Report - scnv.io/5qGX?3107

Report Overview

Submitted URL
scnv.io/5qGX?3107
IP
35.166.58.205
ASN
#16509 AMAZON-02
Submitted
2024-04-16 04:22:23
Access
public
Website Title
QR Code Expired
Final URL
scnv.io/5qGX?3107
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
74

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-15	1.3 kB	9.0 kB	142.250.74.74
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-15	1.0 kB	68 kB	216.58.207.227
scnv.io	unknown	2014-03-24	2015-02-20	2024-03-10	18 kB	2.0 MB	35.166.58.205

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed
2024-04-16	medium	scnv.io	Sinkholed

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	scnv.io/static/plugins/alpinejs-3.13.3/alpinejs.min.js	43 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/plugins/alpinejs-3.13.3/alpinejs.min.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:24 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 6b715bf4e904a63737e5b800a2ae52fd f2f3c838822f25919994658fd9e370dcd22b6502 4a75bc875a84f3500f2ca3ca5d44caf27eedd5debe413c6394e43f9cfec6dfbe Loading...

	scnv.io/static/js/toast.js	695 B	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/toast.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:24 Last Seen2024-04-16 06:22:26 Times Seen2 Hash a0594fb8717432fec723c9c5ade4ebb2 0d936d9c2c38891943becac13b3b7a86d0ce8f79 31d3839c9d4abeb8e3f6e9d7e5d0844d33ec989a043957c8ec7990ef60d05c6c Loading...

	scnv.io/static/js/qr-info-processor.js	1.6 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/qr-info-processor.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:24 Last Seen2024-04-16 06:22:26 Times Seen2 Hash c5fe568060ee339ea5660719197b57b0 9dc3f5a83b0bf1c5b555941567b02882ca2d83b4 3e50e2292bea6c9af91c5621662c55f70e8ad8499f344582ab4b74f334c029d8 Loading...

	scnv.io/static/js/business_card.js	34 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/business_card.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:24 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 58d34e8aa4b3d4c0aeab85a67b903e3b 7f9cf44a22ead07067ccd595414190d4e927d233 7060eeae623ccc6da014aab85fcf3903dc204d0704f8f05ea507cb45dea5388e Loading...

	scnv.io/static/plugins/js-zip-3.1.5/jszip.min.js	102 kB	2023-03-08	2024-04-16
Pretty URL scnv.io/static/plugins/js-zip-3.1.5/jszip.min.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:54:00 Last Seen2024-04-16 06:22:25 Times Seen135 Hash 6266a7868cc6d88b1b99bfa411ce5108 dd6c9829408677a15a9bbc821e5e2c86a4e8936b 3d9fcebdd5f1116d6ede7b930140928dde25c9aa09dd4269bff5f5d71d868b97 Loading...

	scnv.io/static/js/download-file.js	1.9 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/download-file.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash c9e8d70fd28e25d764b89ab51c861183 713d8b5591ee6b931f6f37777150bcca8bc14011 6b37afebcbce86ba3bfb81279c7c9d0570616641a149ad7f9ac3aaadac9ade61 Loading...

	scnv.io/static/js/form_validation.js	13 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/form_validation.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 30766735c03be60789b1530985aa0b92 49664d2e3ca880b32e17966610c5fcf9c6e6e5bb c1a27351a5ce41dfab226cd950610ee887f866818d655581e731dfd92ec03d6f Loading...

	scnv.io/static/js/rsvp.js	12 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/rsvp.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 6418457b77202acc4bf7655ef9a4c127 7e976cfa3c06409ca9d1bf9c47722a6ea1e4a6a5 c73f39461ccfccd9437198fc2940ea338a6bd9ff81d46364acd6291c1bba2863 Loading...

	scnv.io/static/js/event.js	6.5 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/event.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 1cbbcb0dafd5e51f21299eb708fc4412 259f2dd80ee8cf296c5fbd093141a6220c50410e f2cae6928dedf68c872bc8b247a9b1b3cbe01963559b09ededa674414d915d57 Loading...

	scnv.io/5qGX?3107	0 B	2023-03-07	2024-04-29
Pretty URL scnv.io/5qGX?3107 IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 19:20:11 Times Seen37187036 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	scnv.io/static/plugins/htmx-1.9.8/htmx.min.js	47 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/plugins/htmx-1.9.8/htmx.min.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash f7fdd3fc2fbdccc0a392bc2bbbc41c7d 92d9c38096375183283f251126aa13595ba0008a c4fce4dc5cc9c8c3c9bf1aa788d54bb2cb25cd27114eb06551494ff61c30d6fb Loading...

	scnv.io/static/plugins/pdfjs-3.11.174/pdf.min.js	320 kB	2023-11-14	2024-04-16
Pretty URL scnv.io/static/plugins/pdfjs-3.11.174/pdf.min.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 10:33:51 Last Seen2024-04-16 06:22:25 Times Seen7 Hash 96de323330f8b8336f637a0051835e00 a4641a2626f396d0272498e887ea09e4d013e493 5b5799e6f8c680663207ac5b42ee14eed2a406fa7af48f50c154f0c0b1566946 Loading...

	scnv.io/static/plugins/pdfjs-3.11.174/pdf.worker.min.js	1.1 MB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/plugins/pdfjs-3.11.174/pdf.worker.min.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:25 Times Seen1 Hash a53a71a2a5d618ed0f86ebf099db032a 49162d546a1a5a11bd2c932b2d1b2520daef1ec3 feabdf309770ed24bba31a5467836cdc8cf639c705af27d52b585b041bb8527b Loading...

	scnv.io/static/js/video.js	5.4 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/video.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash e120af6c7617551e21387addaf788a20 a398cf6015d0b24d1afb14a7bce25fee33f8e470 43d828d65997f6f29ca655fb05d84924fd4a2beb3f0460feaeb2b973c7f7bd05 Loading...

	scnv.io/static/js/fonts.js	346 B	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/fonts.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash a3a47d209afa7db6eeb6e893c87d091a bd84b3ddcdab1436bc131a8ca61818cf4c767f30 8cd5d31d2af0bfbb6113441acc8376fec68a472752c0b68f95cb0a5129a6b92f Loading...

	scnv.io/static/plugins/vanilla-calendar-2.9.2/vanilla-calendar.min.js	38 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/plugins/vanilla-calendar-2.9.2/vanilla-calendar.min.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 67964efefd659dece8d7d442c3ba581e c0359574276ac15819370e1ce1ab758bfd2388cc 8fd753ebeb10d13276514c1b66adac40383a851c8d706abb32bcaf749eda4f07 Loading...

	scnv.io/static/js/spinner.js	249 B	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/spinner.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash c5b63a54153f97e45c4406dde26b51e8 d20e533591d81fbc1a38372e7c39504303112636 a6299844028dfd65f22266061c7c3e1957c42675d6cef0803b645f7d87599cb1 Loading...

	scnv.io/static/js/feedback-form.js	4.0 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/feedback-form.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 79e94bd1d6f57f13ca77f7ac3c2385ce 9e1d7a15984edbecb53b8b90949a4880388ea002 67abbb0177d2b298d28037e46165a3a30612e3c5998d88e186a8aaf531cbf522 Loading...

	scnv.io/static/js/coupon.js	553 B	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/coupon.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 39ec9e91ccd4f2987bfa63454d3b7db4 78166e8e9f004b45fee20900471984ca196bea9a 037fd65472e2026965f6195f7dba0942ef396cc399052b25310c42a3c4af1b14 Loading...

	scnv.io/static/js/event_tracking.js	744 B	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/event_tracking.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash b9e95e070c52b9eb537760a104d112e4 5fef9a2fc41acdb65dcd26c87927efccb1ab7999 f6b758ee5448906608da961b3fd3c453b164f62c7f1017a7e379f156a603998c Loading...

	scnv.io/static/js/audio.js	11 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/audio.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash c990eec089bad11663156d74585a1fad 16a9a476e1762ad96eb128740f17b4db738ca429 8276e838093eebab11b8db5dc66d9bbf0e894ee57647c71072778b594f8c3405 Loading...

	scnv.io/static/js/index.js	455 B	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/index.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash cc338c594ecd6b67414646d0aa65c355 7382e1c9e914a3a4aafe50b9d829567a658a70c6 69dd8aeece36a59134cfeb2dcc2a62efc949739b252c0149d7e3648cbad25c8c Loading...

	scnv.io/static/js/document.js	427 B	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/document.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash b9e688b8aa8b2398ab05f6a5bbf33a5b 0ce44e8ad9511222ad12e1095497d4b4c467d271 521a6007d87229097eb842927211bac6a906b3ece85dc1ee088a0ea00d76be8f Loading...

	scnv.io/static/plugins/ouical/ouical.js	7.7 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/plugins/ouical/ouical.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash ce27a0ffa904d6fb34f8ed7a92f61ab1 bdc40004a91ec4abea76dcc72cf60aa3d75beb15 ada9f4307147075975ce7e60b3bc9982ccad1eebdbbc6fdeab58c6a6a1ac30f9 Loading...

	scnv.io/static/js/restaurant.js	2.8 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/restaurant.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 2fabc14386cf5c3db0b0421873d0dabf 6bb8135f6dbe3e2fb506e256ac45476905e69948 f88e7388fc3ec499bdea22bf3ba69de9879964d9c4222ca62f5078319f3de199 Loading...

	scnv.io/static/js/carousel.js	457 B	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/carousel.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash 7c9b35f52994f3d9958ae9ffba4bc787 109929c9fc72c289bd27ab5e328947a162ebb72f ce0d5ccf508fc1337d74adf3f60c6fcd36c5205333d726c628347ba3afaa0573 Loading...

	scnv.io/static/js/social-media.js	6.1 kB	2024-04-16	2024-04-16
Pretty URL scnv.io/static/js/social-media.js IP 35.166.58.205 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 06:22:25 Last Seen2024-04-16 06:22:26 Times Seen2 Hash db41391dffcecd243d2ce6494f046f5b d11d57cf09110de05b2054deae2aa14b0a85c406 769088869ead7736408e9b6cd869cb47f6e0eed0660957c6ab77ce4e5d1d89e0 Loading...

HTTP Transactions (42)

URL IP Response Size

scnv.io/5qGX?3107

35.166.58.205

403 Forbidden

1.2 kB

URL User Request GET HTTP/2
scnv.io/5qGX?3107
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
HTML document, ASCII text
Size
1.2 kB (1249 bytes)
Hash
2568f027709efe46c4c5e4666183f2fe
d6b2a4b592ff98921a8e6f93ec35ec1858cd8370
8a004ee604bcae827bbeccad6d6eb86db69dd557879e1bd595e8c52297c5d836

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5qGX?3107 HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-language: en
content-security-policy-report-only: img-src 'self' data: https://* *.amazonaws.com; font-src 'self' data: https://fonts.gstatic.com; form-action 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.cloudflare.com static.cloudflareinsights.com; default-src 'none'; style-src-elem 'self' 'unsafe-inline' *.googleapis.com; base-uri 'self'; frame-src 'self' *.youtube.com *.amazonaws.com; connect-src 'self' *.google.com *.amazonaws.com; media-src 'self' *.amazonaws.com; frame-ancestors 'none'; style-src 'self' 'unsafe-inline' *.googleapis.com; report-uri https://scanova.uriports.com/reports/report/
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
date: Tue, 16 Apr 2024 04:21:57 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin, same-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
set-cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k; expires=Tue, 16 Apr 2024 04:26:57 GMT; HttpOnly; Max-Age=300; Path=/; SameSite=Lax; Secure
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Language, Cookie, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: DENY, DENY
x-xss-protection: 1; mode=block
content-length: 1249
X-Firefox-Spdy: h2

scnv.io/5qGX?3107

35.166.58.205

403 Forbidden

1.2 kB

URL User Request GET HTTP/2
scnv.io/5qGX?3107
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
HTML document, ASCII text
Size
1.2 kB (1249 bytes)
Hash
2568f027709efe46c4c5e4666183f2fe
d6b2a4b592ff98921a8e6f93ec35ec1858cd8370
8a004ee604bcae827bbeccad6d6eb86db69dd557879e1bd595e8c52297c5d836

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5qGX?3107 HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-language: en
content-security-policy-report-only: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.cloudflare.com static.cloudflareinsights.com; media-src 'self' *.amazonaws.com; form-action 'self'; default-src 'none'; base-uri 'self'; frame-src 'self' *.youtube.com *.amazonaws.com; style-src-elem 'self' 'unsafe-inline' *.googleapis.com; frame-ancestors 'none'; font-src 'self' data: https://fonts.gstatic.com; style-src 'self' 'unsafe-inline' *.googleapis.com; connect-src 'self' *.google.com *.amazonaws.com; img-src 'self' data: https://* *.amazonaws.com; report-uri https://scanova.uriports.com/reports/report/
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
date: Tue, 16 Apr 2024 04:21:57 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin, same-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
set-cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k; expires=Tue, 16 Apr 2024 04:26:57 GMT; HttpOnly; Max-Age=300; Path=/; SameSite=Lax; Secure
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Language, Cookie, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: DENY, DENY
x-xss-protection: 1; mode=block
content-length: 1249
X-Firefox-Spdy: h2

scnv.io/static/plugins/fontawesome/css/solid.min.css

35.166.58.205

200 OK

331 B

URL GET HTTP/2
scnv.io/static/plugins/fontawesome/css/solid.min.css
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text, with very long lines (353)
Size
331 B (331 bytes)
Hash
b4b6a21001bc977da32ed4c246e356bc
65f70e8978fb1db423c007310387573b635498aa
4de6067d6c116b81dd1a4fcd252e3c3e2297ae01c576b63fabac8f8655b4787a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/fontawesome/css/solid.min.css HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: text/css
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 331
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat:400,500&display=swap

142.250.74.74

200 OK

1.1 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Montserrat:400,500&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
gzip compressed data, max compression
Size
1.1 kB (1070 bytes)
Hash
549382550ff7ae61b43db4b4054e66cd
2032d8bd09849a9eed405908f94f9fc7ad9231fe
913a28db84876695b9fc1a43d94c1d3a1d3170ad212585832b75308cd1446d87

HTTP Headers

GET /css?family=Montserrat:400,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 04:21:58 GMT
date: Tue, 16 Apr 2024 04:21:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,500&display=swap

142.250.74.74

200 OK

4.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
gzip compressed data, max compression
Size
4.3 kB (4280 bytes)
Hash
7d9b7d37468a4e34c2318f1f9606d5bc
668358dfe1933d699f056c89bdeb5c8a0476d696
e4eb16bb01dea9453f88a27bf23d68118b0ac4b59ea973e8770302e5de03698d

HTTP Headers

GET /css?family=Roboto:300,400,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 04:21:58 GMT
date: Tue, 16 Apr 2024 04:21:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

scnv.io/static/plugins/ouical/ouical.js

35.166.58.205

200 OK

2.5 kB

URL GET HTTP/2
scnv.io/static/plugins/ouical/ouical.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
JavaScript source, ASCII text, with very long lines (625)
Size
2.5 kB (2518 bytes)
Hash
ce27a0ffa904d6fb34f8ed7a92f61ab1
bdc40004a91ec4abea76dcc72cf60aa3d75beb15
ada9f4307147075975ce7e60b3bc9982ccad1eebdbbc6fdeab58c6a6a1ac30f9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/ouical/ouical.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:44 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 2518
X-Firefox-Spdy: h2

scnv.io/static/js/index.js

35.166.58.205

200 OK

455 B

URL GET HTTP/2
scnv.io/static/js/index.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
455 B (455 bytes)
Hash
cc338c594ecd6b67414646d0aa65c355
7382e1c9e914a3a4aafe50b9d829567a658a70c6
69dd8aeece36a59134cfeb2dcc2a62efc949739b252c0149d7e3648cbad25c8c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/index.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 455
X-Firefox-Spdy: h2

scnv.io/static/js/toast.js

35.166.58.205

200 OK

266 B

URL GET HTTP/2
scnv.io/static/js/toast.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
266 B (266 bytes)
Hash
a0594fb8717432fec723c9c5ade4ebb2
0d936d9c2c38891943becac13b3b7a86d0ce8f79
31d3839c9d4abeb8e3f6e9d7e5d0844d33ec989a043957c8ec7990ef60d05c6c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/toast.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 266
X-Firefox-Spdy: h2

scnv.io/static/js/spinner.js

35.166.58.205

200 OK

249 B

URL GET HTTP/2
scnv.io/static/js/spinner.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
249 B (249 bytes)
Hash
c5b63a54153f97e45c4406dde26b51e8
d20e533591d81fbc1a38372e7c39504303112636
a6299844028dfd65f22266061c7c3e1957c42675d6cef0803b645f7d87599cb1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/spinner.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 249
X-Firefox-Spdy: h2

scnv.io/static/js/event_tracking.js

35.166.58.205

200 OK

343 B

URL GET HTTP/2
scnv.io/static/js/event_tracking.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
343 B (343 bytes)
Hash
b9e95e070c52b9eb537760a104d112e4
5fef9a2fc41acdb65dcd26c87927efccb1ab7999
f6b758ee5448906608da961b3fd3c453b164f62c7f1017a7e379f156a603998c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/event_tracking.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 343
X-Firefox-Spdy: h2

scnv.io/static/js/download-file.js

35.166.58.205

200 OK

687 B

URL GET HTTP/2
scnv.io/static/js/download-file.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
687 B (687 bytes)
Hash
c9e8d70fd28e25d764b89ab51c861183
713d8b5591ee6b931f6f37777150bcca8bc14011
6b37afebcbce86ba3bfb81279c7c9d0570616641a149ad7f9ac3aaadac9ade61

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/download-file.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 687
X-Firefox-Spdy: h2

scnv.io/static/js/form_validation.js

35.166.58.205

200 OK

3.3 kB

URL GET HTTP/2
scnv.io/static/js/form_validation.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
JavaScript source, ASCII text
Size
3.3 kB (3251 bytes)
Hash
30766735c03be60789b1530985aa0b92
49664d2e3ca880b32e17966610c5fcf9c6e6e5bb
c1a27351a5ce41dfab226cd950610ee887f866818d655581e731dfd92ec03d6f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/form_validation.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 3251
X-Firefox-Spdy: h2

scnv.io/static/js/feedback-form.js

35.166.58.205

200 OK

1.2 kB

URL GET HTTP/2
scnv.io/static/js/feedback-form.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
1.2 kB (1234 bytes)
Hash
79e94bd1d6f57f13ca77f7ac3c2385ce
9e1d7a15984edbecb53b8b90949a4880388ea002
67abbb0177d2b298d28037e46165a3a30612e3c5998d88e186a8aaf531cbf522

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/feedback-form.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 1234
X-Firefox-Spdy: h2

scnv.io/static/js/rsvp.js

35.166.58.205

200 OK

2.5 kB

URL GET HTTP/2
scnv.io/static/js/rsvp.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
2.5 kB (2457 bytes)
Hash
6418457b77202acc4bf7655ef9a4c127
7e976cfa3c06409ca9d1bf9c47722a6ea1e4a6a5
c73f39461ccfccd9437198fc2940ea338a6bd9ff81d46364acd6291c1bba2863

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/rsvp.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 2457
X-Firefox-Spdy: h2

scnv.io/static/js/qr-info-processor.js

35.166.58.205

200 OK

572 B

URL GET HTTP/2
scnv.io/static/js/qr-info-processor.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
C++ source, ASCII text
Size
572 B (572 bytes)
Hash
c5fe568060ee339ea5660719197b57b0
9dc3f5a83b0bf1c5b555941567b02882ca2d83b4
3e50e2292bea6c9af91c5621662c55f70e8ad8499f344582ab4b74f334c029d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/qr-info-processor.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 572
X-Firefox-Spdy: h2

scnv.io/static/js/event.js

35.166.58.205

200 OK

1.9 kB

URL GET HTTP/2
scnv.io/static/js/event.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
1.9 kB (1867 bytes)
Hash
1cbbcb0dafd5e51f21299eb708fc4412
259f2dd80ee8cf296c5fbd093141a6220c50410e
f2cae6928dedf68c872bc8b247a9b1b3cbe01963559b09ededa674414d915d57

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/event.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 1867
X-Firefox-Spdy: h2

scnv.io/static/js/carousel.js

35.166.58.205

200 OK

457 B

URL GET HTTP/2
scnv.io/static/js/carousel.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
457 B (457 bytes)
Hash
7c9b35f52994f3d9958ae9ffba4bc787
109929c9fc72c289bd27ab5e328947a162ebb72f
ce0d5ccf508fc1337d74adf3f60c6fcd36c5205333d726c628347ba3afaa0573

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/carousel.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 457
X-Firefox-Spdy: h2

scnv.io/static/js/coupon.js

35.166.58.205

200 OK

249 B

URL GET HTTP/2
scnv.io/static/js/coupon.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
249 B (249 bytes)
Hash
39ec9e91ccd4f2987bfa63454d3b7db4
78166e8e9f004b45fee20900471984ca196bea9a
037fd65472e2026965f6195f7dba0942ef396cc399052b25310c42a3c4af1b14

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/coupon.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 249
X-Firefox-Spdy: h2

scnv.io/static/js/video.js

35.166.58.205

200 OK

1.4 kB

URL GET HTTP/2
scnv.io/static/js/video.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
C++ source, ASCII text
Size
1.4 kB (1396 bytes)
Hash
e120af6c7617551e21387addaf788a20
a398cf6015d0b24d1afb14a7bce25fee33f8e470
43d828d65997f6f29ca655fb05d84924fd4a2beb3f0460feaeb2b973c7f7bd05

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/video.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 1396
X-Firefox-Spdy: h2

scnv.io/static/js/audio.js

35.166.58.205

200 OK

2.7 kB

URL GET HTTP/2
scnv.io/static/js/audio.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
2.7 kB (2652 bytes)
Hash
c990eec089bad11663156d74585a1fad
16a9a476e1762ad96eb128740f17b4db738ca429
8276e838093eebab11b8db5dc66d9bbf0e894ee57647c71072778b594f8c3405

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/audio.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 2652
X-Firefox-Spdy: h2

scnv.io/static/js/social-media.js

35.166.58.205

200 OK

1.4 kB

URL GET HTTP/2
scnv.io/static/js/social-media.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
1.4 kB (1421 bytes)
Hash
db41391dffcecd243d2ce6494f046f5b
d11d57cf09110de05b2054deae2aa14b0a85c406
769088869ead7736408e9b6cd869cb47f6e0eed0660957c6ab77ce4e5d1d89e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/social-media.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 1421
X-Firefox-Spdy: h2

scnv.io/static/js/restaurant.js

35.166.58.205

200 OK

903 B

URL GET HTTP/2
scnv.io/static/js/restaurant.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
903 B (903 bytes)
Hash
2fabc14386cf5c3db0b0421873d0dabf
6bb8135f6dbe3e2fb506e256ac45476905e69948
f88e7388fc3ec499bdea22bf3ba69de9879964d9c4222ca62f5078319f3de199

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/restaurant.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 903
X-Firefox-Spdy: h2

scnv.io/static/js/document.js

35.166.58.205

200 OK

427 B

URL GET HTTP/2
scnv.io/static/js/document.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
427 B (427 bytes)
Hash
b9e688b8aa8b2398ab05f6a5bbf33a5b
0ce44e8ad9511222ad12e1095497d4b4c467d271
521a6007d87229097eb842927211bac6a906b3ece85dc1ee088a0ea00d76be8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/document.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 427
X-Firefox-Spdy: h2

scnv.io/static/images/Expired-QR-Code.png

35.166.58.205

200 OK

2.1 kB

URL GET HTTP/2
scnv.io/static/images/Expired-QR-Code.png
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
PNG image data, 116 x 116, 8-bit/color RGBA, non-interlaced
Size
2.1 kB (2067 bytes)
Hash
0d8f19662bebf89632b8361a0459cefc
636bd98e2c373f750ad9642d40d72f21a354f24e
b1e3381ca6e716bf67b52a097f58c88fac58e4386eb53ce449411496d18519b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/Expired-QR-Code.png HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-type: image/png
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 2067
X-Firefox-Spdy: h2

scnv.io/static/js/fonts.js

35.166.58.205

200 OK

346 B

URL GET HTTP/2
scnv.io/static/js/fonts.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
346 B (346 bytes)
Hash
a3a47d209afa7db6eeb6e893c87d091a
bd84b3ddcdab1436bc131a8ca61818cf4c767f30
8cd5d31d2af0bfbb6113441acc8376fec68a472752c0b68f95cb0a5129a6b92f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/fonts.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 346
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scnv.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:38:02 GMT
expires: Fri, 11 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 438237
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://scnv.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:38:02 GMT
expires: Fri, 11 Apr 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 438237
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

scnv.io/static/fonts/LucidaGrande/LucidaGrande.css

35.166.58.205

200 OK

240 B

URL GET HTTP/2
scnv.io/static/fonts/LucidaGrande/LucidaGrande.css
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
240 B (240 bytes)
Hash
97ca4a40aed3661f4c7f92a13fc02841
a9a9c0edcca80c249a3c84052e342a1e389681d2
851dc50bf8693572557a474e0a537db538375429239e43ae7da77df4f5b6e13f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/LucidaGrande/LucidaGrande.css HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: text/css
date: Tue, 16 Apr 2024 04:21:59 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 240
X-Firefox-Spdy: h2

scnv.io/static/fonts/ComicSansMS/ComicSansMS.css

35.166.58.205

200 OK

244 B

URL GET HTTP/2
scnv.io/static/fonts/ComicSansMS/ComicSansMS.css
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text
Size
244 B (244 bytes)
Hash
a711573da5e533c1dfaf9d72a12c8abf
7a95350241c90c42d054d8c345c13a999ffcf0d1
37100b1a8794a45b15011dd1a0a5d1d645f4ec07e3f9c4a1b0c82755da12b6ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/fonts/ComicSansMS/ComicSansMS.css HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: text/css
date: Tue, 16 Apr 2024 04:21:59 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 244
X-Firefox-Spdy: h2

scnv.io/static/favicon.ico

35.166.58.205

200 OK

916 B

URL GET HTTP/2
scnv.io/static/favicon.ico
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
916 B (916 bytes)
Hash
5b243c2f042cd1f6e26a3b2ef179832f
92860ba2759eddc8eec02ff0703ea0d529857812
a4d72e99a7596b43244ba6bf0711b2d00a1d347a39d92f84407f3c057b767cb1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/favicon.ico HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-type: image/vnd.microsoft.icon
date: Tue, 16 Apr 2024 04:21:59 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-length: 916
X-Firefox-Spdy: h2

scnv.io/static/plugins/js-zip-3.1.5/jszip.min.js

35.166.58.205

200 OK

36 kB

URL GET HTTP/2
scnv.io/static/plugins/js-zip-3.1.5/jszip.min.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
gzip compressed data
Size
36 kB (36252 bytes)
Hash
6581ef3504d2a80c61ea8239c93de9f9
b87bf93a9a36cd18aa22391e5117a9b99a0885da
105911ae5f225f73d6076fff285b2c4be4777503f1bfb7d3718070aae5fca8af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/js-zip-3.1.5/jszip.min.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:44 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

scnv.io/static/CACHE/css/output.2a221d326432.css

35.166.58.205

200 OK

213 kB

URL GET HTTP/2
scnv.io/static/CACHE/css/output.2a221d326432.css
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text, with very long lines (65326)
Size
213 kB (212756 bytes)
Hash
4382e324e92720544f6c6c00c608ba5a
9d2457182208825ca33bbf6787207ce9d36b1385
2a221d326432130865dadcc439782a1f5f894776b8065ac3fe0758a855fe9892

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/CACHE/css/output.2a221d326432.css HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: text/css
date: Tue, 16 Apr 2024 04:21:58 GMT
expires: Fri, 14 Apr 2034 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:32:11 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

scnv.io/static/plugins/fontawesome/css/brands.min.css

35.166.58.205

200 OK

19 kB

URL GET HTTP/2
scnv.io/static/plugins/fontawesome/css/brands.min.css
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text, with very long lines (18636)
Size
19 kB (18855 bytes)
Hash
32804996baacc18f6a2ebb3d2b3dc667
75e0c506eff6c93d4d3311b300d251c48236b714
f4ab507a816906136d0ea985f089ee666acd8a10850ec718e67cd98ca23a8081

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/fontawesome/css/brands.min.css HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: text/css
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:41 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

scnv.io/static/js/business_card.js

35.166.58.205

200 OK

34 kB

URL GET HTTP/2
scnv.io/static/js/business_card.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
JavaScript source, ASCII text
Size
34 kB (34077 bytes)
Hash
58d34e8aa4b3d4c0aeab85a67b903e3b
7f9cf44a22ead07067ccd595414190d4e927d233
7060eeae623ccc6da014aab85fcf3903dc204d0704f8f05ea507cb45dea5388e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/js/business_card.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Round

142.250.74.74

200 OK

1.8 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Round
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (1842), with no line terminators
Size
1.8 kB (1773 bytes)
Hash
1994440b8b28d36e07e838885ecac97e
ca43100bb54df0601d78c8b97f9143f7af64596d
54da01d5fa3010119637ca589910c7ef2b52b0f51bed428be957ef95f80e69d8

HTTP Headers

GET /css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Round HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 04:21:58 GMT
date: Tue, 16 Apr 2024 04:21:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

scnv.io/static/plugins/vanilla-calendar-2.9.2/vanilla-calendar.min.js

35.166.58.205

200 OK

38 kB

URL GET HTTP/2
scnv.io/static/plugins/vanilla-calendar-2.9.2/vanilla-calendar.min.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
JavaScript source, ASCII text, with very long lines (37474)
Size
38 kB (37571 bytes)
Hash
67964efefd659dece8d7d442c3ba581e
c0359574276ac15819370e1ce1ab758bfd2388cc
8fd753ebeb10d13276514c1b66adac40383a851c8d706abb32bcaf749eda4f07

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/vanilla-calendar-2.9.2/vanilla-calendar.min.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:42 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

scnv.io/static/plugins/alpinejs-3.13.3/alpinejs.min.js

35.166.58.205

200 OK

43 kB

URL GET HTTP/2
scnv.io/static/plugins/alpinejs-3.13.3/alpinejs.min.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
JavaScript source, ASCII text, with very long lines (36769)
Size
43 kB (43440 bytes)
Hash
6b715bf4e904a63737e5b800a2ae52fd
f2f3c838822f25919994658fd9e370dcd22b6502
4a75bc875a84f3500f2ca3ca5d44caf27eedd5debe413c6394e43f9cfec6dfbe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/alpinejs-3.13.3/alpinejs.min.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

scnv.io/static/plugins/fontawesome/css/fontawesome.min.css

35.166.58.205

200 OK

81 kB

URL GET HTTP/2
scnv.io/static/plugins/fontawesome/css/fontawesome.min.css
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text, with very long lines (52276)
Size
81 kB (80823 bytes)
Hash
cec5567ac2839f3a11b7cf23c59de2bf
c562501b761480adb1b4db14b6b09981b3510ac8
f8bd27657d5373067aa3e9d8885497855c6284d495706dfb1ccdf0cdc0bc3391

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/fontawesome/css/fontawesome.min.css HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: text/css
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:43 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

scnv.io/static/plugins/htmx-1.9.8/htmx.min.js

35.166.58.205

200 OK

47 kB

URL GET HTTP/2
scnv.io/static/plugins/htmx-1.9.8/htmx.min.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
JavaScript source, ASCII text, with very long lines (46674), with no line terminators
Size
47 kB (46674 bytes)
Hash
f7fdd3fc2fbdccc0a392bc2bbbc41c7d
92d9c38096375183283f251126aa13595ba0008a
c4fce4dc5cc9c8c3c9bf1aa788d54bb2cb25cd27114eb06551494ff61c30d6fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/htmx-1.9.8/htmx.min.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:44 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

scnv.io/static/plugins/pdfjs-3.11.174/pdf.worker.min.js

35.166.58.205

200 OK

1.1 MB

URL GET HTTP/2
scnv.io/static/plugins/pdfjs-3.11.174/pdf.worker.min.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type

Size
1.1 MB (1087212 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/pdfjs-3.11.174/pdf.worker.min.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:44 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

scnv.io/static/plugins/vanilla-calendar-2.9.2/vanilla-calendar.min.css

35.166.58.205

200 OK

46 kB

URL GET HTTP/2
scnv.io/static/plugins/vanilla-calendar-2.9.2/vanilla-calendar.min.css
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type
ASCII text, with very long lines (45473)
Size
46 kB (45570 bytes)
Hash
1a4c476fa39f55db20351bf32155c7c3
67464ea0e8007db94749b5f07b47bd63c4bbed6d
c91bf6474bcfd14d9cda9c03f39dcad972b738ac22bccd33655620dda628fad7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/vanilla-calendar-2.9.2/vanilla-calendar.min.css HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: text/css
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:44 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

scnv.io/static/plugins/pdfjs-3.11.174/pdf.min.js

35.166.58.205

200 OK

320 kB

URL GET HTTP/2
scnv.io/static/plugins/pdfjs-3.11.174/pdf.min.js
IP
35.166.58.205:443
ASN
#16509 AMAZON-02

Requested by
https://scnv.io/5qGX?3107
Certificate
IssuerLet's Encrypt
Subjectscnv.io
FingerprintC0:B5:4A:6F:E3:81:3A:9F:32:A4:F5:1F:75:07:93:60:AA:E1:AC:25
ValidityMon, 15 Apr 2024 04:57:47 GMT - Sun, 14 Jul 2024 04:57:46 GMT

File type

Size
320 kB (320004 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/plugins/pdfjs-3.11.174/pdf.min.js HTTP/1.1
Host: scnv.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://scnv.io/5qGX?3107
DNT: 1
Connection: keep-alive
Cookie: sessionid=qeipejt3h98q9hebvk7wzov1qyhebl4k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-encoding: gzip
content-type: application/javascript
date: Tue, 16 Apr 2024 04:21:58 GMT
last-modified: Sat, 13 Apr 2024 05:31:44 GMT
nel: {'report_to':'default','max_age':1800,'include_subdomains':true,'failure_fraction':1.0}
referrer-policy: strict-origin
report-to: {'group':'default','max_age':1800,'endpoints':[{'url':'https://scanova.uriports.com/reports'}],'include_subdomains':true}
server: Caddy
strict-transport-security: max-age=31536000;includeSubdomains
vary: Accept-Encoding
x-frame-options: DENY
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML