| mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f | 162.0.227.140 | 200 OK | 1.9 kB |
URL User Request GET HTTP/1.1mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f IP162.0.227.140:443
CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text Hashd5fec575abf07f8ce17c24b453fab2ef e7a42cffe987bae411a63b03e20a7c00057942c6 2ad71630ed8d87bb1c787493cecf9fc600cd4fd03003f192b2a28bccb0a5ac29
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; path=/; HttpOnly
csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B; path=/; HttpOnly; SameSite=Lax
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1902
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| mailscandy.com/assets/css/bootstrap.min.css?av=a20af139 | 162.0.227.140 | 200 OK | 17 kB |
URL GET HTTP/1.1mailscandy.com/assets/css/bootstrap.min.css?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeASCII text, with very long lines (65366) Hash8a7442ca6bedd62cec4881040b9a9e83 e2d2b846e9ea72a1985458a3748aab4e01a8fb3a e9503448692b738dd260fbd7f7cabf2e11f09b600fa97e6eb3a56eba5b1a7e9b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/css/bootstrap.min.css?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 17162
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| mailscandy.com/frontend/assets/cache/61755f88/jquery.min.js | 162.0.227.140 | 200 OK | 31 kB |
URL GET HTTP/1.1mailscandy.com/frontend/assets/cache/61755f88/jquery.min.js IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/assets/cache/61755f88/jquery.min.js HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Last-Modified: Tue, 26 Mar 2024 03:44:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30902
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| mailscandy.com/assets/css/font-awesome/css/font-awesome.min.css?av=a20af139 | 162.0.227.140 | 200 OK | 6.2 kB |
URL GET HTTP/1.1mailscandy.com/assets/css/font-awesome/css/font-awesome.min.css?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeASCII text, with very long lines (27303) Hash4fbd15cb6047af93373f4f895639c8bf 12d6861075de8e293265ff6ff03b1f3adcb44c76 ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/css/font-awesome/css/font-awesome.min.css?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6243
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| mailscandy.com/assets/css/ionicons/css/ionicons.min.css?av=a20af139 | 162.0.227.140 | 200 OK | 8.3 kB |
URL GET HTTP/1.1mailscandy.com/assets/css/ionicons/css/ionicons.min.css?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (50806) Hash0d6763b67616cb9183f3931313d42971 f0459300e39155df7aa5e94b3bdb8c8594f49a60 de2bbd8e0b32f53a53c1729bedb350cea59e9115fba4f2bed8e2e3dd1f76d9fa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/css/ionicons/css/ionicons.min.css?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8284
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| mailscandy.com/frontend/assets/css/style.css?av=a20af139 | 162.0.227.140 | 200 OK | 2.5 kB |
URL GET HTTP/1.1mailscandy.com/frontend/assets/css/style.css?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
Hash8eb135311de8119732ebcf00bb775364 6b6acd0d3b7e1d27c8130899dca581cb9a415fe9 ac6bc213c9ef74c63be52c04725427833977bdfcff9975974c494b47d4ce5fe2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/assets/css/style.css?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2492
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| mailscandy.com/frontend/assets/cache/61755f88/jquery-migrate.min.js | 162.0.227.140 | 200 OK | 4.8 kB |
URL GET HTTP/1.1mailscandy.com/frontend/assets/cache/61755f88/jquery-migrate.min.js IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (13326) Hasha36b8e9cbfb4a675225aa408c4d15c0c fcd46de9c99e71ed586a850d877fd3b01e8269fd 16eb18d9c6303cdd50ac58db5b2b116c5dcc4c43c89424f268f6d13fc599fb19
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/assets/cache/61755f88/jquery-migrate.min.js HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Last-Modified: Tue, 26 Mar 2024 03:44:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4825
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| mailscandy.com/assets/js/bootstrap.min.js?av=a20af139 | 162.0.227.140 | 200 OK | 7.7 kB |
URL GET HTTP/1.1mailscandy.com/assets/js/bootstrap.min.js?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (28941) Hashba847811448ef90d98d272aeccef2a95 5814e91bb6276f4de8b7951c965f2f190a03978d 898d05a17f2cfc5120ddcdba47a885c378c0b466f30f0700e502757e24b403a1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/js/bootstrap.min.js?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7679
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| mailscandy.com/assets/css/adminlte.css?av=a20af139 | 162.0.227.140 | 200 OK | 31 kB |
URL GET HTTP/1.1mailscandy.com/assets/css/adminlte.css?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
Hash315a0bdc202c9b2fe19cfc42ea04d764 d04f2d715a73ca562caa2544ea885a932f20e185 7e794bc4608f3355ca991e021119e82fb87dfea7057a6acfc88dcbb2e9642082
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/css/adminlte.css?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 31370
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| mailscandy.com/assets/css/skin-blue.css?av=a20af139 | 162.0.227.140 | 200 OK | 21 kB |
URL GET HTTP/1.1mailscandy.com/assets/css/skin-blue.css?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
Hashb94b3fb60c559db34b7ae821c9368b5f 1d389cc788030fedb24e709e7d1330ec3789d18f 2fefbaf4d062df56d0335279167be66e487540ea9dd8db745a226d64be95f239
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/css/skin-blue.css?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:43 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21406
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| mailscandy.com/assets/js/knockout.min.js?av=a20af139 | 162.0.227.140 | 200 OK | 25 kB |
URL GET HTTP/1.1mailscandy.com/assets/js/knockout.min.js?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (597) Hash0b0128ab9e61554877cbb24986c24f04 30f5c25060787c4fb0fd4a45ee48d82c683145da e8957bb182a5047b07bea0a49fd22b11614b1ab9ac5b8286fcb2259f48658e73
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/js/knockout.min.js?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:44 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 25117
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| mailscandy.com/assets/js/notify.js?av=a20af139 | 162.0.227.140 | 200 OK | 1.2 kB |
URL GET HTTP/1.1mailscandy.com/assets/js/notify.js?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text Hash9a19754fbd746ae6b603286c3a971e55 c45b906ec95326202c2a8e13545b5c17e92bbdc7 d1416dc4293eaae9e4aac8d5267fb0d5dcb35d9dbc44b63278f75750a1f9cc22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/js/notify.js?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:44 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1228
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| mailscandy.com/assets/js/adminlte.js?av=a20af139 | 162.0.227.140 | 200 OK | 3.0 kB |
URL GET HTTP/1.1mailscandy.com/assets/js/adminlte.js?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (9373) Hashadd5b3f0900365f3b4240664da17760e 7cbd53bfcf830e7c150d6bb55efcc2832e7543e7 42338bc162a705b04953fc72340216dbefb55cf12ec1a6e7cad04e5e680e26bc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/js/adminlte.js?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:44 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2986
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| mailscandy.com/assets/js/cookie.js?av=a20af139 | 162.0.227.140 | 200 OK | 1.5 kB |
URL GET HTTP/1.1mailscandy.com/assets/js/cookie.js?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hash449dd3907404cead5d8ba6203b3550dc c9bb690411c3f46145f8ea137e6783929d8c27aa 3585a42757908ba2ace27f41b01256f6cf4ffb9679f7ac0ff8957817d5ccfde1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/js/cookie.js?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:44 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1500
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| mailscandy.com/assets/js/app.js?av=a20af139 | 162.0.227.140 | 200 OK | 1.0 kB |
URL GET HTTP/1.1mailscandy.com/assets/js/app.js?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hash3ade0b17b1b7c3d1c27aba12ceeda1d3 f8c1fe63c016a077e1545d123eb4db8e8a690c6d cf55d95ad63c72f2eeb219da669cc848cc3022fa4a4798d62ed19ed342460cbe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/js/app.js?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:44 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1007
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| mailscandy.com/frontend/assets/js/app.js?av=a20af139 | 162.0.227.140 | 200 OK | 301 B |
URL GET HTTP/1.1mailscandy.com/frontend/assets/js/app.js?av=a20af139 IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hash92f929c4bc5b25c73b8288922e6bddba 8fc728c33dcb01bdda4f2fc005dc2d65778e0723 6fb1a7f0ef69a34d10191d7afa3899746645013f058eac4b4e4d0b3afad6b4b3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /frontend/assets/js/app.js?av=a20af139 HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:44 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 301
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| mailscandy.com/favicon.ico | 162.0.227.140 | 200 OK | 101 B |
URL GET HTTP/1.1mailscandy.com/favicon.ico IP162.0.227.140:443
Requested byhttps://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f CertificateIssuerSectigo Limited Subject*.mailscandy.com FingerprintEB:D0:99:2E:0A:9C:10:0A:BE:D8:B8:97:D9:63:33:16:FE:C2:3D:53 ValidityTue, 26 Mar 2024 00:00:00 GMT - Wed, 26 Mar 2025 23:59:59 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 2 colors Hashff82d748b4add52e4dd7c8f0b58b89f2 ea69cebf29f461d7831368697f303ea4f0c69a2d de88c1f678413736e858b27974cd5d2181b3df891b8999dd93835384b0ca2d8f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: mailscandy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mailscandy.com/index.php/lists/gk5540xz9f07b/unsubscribe/gh4172thdz1fe/kx0902jft156f
Cookie: mwsid=69bec0213dc7c9819c25c2b890c0e913; csrf_token=da7bbb5c91e9583ca3915cbbd065ec7730c256c3s%3A88%3A%22OTNNZmpiMm1hT0NNckpia1NkU19uZ05vU2hDOXB3dUzR319v6dKUWkOPgz57lrdQ5h963VLUpRnSfvL1QI8YyQ%3D%3D%22%3B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 13:34:44 GMT
Server: Apache
Last-Modified: Mon, 18 Mar 2024 07:27:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 101
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/x-icon
|
|