| vinilartepisos.com.br/resource-loader.js | 108.179.193.8 | 404 Not Found | 836 B |
URL GET HTTP/2vinilartepisos.com.br/resource-loader.js IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /resource-loader.js HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/jeHWnQ/AxRc8Z/Z7Oz/mjbZgY/uk/N15VDLbauruEN7/BS8eYThxBg/Tkk/aJwh5KWcB | 108.179.193.8 | 404 Not Found | 836 B |
URL GET HTTP/2vinilartepisos.com.br/jeHWnQ/AxRc8Z/Z7Oz/mjbZgY/uk/N15VDLbauruEN7/BS8eYThxBg/Tkk/aJwh5KWcB IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /jeHWnQ/AxRc8Z/Z7Oz/mjbZgY/uk/N15VDLbauruEN7/BS8eYThxBg/Tkk/aJwh5KWcB HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ | 108.179.193.8 | 200 OK | 26 kB |
URL User Request GET HTTP/2vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (3411) Hash4a3a4e6d5edf3f6802cb94ce48b63e1b 0fbb8d2a4f4a4b4c44b3c8b4052129d85109e380 ac9748e8bfb4e27e78ea1d53221c5023821e77b4def62347e599d3f691414a33
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /po/NOVASCOT/SCOTIAL/ HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Thu, 14 Dec 2023 16:48:40 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
date: Fri, 03 May 2024 20:26:42 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/main.cafb241d85447b367d0c.chunk.js | 108.179.193.8 | 404 Not Found | 836 B |
URL GET HTTP/2vinilartepisos.com.br/main.cafb241d85447b367d0c.chunk.js IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /main.cafb241d85447b367d0c.chunk.js HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/styles.ef875488df3637535e09.css | 108.179.193.8 | 404 Not Found | 836 B |
URL GET HTTP/2vinilartepisos.com.br/styles.ef875488df3637535e09.css IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /styles.ef875488df3637535e09.css HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/assets/8fd30bd010d9e2c7677ec339685f958b.woff | 108.179.193.8 | 404 Not Found | 2.4 kB |
URL GET HTTP/2vinilartepisos.com.br/assets/8fd30bd010d9e2c7677ec339685f958b.woff IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /assets/8fd30bd010d9e2c7677ec339685f958b.woff HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/assets/50805f331bb1b697aafb6f0c28b09212.woff2 | 108.179.193.8 | 404 Not Found | 2.4 kB |
URL GET HTTP/2vinilartepisos.com.br/assets/50805f331bb1b697aafb6f0c28b09212.woff2 IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /assets/50805f331bb1b697aafb6f0c28b09212.woff2 HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| dmtags.scotiabank.com/launch/novaweb/27c34d6e7144/094054a424e3/launch-edbf66c903b6.min.js | 104.66.122.200 | 200 OK | 68 kB |
URL GET HTTP/1.1dmtags.scotiabank.com/launch/novaweb/27c34d6e7144/094054a424e3/launch-edbf66c903b6.min.js IP104.66.122.200:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerEntrust, Inc. Subjectapps.scotiabank.com Fingerprint0D:54:C6:33:4D:69:83:6F:15:A0:C6:B0:AC:82:4E:7C:14:D1:D8:88 ValidityTue, 21 Nov 2023 14:23:22 GMT - Sat, 21 Dec 2024 14:23:21 GMT
File typeJavaScript source, ASCII text, with very long lines (32757) Hashe5954bafa35e730bc024902bc607bd1f c9e02b8d41693266321ccf5df2f195600a700487 432bdcaeac556841bbcae2c2573562ecdd13161fe8fc121fa4e5dc18ec37e707
GET /launch/novaweb/27c34d6e7144/094054a424e3/launch-edbf66c903b6.min.js HTTP/1.1
Host: dmtags.scotiabank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "661438e0-3f579"
Last-Modified: Mon, 08 Apr 2024 18:35:12 GMT
Server: nginx/1.23.3
X-Vcap-Request-Id: 773864d7-2485-4256-5a57-f15ba41a0207
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip
Content-Length: 67765
Date: Fri, 03 May 2024 20:26:43 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://scotiabank.com
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self' https://*.scotiabank.com https://www.scotiaitrade.com/ https://www.scotialifefinancial.com/ https://www.scotiafunds.com/ http://*.bns https://*.bns ;
X-Frame-Options: SAMEORIGIN
Cache-Control: private
Vary: Accept-Encoding, origin
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
|
|
| vinilartepisos.com.br/jeHWnQ/AxRc8Z/Z7Oz/mjbZgY/uk/N15VDLbauruEN7/BS8eYThxBg/Tkk/aJwh5KWcB | 108.179.193.8 | 404 Not Found | 836 B |
URL GET HTTP/2vinilartepisos.com.br/jeHWnQ/AxRc8Z/Z7Oz/mjbZgY/uk/N15VDLbauruEN7/BS8eYThxBg/Tkk/aJwh5KWcB IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /jeHWnQ/AxRc8Z/Z7Oz/mjbZgY/uk/N15VDLbauruEN7/BS8eYThxBg/Tkk/aJwh5KWcB HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| dmtags.scotiabank.com/launch/novaweb/27c34d6e7144/094054a424e3/e9f01630ebd7/hostedLibFiles/EPef068a8d6dd34a43866d9a80cc98baab/AppMeasurement.min.js | 104.66.122.200 | 200 OK | 13 kB |
URL GET HTTP/1.1dmtags.scotiabank.com/launch/novaweb/27c34d6e7144/094054a424e3/e9f01630ebd7/hostedLibFiles/EPef068a8d6dd34a43866d9a80cc98baab/AppMeasurement.min.js IP104.66.122.200:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerEntrust, Inc. Subjectapps.scotiabank.com Fingerprint0D:54:C6:33:4D:69:83:6F:15:A0:C6:B0:AC:82:4E:7C:14:D1:D8:88 ValidityTue, 21 Nov 2023 14:23:22 GMT - Sat, 21 Dec 2024 14:23:21 GMT
File typeJavaScript source, ASCII text, with very long lines (32730) Hash208eb534ea01036a4fca64e6715ccf3f 90c85649634ff5a627023668b2e10fa01cf30315 6c789117a5f69b39293256e6899288c8317358589e20c6d08278223f948cd2cf
GET /launch/novaweb/27c34d6e7144/094054a424e3/e9f01630ebd7/hostedLibFiles/EPef068a8d6dd34a43866d9a80cc98baab/AppMeasurement.min.js HTTP/1.1
Host: dmtags.scotiabank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "661438ab-8996"
Last-Modified: Mon, 08 Apr 2024 18:34:19 GMT
Server: nginx/1.23.3
X-Vcap-Request-Id: e61856c7-d650-42dc-532c-9003683bddfd
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip
Content-Length: 12687
Date: Fri, 03 May 2024 20:26:43 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://scotiabank.com
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self' https://*.scotiabank.com https://www.scotiaitrade.com/ https://www.scotialifefinancial.com/ https://www.scotiafunds.com/ http://*.bns https://*.bns ;
X-Frame-Options: SAMEORIGIN
Cache-Control: private
Vary: Accept-Encoding, origin
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
|
|
| dmtags.scotiabank.com/launch/novaweb/27c34d6e7144/094054a424e3/e9f01630ebd7/hostedLibFiles/EPef068a8d6dd34a43866d9a80cc98baab/AppMeasurement_Module_ActivityMap.min.js | 104.66.122.200 | 200 OK | 1.6 kB |
URL GET HTTP/1.1dmtags.scotiabank.com/launch/novaweb/27c34d6e7144/094054a424e3/e9f01630ebd7/hostedLibFiles/EPef068a8d6dd34a43866d9a80cc98baab/AppMeasurement_Module_ActivityMap.min.js IP104.66.122.200:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerEntrust, Inc. Subjectapps.scotiabank.com Fingerprint0D:54:C6:33:4D:69:83:6F:15:A0:C6:B0:AC:82:4E:7C:14:D1:D8:88 ValidityTue, 21 Nov 2023 14:23:22 GMT - Sat, 21 Dec 2024 14:23:21 GMT
File typeJavaScript source, ASCII text, with very long lines (3138) Hashf1e098a5dd836ea5fc9726c429c8d71d 9b9371eb2d68b1e71063cf9f848baa07347511ca bc0bfc50d3ff4175132b7da1ef0adf7761ded5cb2782e55edb1948da3480abd8
GET /launch/novaweb/27c34d6e7144/094054a424e3/e9f01630ebd7/hostedLibFiles/EPef068a8d6dd34a43866d9a80cc98baab/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: dmtags.scotiabank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "661438ab-cd4"
Last-Modified: Mon, 08 Apr 2024 18:34:19 GMT
Server: nginx/1.23.3
X-Vcap-Request-Id: 566d5112-7b3e-4a90-4e42-51eb2dd04904
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip
Content-Length: 1597
Date: Fri, 03 May 2024 20:26:43 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://scotiabank.com
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self' https://*.scotiabank.com https://www.scotiaitrade.com/ https://www.scotialifefinancial.com/ https://www.scotiafunds.com/ http://*.bns https://*.bns ;
X-Frame-Options: SAMEORIGIN
Cache-Control: private
Vary: Accept-Encoding, origin
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
|
|
| dlslhpkfqfglo.cloudfront.net/cdn/ca/mutha-scotia-wrapper.min.js | 143.204.42.84 | 200 OK | 8.8 kB |
URL GET HTTP/2dlslhpkfqfglo.cloudfront.net/cdn/ca/mutha-scotia-wrapper.min.js IP143.204.42.84:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (26211) Hash79c3ef0d663c149d1132017bd3a9df8c 6164b90c7b4912ba62f8473b421644e97ff6156c 6f81f035dc9043a19fe8a3f277763c2623b7993158d96c0cf28f156890a54999
GET /cdn/ca/mutha-scotia-wrapper.min.js HTTP/1.1
Host: dlslhpkfqfglo.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vinilartepisos.com.br/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 03 May 2024 17:11:18 GMT
server: nginx/1.18.0 (Ubuntu)
set-cookie: aphishCookie-1714756278694-SCOTIA=0; Max-Age=60; Expires=Fri, 03 May 2024 17:12:18 GMT; SameSite=None; Path=/; Secure
access-control-allow-credentials: true
content-security-policy: frame-ancestors https://*
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-permitted-cross-domain-policies: master-only
x-frame-options: DENY
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RZXA5zbrTxwbLvLVagso8OFUuJbUeQUG8YluyiwH8aLg52qCDpOhRw==
age: 11725
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/assets/8fd30bd010d9e2c7677ec339685f958b.woff | 108.179.193.8 | 404 Not Found | 2.4 kB |
URL GET HTTP/2vinilartepisos.com.br/assets/8fd30bd010d9e2c7677ec339685f958b.woff IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /assets/8fd30bd010d9e2c7677ec339685f958b.woff HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/assets/50805f331bb1b697aafb6f0c28b09212.woff2 | 108.179.193.8 | 404 Not Found | 2.4 kB |
URL GET HTTP/2vinilartepisos.com.br/assets/50805f331bb1b697aafb6f0c28b09212.woff2 IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /assets/50805f331bb1b697aafb6f0c28b09212.woff2 HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Cookie: AMCV_0AAF22CE52827A080A490D4D%40AdobeOrg=179643557%7CMCIDTS%7C19847%7CMCMID%7C52430083309748665755333823866995257730%7CvVersion%7C5.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
content-length: 2361
vary: Accept-Encoding
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.entrust.net/ | 23.38.202.187 | | 1.6 kB |
IP23.38.202.187:0
Hash563833b816e06ec9738571a419bf0577 254ca21e2fb5ebc4b862f6a7e7d9c8d99ca2af1e f5b8b07c7fc9772cdaa9341fdf543dcd60aeaa9a93e438c0b5ab8abe586d8ec8
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "F5B8B07C7FC9772CDAA9341FDF543DCD60AEAA9A93E438C0B5AB8ABE586D8EC8"
Last-Modified: Fri, 03 May 2024 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Fri, 03 May 2024 21:26:43 GMT
Date: Fri, 03 May 2024 20:26:43 GMT
Connection: keep-alive
|
|
| somniture.scotiabank.com/id?d_visid_ver=5.5.0&d_fieldgroup=A&mcorgid=0AAF22CE52827A080A490D4D%40AdobeOrg&mid=52430083309748665755333823866995257730&ts=1714768003426 | 63.140.62.17 | 200 OK | 48 B |
URL GET HTTP/2somniture.scotiabank.com/id?d_visid_ver=5.5.0&d_fieldgroup=A&mcorgid=0AAF22CE52827A080A490D4D%40AdobeOrg&mid=52430083309748665755333823866995257730&ts=1714768003426 IP63.140.62.17:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerEntrust, Inc. Subjectsomniture.scotiabank.com FingerprintF2:96:F0:FC:08:90:5F:AC:1D:FE:74:A6:47:5F:DC:1E:0E:61:D7:1E ValidityMon, 21 Aug 2023 20:22:41 GMT - Sat, 21 Sep 2024 20:22:40 GMT
Hash6577688e3d16704d2198c4ba6572669c 3c32e66a84a6abc3f029277e976874625794eb9d a0f24f43ace89df3bdbac8707a4f21da4ff3d6faf5bab290ca655d59f573b843
GET /id?d_visid_ver=5.5.0&d_fieldgroup=A&mcorgid=0AAF22CE52827A080A490D4D%40AdobeOrg&mid=52430083309748665755333823866995257730&ts=1714768003426 HTTP/1.1
Host: somniture.scotiabank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://vinilartepisos.com.br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://vinilartepisos.com.br
access-control-allow-credentials: true
date: Fri, 03 May 2024 20:26:43 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_ecid=MCMID%7C52430083309748665755333823866995257730; Path=/; Domain=scotiabank.com; Max-Age=63072000; Expires=Sun, 03 May 2026 20:26:26 GMT; SameSite=Lax;
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/favicon.ico | 108.179.193.8 | 404 Not Found | 836 B |
URL GET HTTP/2vinilartepisos.com.br/favicon.ico IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /favicon.ico HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Cookie: AMCV_0AAF22CE52827A080A490D4D%40AdobeOrg=179643557%7CMCIDTS%7C19847%7CMCMID%7C52430083309748665755333823866995257730%7CvVersion%7C5.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| dlslhpkfqfglo.cloudfront.net/cdn/ca/jquery-3.6.1.min.js | 143.204.42.84 | 200 OK | 806 kB |
URL GET HTTP/2dlslhpkfqfglo.cloudfront.net/cdn/ca/jquery-3.6.1.min.js IP143.204.42.84:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Size806 kB (805895 bytes) Hash11e21d175246941dcae30a44c3f56ebf 291b3b8f481571be1744c56cfcf59acb51a18edb 227b7e3bba360833a05161b4b0b20e68153b8de03e98e137bb27b33bf363b369
GET /cdn/ca/jquery-3.6.1.min.js HTTP/1.1
Host: dlslhpkfqfglo.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vinilartepisos.com.br/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 03 May 2024 17:11:19 GMT
server: nginx/1.18.0 (Ubuntu)
access-control-allow-credentials: true
content-security-policy: frame-ancestors https://*
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-permitted-cross-domain-policies: master-only
x-frame-options: DENY
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: y0cXZHqFAOgvyhfe5G3C7R7i8MSpi9kedXODzUuwq41rNTcEejp7hQ==
age: 11724
X-Firefox-Spdy: h2
|
|
| dmtags.scotiabank.com/aempublic/Onetrust/scotiabank/oneTrust_production/consent/4fbad486-5e37-45d2-bcbc-b89a6d33ea60/4fbad486-5e37-45d2-bcbc-b89a6d33ea60.json | 104.66.122.200 | 200 OK | 1.7 kB |
URL GET HTTP/1.1dmtags.scotiabank.com/aempublic/Onetrust/scotiabank/oneTrust_production/consent/4fbad486-5e37-45d2-bcbc-b89a6d33ea60/4fbad486-5e37-45d2-bcbc-b89a6d33ea60.json IP104.66.122.200:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerEntrust, Inc. Subjectapps.scotiabank.com Fingerprint0D:54:C6:33:4D:69:83:6F:15:A0:C6:B0:AC:82:4E:7C:14:D1:D8:88 ValidityTue, 21 Nov 2023 14:23:22 GMT - Sat, 21 Dec 2024 14:23:21 GMT
Hasha5c83dd0c55b426a3c30b19e3a9995a0 59b982ba2cb9efd68339d546486096e553ea4b20 de125b3c6b2e6c0d7aafdca50a9d0324506829b4497bc099c167fc7d1c2fe806
GET /aempublic/Onetrust/scotiabank/oneTrust_production/consent/4fbad486-5e37-45d2-bcbc-b89a6d33ea60/4fbad486-5e37-45d2-bcbc-b89a6d33ea60.json HTTP/1.1
Host: dmtags.scotiabank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vinilartepisos.com.br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
ETag: "6556797d-129c"
Last-Modified: Thu, 16 Nov 2023 20:20:13 GMT
Server: nginx/1.23.3
X-Vcap-Request-Id: 1113eba3-d185-4ff6-69c9-bb49ed5a939c
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip
Date: Fri, 03 May 2024 20:26:44 GMT
Content-Length: 1663
Connection: keep-alive
Access-Control-Allow-Origin: https://scotiabank.com
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self' https://*.scotiabank.com https://www.scotiaitrade.com/ https://www.scotialifefinancial.com/ https://www.scotiafunds.com/ http://*.bns https://*.bns ;
X-Frame-Options: SAMEORIGIN
Cache-Control: private
Vary: Accept-Encoding, origin
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: _abck=655E28E49B86402F9413218CACEC4E10~-1~YAAQFloDFxJ7vimPAQAA40MjQAsYTlJ5dZxdndYCtZNUDCg0vQSU+gQO7+qFQljXH2Y3Hlpi33HrB5J6f7Nnd5Bj/i9Yl8cDz+Mh+nvakBkJKWKxAP48p2MqCJaY2BGcpCGgo/P7QlNwXfw+MD+FbYLSfM0wYfDNCsZc4a5+uxiyjaMZPIRzaG0c0/dNlb/Ga3IG7K/VQWEVkETJaC5XnStLreBObXNDHqitsR8lACrCUwWi/r4SzSjz6zIkdn5plSXT8gOvDkJq/SaJjizZQc+exb3z95IYHqbYFi/Bm/JPEEX5vWSA7Q1780EyKEfylpTaIsMlfIzHoC7obRPGSs1UOvurWVAdP/nRwVK39zNcF/T+6rvDSmy5cgxgRi1UTdLsiFMOo3omPm0=~-1~-1~-1; Domain=.scotiabank.com; Path=/; Expires=Sat, 03 May 2025 20:26:44 GMT; Max-Age=31536000; Secure
ak_bmsc=F2B7A571B4E70AB3EDE30387C8CEB941~000000000000000000000000000000~YAAQFloDFxN7vimPAQAA40MjQBer6tZZ+vyRk2vB6ZNiaMNniprDIenMwxxt3aW20vTevfeTFVIRCiKWf7X9migYKsvYF5E93w0nNmJay0AhSlEdoDXprIllx4rp2OIyIEjdDawIBkBSI5qbKCbIS480/JK3j+TILYNzmnkvzlV9omazbBNx3Iz9Ivm6za56/FM08HhrH/i6i1YYZ5E6/bm81/IIpT0J5UepIPNKd25KgqiH/bjvOQWMljbk1AY912DwoKxTUMCUpYaqp+KA5lgVCYCykbqdczIJqvDBY3pv9Yp/3C399Ww7tIoUt43964J2BqW/V4zdjNGL9hmlnYX5iraqxHytWaCyS60bGLNeFFK5Z4Nsy0EpzjCvvWlUNNtG; Domain=.scotiabank.com; Path=/; Expires=Fri, 03 May 2024 22:26:43 GMT; Max-Age=7199; HttpOnly
bm_sz=77727521E288D724A06E4A06228DCB76~YAAQFloDFxR7vimPAQAA40MjQBfBK7SPqezK+MErLJsSNLkDIAgM+yLKYNpjuOv/Y4U9swxWk8LEMd2X+76QrRk9PpsfF4uUOIQ/y4LNKjAdAcm/6/D9zOrEv5R4rEo2CGqLeR9VVXSKyvr6qiYuM/n8392CjhbRyp/oaEuqjlOYO03p3QoL/L1ddLyaCXBUKQYQEO9USJI44kkWIUdVF9fS3abNtiJvSzG0S16oePxVwVOlQJFELHwWmZsrW6UYtdJTkq//jb3IZLRX8ikUm1WQMOl7OnSSdiLqWjdKEZiCjtRosFFR/mIioI5saqyxhDOwpAOAgk2NxlNRBmkQw6+2jIfT560Q3+c5e5MpPMo=~3485744~3289144; Domain=.scotiabank.com; Path=/; Expires=Sat, 04 May 2024 00:26:43 GMT; Max-Age=14399
|
|
| ocsp.r2m03.amazontrust.com/ | 3.164.222.26 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP3.164.222.26:0
Hash25413d914ef7b245e73e3c9c177a0c6f 3de956b3153adb7de9d83a7e931ce61e18731134 7de64516f556a60fccf3603005757e1fb943fc939cb0452a3c7231331a883e00
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Fri, 03 May 2024 20:26:44 GMT
Server: ECAcc (amb/6B66)
X-Cache: Miss from cloudfront
Via: 1.1 f8f6e32ae3e5c2420050bcd1a2ee6090.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: Vsr8DTxbXJeNUtG20BQ_B5cZtKHgqmY_DukrFvRttUza-rCieWE_kw==
|
|
| dlslhpkfqfglo.cloudfront.net/cdn/cd/l | 143.204.42.84 | 200 OK | 88 B |
URL POST HTTP/2dlslhpkfqfglo.cloudfront.net/cdn/cd/l IP143.204.42.84:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashd9c8a307b8c37e652f85ab744de12343 976a3599dc2c0cab121f29dbd2719cf0a0bdbfef 3bfa5e82848a3a37a9b02917e22dcbf9c4e6c403791b9cf69302e09f1e8249da
POST /cdn/cd/l HTTP/1.1
Host: dlslhpkfqfglo.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 981
Origin: https://vinilartepisos.com.br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
content-length: 88
date: Fri, 03 May 2024 20:26:45 GMT
server: nginx/1.18.0 (Ubuntu)
access-control-allow-origin: https://vinilartepisos.com.br
access-control-allow-credentials: true
content-security-policy: frame-ancestors https://*
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-permitted-cross-domain-policies: master-only
x-frame-options: DENY
x-cache: Miss from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vGz7HBgWV6P9VQkm_psC7sVB5u5ZBMRdtoTSIx264LsEokCm8MnBxA==
X-Firefox-Spdy: h2
|
|
| dlslhpkfqfglo.cloudfront.net/cdn/cd/gpk?orgID=81f541cd2f4ea9c2908b9e39b03e0a80 | 143.204.42.84 | 200 OK | 5.5 kB |
URL GET HTTP/2dlslhpkfqfglo.cloudfront.net/cdn/cd/gpk?orgID=81f541cd2f4ea9c2908b9e39b03e0a80 IP143.204.42.84:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Hash246aa884001b2915bf772cac417e84f8 fbe91f1d958d344e30f001f93b55b319e6891278 cc6feb49f62cab3ee345761a84b22d8a5e7f3a49e553e1b97d2549229203f263
GET /cdn/cd/gpk?orgID=81f541cd2f4ea9c2908b9e39b03e0a80 HTTP/1.1
Host: dlslhpkfqfglo.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vinilartepisos.com.br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Fri, 03 May 2024 17:11:19 GMT
server: nginx/1.18.0 (Ubuntu)
access-control-allow-origin: https://vinilartepisos.com.br
access-control-allow-credentials: true
content-security-policy: frame-ancestors https://*
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-permitted-cross-domain-policies: master-only
x-frame-options: DENY
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UF1tISKwaj5FnJjG58slUMZlkG-UvIahv-rk5QQCx0zPSTgbUMb4Dg==
age: 11725
X-Firefox-Spdy: h2
|
|
| vinilartepisos.com.br/runtime.28b2f6d6a26212c51af2.js | 108.179.193.8 | 404 Not Found | 2.4 kB |
URL GET HTTP/2vinilartepisos.com.br/runtime.28b2f6d6a26212c51af2.js IP108.179.193.8:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerLet's Encrypt Subjectvinilartepisos.com.br.imperiocasasdemadeira.com.br FingerprintD8:80:76:8E:11:5F:55:BE:E2:3E:90:ED:82:36:FB:70:4B:DB:F2:90 ValidityThu, 18 Apr 2024 20:51:19 GMT - Wed, 17 Jul 2024 20:51:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (2553), with no line terminators Hashf6117cde11582c69d15926f6eaa2c01e e364986bfd9ca8d3e6636fa60eabe97ec10f2456 e32e774da87306c618ca633fd1d1ce9c05cd85c9b33e1645255a58380d87652c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Scotiabank |
GET /runtime.28b2f6d6a26212c51af2.js HTTP/1.1
Host: vinilartepisos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
last-modified: Thu, 25 Aug 2022 10:26:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 03 May 2024 20:26:43 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| dlslhpkfqfglo.cloudfront.net/cdn/cd/gwf | 143.204.42.84 | 200 OK | 7.9 kB |
URL POST HTTP/2dlslhpkfqfglo.cloudfront.net/cdn/cd/gwf IP143.204.42.84:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (7872), with no line terminators Hashd2558d3658cf9d9ac504e76b4c066a95 ac449e02c0eb417461ee204932356ab9d8a283e1 c40a3b87335f89c9a74edd30a3e8a765b70ef2f67d8f76bb6719439a71bc5e8f
POST /cdn/cd/gwf HTTP/1.1
Host: dlslhpkfqfglo.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 943
Origin: https://vinilartepisos.com.br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
date: Fri, 03 May 2024 20:26:45 GMT
server: nginx/1.18.0 (Ubuntu)
access-control-allow-origin: https://vinilartepisos.com.br
access-control-allow-credentials: true
content-security-policy: frame-ancestors https://*
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-permitted-cross-domain-policies: master-only
x-frame-options: DENY
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LNe9dfZDdASHJjtfet1RHWvozW3APqvbVHPBdZL1pVTw2rzY3nSstA==
X-Firefox-Spdy: h2
|
|
| csf-e58f0d0de3ce9fa5ebc118ad6482af34.memcyco.com/cdn/cd/csframe.html | 54.155.128.249 | 200 OK | 2.6 kB |
URL GET HTTP/2csf-e58f0d0de3ce9fa5ebc118ad6482af34.memcyco.com/cdn/cd/csframe.html IP54.155.128.249:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerAmazon Subject*.memcyco.com FingerprintDC:2A:FA:45:92:DC:C8:0C:1D:66:96:34:6A:FC:E1:4F:09:ED:40:3E ValiditySun, 25 Feb 2024 00:00:00 GMT - Tue, 25 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (2876), with no line terminators Hash0d5c8d9c1cf625be880f87d6f071d845 4890153d870cd9694b8068932509376013fff605 46f092fc499a2cb8358e39972167fa44134a99a9d38ea1fe9fabc10711216c9c
GET /cdn/cd/csframe.html HTTP/1.1
Host: csf-e58f0d0de3ce9fa5ebc118ad6482af34.memcyco.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vinilartepisos.com.br/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 03 May 2024 20:26:44 GMT
content-type: text/html; charset=UTF-8
set-cookie: AWSALB=6hUDbJdHlLykpo4lOsI077bPdEG7KwsAKa59LauCPC/FFIA51OLX0x8GjjxqwqVyVKYQs6pSZ5f3ctralGAHDPPsQ4hNJyt2ZdIqrPovutei++nZH3eP5L1vOFWd; Expires=Fri, 10 May 2024 20:26:44 GMT; Path=/
AWSALBCORS=6hUDbJdHlLykpo4lOsI077bPdEG7KwsAKa59LauCPC/FFIA51OLX0x8GjjxqwqVyVKYQs6pSZ5f3ctralGAHDPPsQ4hNJyt2ZdIqrPovutei++nZH3eP5L1vOFWd; Expires=Fri, 10 May 2024 20:26:44 GMT; Path=/; SameSite=None; Secure
server: nginx/1.23.3
access-control-allow-credentials: true
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-permitted-cross-domain-policies: master-only
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| assets/images/%20.jpg | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/%20.jpg HTTP/1.1
Host: assets
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| dmtags.scotiabank.com/aempublic/Onetrust/scotiabank/oneTrust_production/scripttemplates/otSDKStub.js | 104.66.122.200 | 200 OK | 21 kB |
URL GET HTTP/1.1dmtags.scotiabank.com/aempublic/Onetrust/scotiabank/oneTrust_production/scripttemplates/otSDKStub.js IP104.66.122.200:443
Requested byhttps://vinilartepisos.com.br/po/NOVASCOT/SCOTIAL/ CertificateIssuerEntrust, Inc. Subjectapps.scotiabank.com Fingerprint0D:54:C6:33:4D:69:83:6F:15:A0:C6:B0:AC:82:4E:7C:14:D1:D8:88 ValidityTue, 21 Nov 2023 14:23:22 GMT - Sat, 21 Dec 2024 14:23:21 GMT
File typeJavaScript source, ASCII text, with very long lines (21066) Hashcf426cd1788c8356ee58c7abf14c38be 609b5a8f0b4c7b5d3d955152a76db699d0eb5382 6b1fc966c38b12c845f9fd8bdb76027106b776783fd44eeed917663942b5fd16
GET /aempublic/Onetrust/scotiabank/oneTrust_production/scripttemplates/otSDKStub.js HTTP/1.1
Host: dmtags.scotiabank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vinilartepisos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "6556797d-524b"
Last-Modified: Thu, 16 Nov 2023 20:20:13 GMT
Server: nginx/1.23.3
X-Vcap-Request-Id: e8ed5c2b-47b3-46ef-7fd0-80e5a726ad83
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip
Content-Length: 6793
Date: Fri, 03 May 2024 20:26:43 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://scotiabank.com
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'self' https://*.scotiabank.com https://www.scotiaitrade.com/ https://www.scotialifefinancial.com/ https://www.scotiafunds.com/ http://*.bns https://*.bns ;
X-Frame-Options: SAMEORIGIN
Cache-Control: private
Vary: Accept-Encoding, origin
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
|
|