_accept_for_session; expires=Sat, 08-Jun-2024 18:41:06 GMT; Max-Age=2592000; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/style.css

165.231.65.240

200 OK

25 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/style.css
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1470)
Size
25 kB (24572 bytes)
Hash
0269f25a408028ad7d1fa88f3fc07c32
bdf70b66b3a9a09ed1b009ccd694b89574646d9c
4225c3ed92bfc238dee21c99754cc70c6be9605fd4613f706c9ea927b00606d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/css/style.css HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 24572
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_categories_menu.css

165.231.65.240

200 OK

2.3 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_categories_menu.css
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text
Size
2.3 kB (2341 bytes)
Hash
77ac4aa1fc1b80426aa7ad8033dcb40c
fa30830acbbe5458aa445be97ecd00be2e1d60fa
93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/css/stylesheet_categories_menu.css HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_all.css

165.231.65.240

200 OK

123 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_all.css
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
123 kB (123326 bytes)
Hash
b529aa5e63bceec475d055e270742e60
fde4bdf40619de8cced6bb61fb02aa4590e9ec84
17bf88c3a55566c77be529de40db3aba5c1d0d76b335cdd16052bb5306e92eda

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/css/stylesheet_all.css HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 123326
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet1.css

165.231.65.240

200 OK

19 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet1.css
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (876), with CRLF line terminators
Size
19 kB (18765 bytes)
Hash
88c1da7d333b0e37d50ea01a210b51dc
35e736b79c6abc69e19cdc99a4f27884a50d2673
afe65027dc0f669d3cfbf3584c372e95b361793cb0148c5cf891408a21261b90

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/css/stylesheet1.css HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 18765
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_lightbox.css

165.231.65.240

200 OK

2.4 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_lightbox.css
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2370 bytes)
Hash
4156c4f3b3e8eb75b3f0ffc31b9b3c48
d2e2362789756890af0cd16178e7dc00b66a2032
9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/css/stylesheet_lightbox.css HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_1.11.1.min.js

165.231.65.240

200 OK

86 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_1.11.1.min.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32069)
Size
86 kB (85588 bytes)
Hash
93c4b563622d278b1065690a3d93709e
f00d128cf399f17322b1d4ee02fa8cd892e081bd
601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 85588
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_slick.css

165.231.65.240

200 OK

4.2 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_slick.css
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
4.2 kB (4155 bytes)
Hash
9e87a69f389f102db9c40827c2f7a3d8
e83dd96a07f9304fbd8f7e8b6830c0668327a36d
244f7d96e693f7471d8f3fc1c022f011f578b40a18aefa1a8fd7c8c65c6a2ece

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/css/stylesheet_slick.css HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 4155
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_header_menu.css

165.231.65.240

200 OK

3.9 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_header_menu.css
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
3.9 kB (3893 bytes)
Hash
4d9bc9c848781ab661c2c166a56bf39f
bfc18c1a65e08ac011899aee72139d446c702a9d
dce8a85ce1e5e5c78301475a027a3751967b1c5cdc5e244e0704db6178f9f6e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/css/stylesheet_header_menu.css HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 3893
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_jquery.mmenu.all.css

165.231.65.240

200 OK

11 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_jquery.mmenu.all.css
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text
Size
11 kB (10914 bytes)
Hash
e2eb2f35cf8f984d3f5f03df844b336e
763043a9a6ca87e841eb2c4e037f7359b66097b8
af696727609018b4e408eaf3c67d3f4b8e4185163ca22cbe64b13405edbfdc7a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/css/stylesheet_jquery.mmenu.all.css HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 10914
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_jquery_kinSlideshow.js

165.231.65.240

200 OK

9.7 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_jquery_kinSlideshow.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (8513), with CRLF line terminators
Size
9.7 kB (9674 bytes)
Hash
08a763acea723e1d88cbce2f1c9b3317
ea20687e4f773bf67907b0edb029ebafbc110fc1
c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_2.2.0.min.js

165.231.65.240

200 OK

143 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_2.2.0.min.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (522)
Size
143 kB (142713 bytes)
Hash
674b896ffae27a70571b1fc5bd65919d
63c8c73c7e5ba15aa940aba8f1c43b6150a9f941
a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/jscript/jscript_2.2.0.min.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 142713
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_lightbox.js

165.231.65.240

200 OK

20 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_lightbox.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (797), with CRLF line terminators
Size
20 kB (20417 bytes)
Hash
3d79a6c53803295ef00c052546d76500
f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc
93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/jscript/jscript_lightbox.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/js/jquery.mmenu.min.all.js

165.231.65.240

200 OK

39 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/jquery.mmenu.min.all.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (401)
Size
39 kB (38800 bytes)
Hash
5b2edbe2f95659b625a0b919ebf98286
1c5722696e849953fccdf41e0f0a01e3f37a80da
a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/js/modernizr.custom.js

165.231.65.240

200 OK

7.7 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/modernizr.custom.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7558)
Size
7.7 kB (7671 bytes)
Hash
02009db489ef4805210aafa21a6b8276
d3c333feb80a2e4045a6a353838171aaee6b878d
0cdb507e0527a90fb5b98b238843f6d2be8ded6d71f40458ff8e75b731405cad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/modernizr.custom.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 7671
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_slick.js

165.231.65.240

200 OK

89 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_slick.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
89 kB (88955 bytes)
Hash
5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/jscript/jscript_slick.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 88955
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/js/classie.js

165.231.65.240

200 OK

1.8 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/classie.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
1.8 kB (1835 bytes)
Hash
a9df1cfb76ce492afd9d13f3320272fd
782b9564f015a2ec7bdf9c89e238fab9b44bd587
717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/classie.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 1835
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/js/uisearch.js

165.231.65.240

200 OK

6.0 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/uisearch.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2051), with CRLF line terminators
Size
6.0 kB (6033 bytes)
Hash
028b2e146eff5f378e21e7fe48131468
af6b54a64da88204e2d2c527c1a941dc17e790e3
86f2854513305e334b86057c752cf3821b72156d1f6aa0fd8132c57bec74d285

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/uisearch.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 6033
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/layer.js

165.231.65.240

200 OK

38 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/layer.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (984)
Size
38 kB (37747 bytes)
Hash
f679a433cba7ebde1bbe121fffd8c60c
4d2159e06a5e80328e0ba9554e02fb2422ed0b36
60c2f96124f2970788057614a90229fe470b13f5420e5794d90d73c9e08ce2f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/js/layer.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 37747
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/js/jquery-1.7.2.min.js

165.231.65.240

200 OK

158 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/jquery-1.7.2.min.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/re_login.js

165.231.65.240

200 OK

11 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/re_login.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
11 kB (10927 bytes)
Hash
7bd679d5c675a092b612e5b4b7a56dbd
6e62d5cf6e15493d5d34173348f255dfe6e9dac5
ca6d5aa9dc260b677698d2eebce1167f1beee6d848768c476b7d7ba25fbadb28

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/js/re_login.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 10927
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_jquery.js

165.231.65.240

200 OK

86 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/jscript/jscript_jquery.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65168)
Size
86 kB (85925 bytes)
Hash
e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/jscript/jscript_jquery.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/js/slick_new.js

165.231.65.240

200 OK

1.9 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/slick_new.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
1.9 kB (1859 bytes)
Hash
37192079541f105b380c4d17cb5b1a45
4cf67b7d006b630a2e063acb52740d1b8cfa08c4
faffeb52bd73185450a0e8bad135ac6209a599c01d2247636e29fe4d640557cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/slick_new.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 1859
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/js/jquery.jxa.js

165.231.65.240

200 OK

2.7 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/jquery.jxa.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
2.7 kB (2658 bytes)
Hash
ca643ec9e974f881e4c904db35bc40c7
759df5ef14b4e2c0c46770b5e408f600972294ca
a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxa.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/js/jquery.jxb.js

165.231.65.240

200 OK

158 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/jquery.jxb.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxb.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/images/hoverimg/20230311311027588.jpg

165.231.65.240

200 OK

36 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/hoverimg/20230311311027588.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 426x426, components 3
Size
36 kB (36111 bytes)
Hash
9ca56253481759140b69e3b3a91db6d1
f4977ebd6c1729edcf06e735cb5795968d3d6e81
a8e7bf16ed4900d478c7e092c5b82ac7a0235151811a6647cf1fa9fed328f55e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/20230311311027588.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 36111
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/hoverimg/202212071540218464.jpg

165.231.65.240

200 OK

5.7 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/hoverimg/202212071540218464.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 270x52, components 3
Size
5.7 kB (5670 bytes)
Hash
a58ff1801d0e7214c8d5a84d6790e778
b71e006024fca3cc13c9073238d986a8622ea3cb
68bf87f39eaf25699fcc8f8df2479da78ae585b00600499424118ef3127899e4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202212071540218464.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 5670
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/includes/templates/haflingeraustralia/images/flag/AUS.png

165.231.65.240

200 OK

918 B

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/images/flag/AUS.png
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
PNG image data, 27 x 17, 8-bit/color RGB, non-interlaced
Size
918 B (918 bytes)
Hash
d10b42510b1f6d550119cfcc2c60e090
582938fa5df0398ec50cbff7bfa96afc8103642b
0adca87f94073f137188332dc11e788c156614eace390c1f2c91a4e4e97d46d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/images/flag/AUS.png HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 918
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

www.haflingeraustralias.com/images/hoverimg/202303111113561355.png

165.231.65.240

200 OK

241 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/hoverimg/202303111113561355.png
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
PNG image data, 1140 x 332, 8-bit colormap, non-interlaced
Size
241 kB (240983 bytes)
Hash
4c705cd994f1b333062ba841f4e88f63
30f291dafd9408ef69eb0c5cbf1ed4bb4f918f60
0d9f862814b6a37933f95604209e2b6ac99293128d4ceb4a2e18f2064f4195d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202303111113561355.png HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 240983
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.haflingeraustralias.com/images/hoverimg/20230311311028230.jpg

165.231.65.240

200 OK

40 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/hoverimg/20230311311028230.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 426x426, components 3
Size
40 kB (39653 bytes)
Hash
4afea82bce6551df93e8bfb766eaf3eb
b881d6658feec1dc0e4f6f7fe2aeb3a37b252f0e
a68bc2881382dfbbd28c0d35b78dfa1986636d63d81ac7101adf425465981163

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/20230311311028230.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 39653
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Api_Women_s_Slippers_Silver_Gr-UHIY-49012.jpg

165.231.65.240

200 OK

21 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Api_Women_s_Slippers_Silver_Gr-UHIY-49012.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
21 kB (21188 bytes)
Hash
351f699ff1b805aefe662d681e3f25ab
1296df120711ee3bb7f5bfd6f9cb9a14e1543cdc
e48c309f5fe09ccb3e6834ea193c30d08996cf74027e51a1c411e3dd167710d3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Api_Women_s_Slippers_Silver_Gr-UHIY-49012.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 21188
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Michl_Men_s_Clogs_Deep_Grey_-ZAHU-21930.jpg

165.231.65.240

200 OK

21 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Michl_Men_s_Clogs_Deep_Grey_-ZAHU-21930.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
21 kB (21367 bytes)
Hash
50a7a34aea4500f0fb69f7b505ee1232
3d5c154287e0a13ad4738ab8524d4b77d1a7f570
a917877b964fa8433a9134e9d24eb08060c796d1545b5245ca192b9393322151

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Michl_Men_s_Clogs_Deep_Grey_-ZAHU-21930.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 21367
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/hoverimg/202303111114247441.jpg

165.231.65.240

200 OK

156 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/hoverimg/202303111114247441.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x600, components 3
Size
156 kB (156194 bytes)
Hash
e79cf6b56d2be217c5cb28f0e882ab28
86bd7dfb79a41c9b8b3702dfb5d97908eb661847
d1b33fcd90b8825be6ab2949a02e5e68f80d91ae8d75a044dcc7fb5c81ee20ae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202303111114247441.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 156194
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Siberia_Men_s_Clogs_Black_OK-OKPD-78036.jpg

165.231.65.240

200 OK

14 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Siberia_Men_s_Clogs_Black_OK-OKPD-78036.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x400, components 3
Size
14 kB (14509 bytes)
Hash
ff9b9fb39810548d63f6087de9883550
fd3f36580d676e9930b5684eec20c6fb6f173c55
ad3e2676093ab4fd3225f656b66c879d3a57105fe5b4009d18a6cc856461cd07

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Siberia_Men_s_Clogs_Black_OK-OKPD-78036.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 14509
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/js/slick.js

165.231.65.240

200 OK

87 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/slick.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
87 kB (87046 bytes)
Hash
b56bbf351b271132a8fdab2ed21c82ab
8274eb6924ead2f5d8616fd162ef24bebd3c0b21
c37611fa51880e07f6a12795e03e5cd3eb4699b82f69be67036f735ffb5ecb60

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/slick.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 87046
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Fletcher_Women_s_Slippers_Blac-YHQE-12468.jpg

165.231.65.240

200 OK

16 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Fletcher_Women_s_Slippers_Blac-YHQE-12468.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
16 kB (15556 bytes)
Hash
664cbba36e95b19d9cfa53f1daecb047
d20184745da576bf69fb633f1057d9042bbda4b1
173b2f27303028a4c4f809ced0e2891e1eedfc58ee19918a65c9b27429a160a0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Fletcher_Women_s_Slippers_Blac-YHQE-12468.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 15556
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_As_Men_s_Slippers_Black_FRUQ-FRUQ-20418.jpg

165.231.65.240

200 OK

13 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_As_Men_s_Slippers_Black_FRUQ-FRUQ-20418.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
13 kB (13402 bytes)
Hash
3b3430fe45ec0631b37201a26b78f66e
821be4ae9ea34f5d0c0b03570b6323863e118ff8
1530ab16f191d95f90ad0dcc9a11281c28744ce5ca2b45cd6690fe1bac79f6e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_As_Men_s_Slippers_Black_FRUQ-FRUQ-20418.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 13402
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Emils_Slide_Men_s_Slippers_Gre-MZIU-35972.jpg

165.231.65.240

200 OK

22 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Emils_Slide_Men_s_Slippers_Gre-MZIU-35972.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
22 kB (21833 bytes)
Hash
114ce7b933422592caec87088f3ecc78
8a4d9ec481de11337120ce664a468300b8c10992
d45bd9f8d007581fd85d62929a4ad6a820dde9e8cb0d9d5affcba9c5495e6cfd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Emils_Slide_Men_s_Slippers_Gre-MZIU-35972.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 21833
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Zigzag_Women_s_Clogs_Grey_SR-SRAY-45921.jpg

165.231.65.240

200 OK

24 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Zigzag_Women_s_Clogs_Grey_SR-SRAY-45921.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
24 kB (24301 bytes)
Hash
1bdc5e0d245cd27d5494818fe63d4b79
3777ca8ad9586003adf16da10b804943057a266f
7dcad2af886876c79073532b6dbdcd9781f47e6787ee3f449f1ded2f458144b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Zigzag_Women_s_Clogs_Grey_SR-SRAY-45921.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 24301
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Stelline_Women_s_Clogs_Grey_-DNGS-23458.jpg

165.231.65.240

200 OK

25 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Stelline_Women_s_Clogs_Grey_-DNGS-23458.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
25 kB (25086 bytes)
Hash
28e23646aac8a58cf8eec3b00801cac3
79b4d242686f5debcd84e05be4277dcf9ca7d3a0
76b1300ea5b8e8482524103773c187f0204d8f7b4609cd0e7ff8d90b99775b15

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Stelline_Women_s_Clogs_Grey_-DNGS-23458.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 25086
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Visby_Women_s_Clogs_Red_XVBU-XVBU-52697.jpg

165.231.65.240

200 OK

20 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Visby_Women_s_Clogs_Red_XVBU-XVBU-52697.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
20 kB (20019 bytes)
Hash
abce8deb8c437c66c931ae6b63c0ec2f
0ddaca786cc52cd0000ac0724a3c7cc7a006ac57
c2f323372a981e0b7e7d223c4e43300fc11369cec69bd4dd3e212d66b8bb9991

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Visby_Women_s_Clogs_Red_XVBU-XVBU-52697.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 20019
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Cuoricini_Women_s_Clogs_Grey_-SBNC-49153.jpg

165.231.65.240

200 OK

20 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Cuoricini_Women_s_Clogs_Grey_-SBNC-49153.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
20 kB (20321 bytes)
Hash
4f59c2a29956006ad62abed50b7a7d24
dd7d41e46e1da144f11f3f4105bf0066ad614299
66166657a1585a8c5d21563abe57b488c6007ae800b24a7be0ef1ce8d0a67800

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Cuoricini_Women_s_Clogs_Grey_-SBNC-49153.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 20321
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Adventure_Women_s_Clogs_Brown_-RDIG-80596.jpg

165.231.65.240

200 OK

16 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Adventure_Women_s_Clogs_Brown_-RDIG-80596.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 400x400, components 3
Size
16 kB (16157 bytes)
Hash
0b3f6f7d037b77c2ebb1755ac0d0a106
41760ec7d9024c951e6e52892f877594360f036e
d654abed480716e1f8300750ae894abe900df17cfaa8cf0feb6aa0e9b0483ff5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Adventure_Women_s_Clogs_Brown_-RDIG-80596.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 16157
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Gz_Women_s_Clogs_Black_FZDM_-FZDM-18763.jpg

165.231.65.240

200 OK

20 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/haflingeraustralia/Haflinger_Gz_Women_s_Clogs_Black_FZDM_-FZDM-18763.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 400x400, components 3
Size
20 kB (19539 bytes)
Hash
0d5ab11e8d757405f6e40457fd2d369d
10884064442e208e4c49fa325d074bef50ad6029
c49cf7710e391578f565fc49b9f321f2815d9b23271f7ada0b8f6f0bdf3e59be

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/haflingeraustralia/Haflinger_Gz_Women_s_Clogs_Black_FZDM_-FZDM-18763.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 19539
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/hoverimg/202303111114506103.jpg

165.231.65.240

200 OK

95 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/hoverimg/202303111114506103.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x600, components 3
Size
95 kB (95237 bytes)
Hash
3e31cd842b652224ce2f4a1715bb41da
89be498526367b6c819eeefbf3d3ef86750942c8
0d1edc1632a458736a323196be1d26d2548499577eda18bde0d9022e9b9bb791

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202303111114506103.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 95237
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.haflingeraustralias.com/images/hoverimg/202303111114504868.jpg

165.231.65.240

200 OK

205 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/images/hoverimg/202303111114504868.jpg
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x600, components 3
Size
205 kB (204770 bytes)
Hash
d53cbf870bea9ac2284903dfc1a01abf
06a410f7d4d39c78e98dd844b26ab2ff794ab404
1ac24e9ec945c6312d14a14344658e116fd05dd266b53276460e4ff623a44a26

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/hoverimg/202303111114504868.jpg HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 204770
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2

142.250.74.131

200 OK

128 kB

URL GET HTTP/2
fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 128352, version 1.0
Size
128 kB (128352 bytes)
Hash
53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1

HTTP Headers

GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.haflingeraustralias.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:55:24 GMT
expires: Fri, 09 May 2025 01:55:24 GMT
cache-control: public, max-age=31536000
age: 60343
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.haflingeraustralias.com/js/jquery-1.7.2.min.js

165.231.65.240

200 OK

158 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/js/jquery-1.7.2.min.js
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:07 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:17 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/theme/default/layer.css?v=3.5.0

165.231.65.240

200 OK

17 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/js/theme/default/layer.css?v=3.5.0
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
17 kB (17360 bytes)
Hash
94ae7c3e6834f7e25a85ff97c2d9cd88
953ea6a358fdbd59f99eef88c93f467a749d27e4
38d12ae4119d3c7ae42cf9ffb240d53b351716c8f44ae4b1acb0f4c15b003eb9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/js/theme/default/layer.css?v=3.5.0 HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:08 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:20 GMT
Accept-Ranges: bytes
Content-Length: 17360
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css

www.haflingeraustralias.com/favicon.ico

165.231.65.240

200 OK

1.2 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/favicon.ico
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
6758667a37611c20b547fe252464d8b5
a1394e0e222b3f7b65f48bfa442d71bd93df9112
8005dcdb09c70dfb0bfef41ce8124a0e1a98f88a49a2531efafa1529669031b3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session; zenid=71jtsunu4605hers755ngbhug7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:08 GMT
Server: Apache
Last-Modified: Tue, 05 Mar 2024 09:22:19 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/x-icon

www.haflingeraustralias.com/api/country

165.231.65.240

200 OK

110 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/api/country
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
JSON text data
Size
110 kB (109933 bytes)
Hash
5c127023a74728c62b02c5a1938af6d9
9e618f725e5988a787ccbc7f78e57ef798147d06
5192170eefc545ad9990712e6b6625f1bc901883eacf5c8738f6372db59d1f2a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /api/country HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 18:41:08 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: cookie_test=please_accept_for_session; expires=Sat, 08-Jun-2024 18:41:08 GMT; Max-Age=2592000; path=/
zenid=q95asap4pejbij63sjq4mj4f01; path=/; HttpOnly
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json

www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/ajax-loader.gif

165.231.65.240

404 Not Found

7.7 kB

URL GET HTTP/1.1
www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/ajax-loader.gif
IP
165.231.65.240:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuercPanel, Inc.
Subjecthaflingeraustralias.com
FingerprintB3:C8:73:08:70:D3:65:64:2E:08:07:6E:6F:92:3A:02:CF:7C:BF:98
ValidityFri, 26 Apr 2024 00:00:00 GMT - Thu, 25 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (8069), with no line terminators
Size
7.7 kB (7668 bytes)
Hash
316de19333ac1b13327b8c0606b21b11
992835b10a29c882b4213f9dbea9e0a295bba1ad
ff5a013c51a899cfbf2bd9459e7657008250db4ed55df008862df2453fc7d0db

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/haflingeraustralia/css/ajax-loader.gif HTTP/1.1
Host: www.haflingeraustralias.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/includes/templates/haflingeraustralia/css/stylesheet_slick.css
Cookie: cookie_test=please_accept_for_session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 09 May 2024 18:41:08 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: cookie_test=please_accept_for_session; expires=Sat, 08-Jun-2024 18:41:08 GMT; Max-Age=2592000; path=/
zenid=71jtsunu4605hers755ngbhug7; path=/; HttpOnly
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

fonts.googleapis.com/icon?family=Material+Icons

142.250.74.106

200 OK

565 B

URL GET HTTP/2
fonts.googleapis.com/icon?family=Material+Icons
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.haflingeraustralias.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (588), with no line terminators
Size
565 B (565 bytes)
Hash
959a533a3dc02649e0cc3f8f67d942af
34db49ff64aed8b51beaba5b9928ad504a4df335
24864ed3ee6fab66640980d4c24640e579e5583764a8ee8c4f09decf27977247

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.haflingeraustralias.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 May 2024 18:41:07 GMT
date: Thu, 09 May 2024 18:41:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML