| aipsouft.com/_next/static/css/0bc0cde260d08b97.css | 172.67.158.155 | 200 OK | 1.2 kB |
URL GET HTTP/3aipsouft.com/_next/static/css/0bc0cde260d08b97.css IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeASCII text, with very long lines (1843), with no line terminators Hash64b2b4fa42c7d558d735e2cd28ecf88a 03d6da6e55b1201b51689590520da495a9233d67 2fdb3ce9ccba8355040e5ba3dfb2283194acba81858943b5d88f70030dbb71ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/0bc0cde260d08b97.css HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: text/css
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-733"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9eYwdu2qMZIpYNZfDMwgtkVInrB2ZI%2Fq0V34kzGCmsbeloHjeZUupESdzCum0IfY%2FpjnbWOZGOGiC%2FAYH0IMZIGQP8l90Ty5wnWnHqid9n9UID2XhDmaob0fxhveEjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8bcf10b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/2734.c0427a5c5baaafc8.js | 172.67.158.155 | 200 OK | 2.2 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/2734.c0427a5c5baaafc8.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (4111), with no line terminators Hash0090151da59b46cc16e7ee05588abdfe 9d911a00f095a2249106b95936a20b3db4d790fc ac8bb98afa86aac2a865c219363f54e4d6d9922210c484c3c863153dbca9ed8a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/2734.c0427a5c5baaafc8.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-100f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RKzkHNgee79dvzUh0EgAIeLks6ZWIBpdV2rpaBRjb1%2Bb7u2Wrjw6xVm1AyOmN%2FvkhZ1tviO6oCx6DS1K2NhzSs4yFU5Fn93i5qtflazLEgCh9vsnH802BBmcDWylvuQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4aa4e080b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| my.rtmark.net/gid.js?userId=elo2tktt3tgd9mqg2sxr7v255qc3p7jn | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=elo2tktt3tgd9mqg2sxr7v255qc3p7jn IP139.45.195.8:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
Hash806fd8e5baba11d9dc8bba88c2806aa6 ba89a9de000bc47a444e306a5211ebb76d3f8d87 d414811b500a08da4a537f98ba5b501fa42f945524748ddd4668756ad5425d98
GET /gid.js?userId=elo2tktt3tgd9mqg2sxr7v255qc3p7jn HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aipsouft.com/
Origin: https://aipsouft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://aipsouft.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=elo2tktt3tgd9mqg2sxr7v255qc3p7jn; expires=Thu, 24 Apr 2025 08:25:58 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 0 B |
URL POST HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://aipsouft.com/
Origin: https://aipsouft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 08:25:58 GMT
content-length: 0
access-control-allow-origin: https://aipsouft.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 17 B |
URL POST HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hash5b64e8b89092b2e3dfd448b10700627f 484b3032619fa1acd135d114565b0a5166281c22 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aipsouft.com/
Content-Type: application/json
Content-Length: 315
Origin: https://aipsouft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/json; charset=utf-8
content-length: 17
x-trace-id: 870996e957820f2e565156d9cd58adc5
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://aipsouft.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| aipsouft.com/track?dry=false&request_var=806915269137277090&oaid=elo2tktt3tgd9mqg2sxr7v255qc3p7jn&os_version=&var=5473348&var_3=&var_4=&variable2=&ymid=806915269137277090&z=5473348&offer_id=2 | 172.67.158.155 | 204 No Content | 0 B |
URL GET HTTP/3aipsouft.com/track?dry=false&request_var=806915269137277090&oaid=elo2tktt3tgd9mqg2sxr7v255qc3p7jn&os_version=&var=5473348&var_3=&var_4=&variable2=&ymid=806915269137277090&z=5473348&offer_id=2 IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /track?dry=false&request_var=806915269137277090&oaid=elo2tktt3tgd9mqg2sxr7v255qc3p7jn&os_version=&var=5473348&var_3=&var_4=&variable2=&ymid=806915269137277090&z=5473348&offer_id=2 HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
DNT: 1
Connection: keep-alive
Cookie: OAID=elo2tktt3tgd9mqg2sxr7v255qc3p7jn; syncedCookie=true; oaidts=1713947158
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: https://aipsouft.com/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
timing-allow-origin: *
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WKDN6RjFoQoIeO8EPNRKjEymp5lqDQtVB8tonfabRJZOa160OpfoQc%2FxGiI%2BdXGL%2Fc8SBwlqfQdKuVBZ69jX6Izc2lcSSwmcM8XXwaNVGNkRzt9pzZIAPZUeJuU58es%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4abaf0d0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/favicon.ico | 172.67.158.155 | 204 No Content | 0 B |
IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Cookie: OAID=elo2tktt3tgd9mqg2sxr7v255qc3p7jn; syncedCookie=true; oaidts=1713947158
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Wed, 24 Apr 2024 08:25:58 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zk20NJn9sTbO5Rwd%2BEBkQotdfU%2BGyYEs5AQV%2FYSwuZJEhPAGa67QhahfdrngHheGrmAtFvfRhu7ofT1HrKNCuoDlNJoPVlmukB0Uvz3784pOL4erTvTpAun5%2BSTZOlE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8794b4ac4f6b0b69-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ofklefkian.com/zone?&pub=0&zone_id=6920711&is_mobile=false&domain=aipsouft.com&var=5473348&ymid=806915269137277090&var_3=&var_4=&dsig=&tg=1&sw=3.1.473&action=prerequest | 139.45.197.251 | 200 OK | 0 B |
URL POST HTTP/2ofklefkian.com/zone?&pub=0&zone_id=6920711&is_mobile=false&domain=aipsouft.com&var=5473348&ymid=806915269137277090&var_3=&var_4=&dsig=&tg=1&sw=3.1.473&action=prerequest IP139.45.197.251:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectofklefkian.com Fingerprint04:A9:FE:8D:C9:B9:EE:6F:3A:C4:29:EA:19:AD:C3:1D:7D:3E:14:02 ValiditySun, 14 Apr 2024 05:38:05 GMT - Sat, 13 Jul 2024 05:38:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /zone?&pub=0&zone_id=6920711&is_mobile=false&domain=aipsouft.com&var=5473348&ymid=806915269137277090&var_3=&var_4=&dsig=&tg=1&sw=3.1.473&action=prerequest HTTP/1.1
Host: ofklefkian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aipsouft.com
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 08:25:58 GMT
content-length: 0
x-trace-id: e9d9bce0f2bc3469e047b6890c66bf28
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://aipsouft.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| aipsouft.com/_next/static/chunks/7903-dd238946c7924507.js | 172.67.158.155 | 200 OK | 16 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/7903-dd238946c7924507.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (31896), with no line terminators Hashb5dd343db67bd22544d11da18268f5c3 069b5b221dd75af58d93192460778b3d07835e74 6347f1d4083f7a0a2ac3d8b12aae8832d9ea6914aa6e137d16a4d41869d14ea5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/7903-dd238946c7924507.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-7c98"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vLF8B1TwcO9x1EZ7rq1iFJnOa5lj3turYrKvmaX67caLpZZJ4X%2B333jqEhr6uhZpSAwfOmOA9BpOFzvsIAZnEdAcp1HI1da15HBgPFvEfJbHhSfnYxqfm5mVPBwOBAs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8ccfc0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/1155-abbc1fd7bd6d17dc.js | 172.67.158.155 | 200 OK | 26 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/1155-abbc1fd7bd6d17dc.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (65221), with no line terminators Hash7e59385526b58851df4701aec6b25597 6a398b3feaada578e8c286e5db8e02496dfc760e ea367ac800c35fcad8f74cdabb19277837ce26d5f26fb453c24ef129cdf29781
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/1155-abbc1fd7bd6d17dc.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-fec5"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kHcP8fenoPxHQSefQNwQn1hpWpU0JebOQkjLso%2FgihCvLbMW3mRkN5AozyMOw0Ja31Pyw%2F3bf7IOTCYgUXLE3aPWSSYfQsb2x%2BXVF4DafwT6hYEpB0TMpHL5jLeT2ac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8cd000b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/zFWoqaKR48sM9OcMjsBYZ/_ssgManifest.js | 172.67.158.155 | 200 OK | 9.6 kB |
URL GET HTTP/3aipsouft.com/_next/static/zFWoqaKR48sM9OcMjsBYZ/_ssgManifest.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeASCII text, with no line terminators Hashd78f02cd11637a888af548f5e270c3af 9c90b573305ec9d6d2e7e74837c641a863d991b4 2357fd3fc3972384c0c7a714da244191da43a7bf5d91fd865a30d2deb0b6b517
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/zFWoqaKR48sM9OcMjsBYZ/_ssgManifest.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-b6"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4QKMkfpUTg6j8YoxLI4nDcBgjVopwND194kgvt3oO50kQdwpFuq836OdVuOsv6uynzaH1LXSazdQhFBPtagzn6eF%2Bxs9jZCiDoYVL7iobXbfWKw5i%2B%2FazCfdxs5ugko%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8dd150b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/webpack-998984d5bf756dcd.js | 172.67.158.155 | 200 OK | 6.1 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/webpack-998984d5bf756dcd.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (6330), with no line terminators Hasha66b27905d6e5df5c92a14922db6a748 e82439fe4a16e9d86097dcb6c0d6c66e69442902 fa0ce99e33f58c8994ef8cb1659a2f42e4be7ab6fe05909e7874356c4e2edd6c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/webpack-998984d5bf756dcd.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-17d2"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KIggimgLKeLNO4u9UHajleaeF408QP5J8Wd5fwthq2%2Fhq7kPq9rQT6SWzYYHGMzEw6u2%2BluxH%2BdgWDR6nhVWS8FOY7FnXC83BAQzttL1fI6Q4m4wllt9JgGKZNjleYw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8bcf50b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/pages/_app-3becc19b2faa9c49.js | 172.67.158.155 | 200 OK | 40 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/pages/_app-3becc19b2faa9c49.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (39892), with no line terminators Hash238c87243e70360b8c488fd9c012b57a 015bb8baa235280a43d8d45f81ca090d0ef08aa3 7707b4961afdfda1a0622695fe6db764af1234d72894768b69e6845d7ef7710c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/_app-3becc19b2faa9c49.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-9bd4"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Buj7Ttuat%2FUdANeeFlZbonlzC3hIBOY2QlzF3orc3NAv2t3pS6KXEugXmLPs9KQJTK2xhGruKWvub7swzB6lMjMUihQ8h5yH5wOAAPp%2Btjimbb4VLmy5q2z9gskvaKY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8ccfb0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/main-beb6af9e60a8e042.js | 172.67.158.155 | 200 OK | 109 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/main-beb6af9e60a8e042.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size109 kB (108887 bytes) Hash44ec1451f689d71d5f33a10d4aa44658 0f7e72050b7bf72366d9463a16038ae94e232f46 1708144463d376da261c16eab17b1d2fe5c49351847f43a46c6ae4b347fd9304
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/main-beb6af9e60a8e042.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-1a957"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1FpjVWiFCPB3izhoAJ34MC8YsOm2Z2CcVexvckPOo4T2FrcWeOM8RNxOFnLz4VBUCo1b9VRsKSTGMPdbcVkIChl3oWbEz0nsd%2B49XUcj%2BrF%2FupCwIARtHnVHJwk9y0s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8bcf80b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/5057.48c7d5a8740ee05f.js | 172.67.158.155 | 200 OK | 3.3 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/5057.48c7d5a8740ee05f.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (3375), with no line terminators Hash8f79b9155b8b6921206c5c92026b7365 50ef9171a052e5428806431761fca7e75044c0dd 497fc3beb3a1f2e5af56019b4051a15204b9a1320622f4e4bc23342dbbfb71b3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/5057.48c7d5a8740ee05f.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-d0d"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HyHXNcEiP4y7okeysepHn2KtOPFfJJP5EzSJdfAiSwybtIzq1AC0WJx9tlb52n4JIUR78IuUeCDOIbZFdvdpsTJIikHD0CWQ%2BU2I4D8E8tKnuyhFqfQ8t2IPsNtPDO8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4aa5e1f0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/pfe/current/micro.tag.min.js?sw=/sw/universal.js&var=5473348&ymid=806915269137277090&b=&campaignid=&click_id=&ab2r=&rhd=1&var_3=&oaid=elo2tktt3tgd9mqg2sxr7v255qc3p7jn&os_version=&btz=UTC&bto=0&z=6920711&cdn=1&domain=ofklefkian.com&ab2=&ab2_ttl=5184000 | 172.67.158.155 | 200 OK | 27 kB |
URL GET HTTP/3aipsouft.com/pfe/current/micro.tag.min.js?sw=/sw/universal.js&var=5473348&ymid=806915269137277090&b=&campaignid=&click_id=&ab2r=&rhd=1&var_3=&oaid=elo2tktt3tgd9mqg2sxr7v255qc3p7jn&os_version=&btz=UTC&bto=0&z=6920711&cdn=1&domain=ofklefkian.com&ab2=&ab2_ttl=5184000 IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (27012) Hash4d5fdbf5a5eaf9b73b515e58aaea8ab1 af206657baadc54af340d9b32738e9797934eaff 05b026bb4f34d6fd3b5db29bffb1ba5be6f9b11d954fa44fd4d57acd997ecb2d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pfe/current/micro.tag.min.js?sw=/sw/universal.js&var=5473348&ymid=806915269137277090&b=&campaignid=&click_id=&ab2r=&rhd=1&var_3=&oaid=elo2tktt3tgd9mqg2sxr7v255qc3p7jn&os_version=&btz=UTC&bto=0&z=6920711&cdn=1&domain=ofklefkian.com&ab2=&ab2_ttl=5184000 HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Cookie: OAID=elo2tktt3tgd9mqg2sxr7v255qc3p7jn; syncedCookie=true; oaidts=1713947158
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-6985"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0I5lCTeBRZeL1lgast954OTvdNxeW1TPpvdlnbfphJIOLc3cw%2FxnmJ4NOYYja0qsCM%2FkMXGlua6730sVT8kbAGrc5o7mIMN31JLW5GN%2FT6QG%2FeImI33ZKOc2yKjkFdw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4abaf100b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/2090-5c4f654224750f4b.js | 172.67.158.155 | 200 OK | 11 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/2090-5c4f654224750f4b.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (10772), with no line terminators Hash48a7086ede3da4d57eaa11bf2ba435dd a58e6ce70f2675ce2fdcaff04a63d33c4bc0744d 59750f2431678c96646d026ec016eeeb91df7913acfe972f7e9a3110b302dc3f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/2090-5c4f654224750f4b.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-2a14"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9j%2BdZ7adQQ3T7dNnNODMkmIxXgFYDdlazt6uNkzphkQVDxVQe02PTby6RCMaac5wPUceZNRZ0%2FBGbLpxGYGYyaw1wlT%2BZDLJpVWcwqqecG2O%2FY%2FeHxgzgHs3m7u17jg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8ccfd0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/zFWoqaKR48sM9OcMjsBYZ/_buildManifest.js | 172.67.158.155 | 200 OK | 1.6 kB |
URL GET HTTP/3aipsouft.com/_next/static/zFWoqaKR48sM9OcMjsBYZ/_buildManifest.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeASCII text, with very long lines (1697), with no line terminators Hash7e71dccc6c70c005ddaacc0b5714045b 2512620e25785e61a1d7105f81593e1ebbb57603 7ad311bf24476d1d2f4f1d1d3a464e9a235b9d9dce65dfc08ccfe2822244b8a0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/zFWoqaKR48sM9OcMjsBYZ/_buildManifest.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-645"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RhxA5P%2FX8tew1k1uNE1FKdbXlOrps8rb%2BZCrww2wnTa%2F40m%2FhPL%2B07h2y3gzecw2nqvfJirSotgQE9DetYzzI33YPAnK8rdDKMKJ4oYuL%2BU8mzrfpzSfY0Pb%2F5SwA%2BE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8dd110b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/3978.f48a53d50c258a97.js | 172.67.158.155 | 200 OK | 3.0 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/3978.f48a53d50c258a97.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (3033), with no line terminators Hash74bc667253313da76d87a4a986be1be8 9fa4f4b0ef93eb4d387552e257796321d197540f 1c06c61294617665f38c1276deec5d74330236351921feeef0061359cdf139c7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/3978.f48a53d50c258a97.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-b8b"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X488w02tb6JawYNqJN3nVb6xeQ6nY%2FxO%2Fb%2FeUEb5Fwi9cxlDFPVTFlgR7nNJ%2B64UGubWi%2Fr5WjVVl7S9K60lSFtJCfg8SKjLeZyYYSEtv4OU9GvqgozJ7ysx5VTsvLE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4aa5e1c0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/8904.6fbc0cfd51623cbf.js | 172.67.158.155 | 200 OK | 925 B |
URL GET HTTP/3aipsouft.com/_next/static/chunks/8904.6fbc0cfd51623cbf.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (939), with no line terminators Hashe370c58940efd9305daf2c9601a7da0d ac6f3895617e4817d7bf86b7c637a231b13a12b7 acba948084ac297d876a066617c1a4c6d9f5a664d43514af605a4c6d1fe37315
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/8904.6fbc0cfd51623cbf.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-39d"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=psqVFJz3YFHXwQ5ztGi3FioRHgEEAceytHbk4ajFgyqkbM3QDDdBj%2Bbhzey2t5kG1nXm9eV8VhEBLneCOFl3mpJWLaqHncP9r13RKVhmcdo7bdPDMiH3uEuMPRf4lYA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4aa5e1d0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/7347.3193e3f17a1ddcb6.js | 172.67.158.155 | 200 OK | 10 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/7347.3193e3f17a1ddcb6.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (10356), with no line terminators Hash05886f9d4010e04ef1f8f233287867e0 7f35377ed132c3eed29fff55a4a2e3dc31a4360f a9178132461a788ddfa8626c3717f0b82e9f36cf6b0cceca37fde58499070bf8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/7347.3193e3f17a1ddcb6.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-2874"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M%2FfKADEEmE3pDai4uhUZWjbYiK5UmnbkrBbXGl2TJ0XM2qBNmzpWNabCEqElB%2BmS2hr6oh7dMsh5uDwuE4Fksewv8JMoU6xBrvkcnEr%2BAeehKkcHFk8ginaj7E4JG8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8bcf30b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 | 172.67.158.155 | 200 OK | 7.6 kB |
URL User Request GET HTTP/2aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 IP172.67.158.155:443
CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeHTML document, ASCII text, with very long lines (8094), with no line terminators Hash8416f1bd5e4b1e8be63ff64b2044bb85 aa353d8a7edd79b5ebdf5392dc41c81e208da8ec f4bd87bcefc47079a9514ed60aa7bfd4fa870b33d401823f0287ceaa60c2a2d9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /please-confirm/15/2/en.html?z=5473348&var=806915269137277090 HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: text/html
last-modified: Wed, 24 Apr 2024 08:21:52 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u2lJTqI6NPowKBpipRAvoZ2GmdvANhXYJhdmCuRX4kDAlDqctnRKhJIkQ9eb8fdgTBpD2%2BUM5ozb%2BgvqlDJz0A6LwDVVQzTbIZ9P6tqLVpS6Fmj1NLZmO9FvsT1Wnbk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a6ad7bb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| aipsouft.com/sw/universal.js?var=5473348&ymid=806915269137277090&ab2_ttl=5184000&zoneId=6920711 | 172.67.158.155 | 200 OK | 1.5 kB |
URL GET HTTP/3aipsouft.com/sw/universal.js?var=5473348&ymid=806915269137277090&ab2_ttl=5184000&zoneId=6920711 IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeASCII text, with very long lines (1543), with no line terminators Hash4bd2fe598ecbcc8dba6fdf2d51bff9c3 2f4b48bf87709adb3388793e49a5ca447d52596c e0ba8d9941feb88f29063503c5e603249e5ee708e8f41a4c8100d6f514b14347
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sw/universal.js?var=5473348&ymid=806915269137277090&ab2_ttl=5184000&zoneId=6920711 HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Cookie: OAID=elo2tktt3tgd9mqg2sxr7v255qc3p7jn; syncedCookie=true; oaidts=1713947158
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-5b5"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wn2vvMKbS6NdMvafCFmASGNopFot6vZm1VzfvMzdFP0hF1yu3O4t031UyI0salzUYEY6mg3hyBGKydPuwYfJ2IaPuJZ1bdM4oXob3t96I0rdlGBEr8ieHFxCKNr60CA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4ac6f7c0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/pages/%5BlandingName%5D/%5BconfigId%5D/%5B%5B...slug%5D%5D-eaddf0428a16426c.js | 172.67.158.155 | 200 OK | 662 B |
URL GET HTTP/3aipsouft.com/_next/static/chunks/pages/%5BlandingName%5D/%5BconfigId%5D/%5B%5B...slug%5D%5D-eaddf0428a16426c.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (666), with no line terminators Hash49f9c13e383477050c867416e60b3222 eeb57b5af30601d21511ff1eb94001b86d0c6465 1430b1cd7eaade1b7ba5b3a245f9221c0f6067efd03fc812821d0762b5d10ad4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/%5BlandingName%5D/%5BconfigId%5D/%5B%5B...slug%5D%5D-eaddf0428a16426c.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-296"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2p8JUj7VEdKNei0ufKCqMuSU%2FIHKa0GkNH47s0NNA6F%2BqICIKf2bxsGMioslFqJOK87EVsXXFnqL0zPUw9NdXKvqzvFat%2B8sjwj4myMxIIlIxtA0qezuK2wJ%2BAmFmYg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8dd0f0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/framework-3281cb961088a9a3.js | 172.67.158.155 | 200 OK | 26 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/framework-3281cb961088a9a3.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (26042), with no line terminators Hash499fb17b15c09c2d76681f27dde9a031 5564d317c33112db56918ec372d392caabec70f2 9350c53e2fe847ec629962106d01d6af28a0d9c69feb57e7609b3c096935cdb2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/framework-3281cb961088a9a3.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:57 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-65ba"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2%2BZn3JeYPNC3lYqBWBECGOGC279XVrjjhbAdFyO72xqcgY1VSLRkx4m6N9Pvysbfw%2FlvPhWrgTTLuA5BRo9T8Czdr2ohN5HSzIX%2FUe0cktPM%2FQ14ncVTScJmzWQPD9c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4a8bcf60b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aipsouft.com/_next/static/chunks/3091.c21155d8b2396207.js | 172.67.158.155 | 200 OK | 2.4 kB |
URL GET HTTP/3aipsouft.com/_next/static/chunks/3091.c21155d8b2396207.js IP172.67.158.155:443
Requested byhttps://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090 CertificateIssuerLet's Encrypt Subjectaipsouft.com Fingerprint44:E3:5C:7E:AE:A0:81:0D:AD:88:B4:96:AA:93:3E:1D:FF:3D:79:1F ValidityMon, 15 Apr 2024 03:30:06 GMT - Sun, 14 Jul 2024 03:30:05 GMT
File typeJavaScript source, ASCII text, with very long lines (2429), with no line terminators Hash3b91a1044dbf61b756a3730050ebd45f 9336d892614e8c5ab834d493c1cc7c0aa8aacf1a 586c6e521c5ec066a20ba11265175c9c75446d1ae33fc954f14c7d4cd3be2a62
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/3091.c21155d8b2396207.js HTTP/1.1
Host: aipsouft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aipsouft.com/please-confirm/15/2/en.html?z=5473348&var=806915269137277090
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 08:25:58 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 08:21:50 GMT
vary: Accept-Encoding
etag: W/"6628c11e-94d"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CK53FV4A3oHCxtPA3R1FEfez4ZZAUl0%2B9jjNMHVgQePWpUqbfbh8HGlD0RgyQqW3ZPrC2X8YGrrKjVO8BQ%2BFs84g1GXbF%2FNKvDlEBwNtUBKI7ZogCryMCXEtFI0qi%2Bg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794b4aa5e220b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|