Report - www.lovevivah.com/tracking/ealert?uid=URuqtrZso&mtype=yYWvMou&mid=MRVtiz&atype=YqvYtomnRr&src=///doctor%2Dai%2Eshop%2Fsub#NkkuTu

Report Overview

Submitted URL
www.lovevivah.com/tracking/ealert?uid=URuqtrZso&mtype=yYWvMou&mid=MRVtiz&atype=YqvYtomnRr&src=///doctor%2Dai%2Eshop%2Fsub#NkkuTu
IP
182.156.76.126
ASN
#45820 Tata Teleservices ISP AS
Submitted
2024-04-17 04:11:09
Access
public
Website Title
1 Pre Dr. AI
Final URL
doctorai-welcome-page.minisite.ai/#NkkuTu
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
doctorai-welcome-page.minisite.ai	unknown	2020-10-06	2024-02-28	2024-02-28	3.9 kB	702 kB	18.198.151.76
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-16	483 B	1.4 kB	151.101.1.229
1443908614.rsc.cdn77.org	unknown	2013-03-12	2022-12-27	2024-02-28	563 B	38 kB	185.76.9.26
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-16	1.1 kB	50 kB	216.58.207.227
click.pulse.is	unknown	2020-10-06	2022-06-03	2024-03-01	472 B	623 B	18.193.126.142
normandy.cdn.mozilla.net	3562	1998-01-31	2017-01-30	2024-04-16	329 B	1.2 kB	35.201.103.21
classify-client.services.mozilla.com	3824	1994-10-18	2019-01-09	2024-04-16	357 B	344 B	34.98.75.36
doctor-ai.shop	unknown	2024-02-26	2024-02-26	2024-03-04	946 B	72 kB	147.45.198.31
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-16	512 B	1.2 kB	35.244.181.201
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-16	505 B	1.7 kB	142.250.74.106
www.lovevivah.com	unknown	2008-07-25	2015-08-05	2024-03-07	1.2 kB	72 kB	182.156.76.126

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	cdn.jsdelivr.net/npm/form-request-submit-polyfill@2.0.0/form-request-submit-polyfill.min.js	983 B	2024-02-28	2024-04-17
Pretty URL cdn.jsdelivr.net/npm/form-request-submit-polyfill@2.0.0/form-request-submit-polyfill.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-28 04:16:25 Last Seen2024-04-17 06:11:11 Times Seen6 Hash c0387580f30171087dbb62755b6caa99 db3f2f0fb29e46e2e59f81d64ed8e5a6854db2df 5139ebbb89aaa96801e5b5d726f2acbb2606e784d644210f8159451ff34228ad Loading...

	doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/runtime.js	1.9 kB	2024-02-28	2024-04-17
Pretty URL doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/runtime.js IP 18.198.151.76 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-28 04:16:25 Last Seen2024-04-17 06:11:11 Times Seen6 Hash 2635b4928df9f3a49ccc3f5dfc738b4d 8ce578f9f720f64efa902bd74175020696e99d3c a17ccf69d5960565f267093edc665be5ff6cee2253f6570542105092b020f15a Loading...

	doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/polyfills.js	34 kB	2024-02-28	2024-04-17
Pretty URL doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/polyfills.js IP 18.198.151.76 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-28 04:16:25 Last Seen2024-04-17 06:11:11 Times Seen6 Hash bd94291df751cb13de2393cdb6f59f99 06e281e473d94b2c0496b4806f23c9d43abc9303 89f11ccfda2c56753d2d0c6d79726ee7e22280cc64951aef6f5987709c62398a Loading...

	doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/main.js	1.8 MB	2024-04-17	2024-04-17
Pretty URL doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/main.js IP 18.198.151.76 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 06:11:10 Last Seen2024-04-17 06:11:11 Times Seen2 Hash d4875f8f6497ccf6886f471c212b27c8 1600322ae12822346bae342f6656a9b7a1f41a23 d6a3deec56b1378b5685284d9c2125785543c2d870821f730ccc20ccb9b8b218 Loading...

HTTP Transactions (21)

	URL	IP	Response	Size
	www.lovevivah.com/tracking/ealert?uid=URuqtrZso&mtype=yYWvMou&mid=MRVtiz&atype=YqvYtomnRr&src=///doctor%2Dai%2Eshop%2Fsub	182.156.76.126		1 B
URL www.lovevivah.com/tracking/ealert?uid=URuqtrZso&mtype=yYWvMou&mid=MRVtiz&atype=YqvYtomnRr&src=///doctor%2Dai%2Eshop%2Fsub IP 182.156.76.126:0 ASN #45820 Tata Teleservices ISP AS File type very short file (no magic) Size 1 B (1 bytes) Hash 7215ee9c7d9dc229d2921a40e899ec5f b858cb282617fb0956d960215c8e84d1ccf909c6 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068 HTTP Headers GET /tracking/ealert?uid=URuqtrZso&mtype=yYWvMou&mid=MRVtiz&atype=YqvYtomnRr&src=///doctor%2Dai%2Eshop%2Fsub HTTP/1.1 Host: www.lovevivah.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 307 Temporary Redirect Date: Wed, 17 Apr 2024 04:10:43 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34 Vary: User-Agent X-Powered-By: PHP/7.2.34 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform Pragma: no-cache Location: ///doctor-ai.shop/sub Set-Cookie: ci_session=a97misd5u0ofjv7kp0ndrs92kkk7lqp5; expires=Wed, 24-Apr-2024 04:10:43 GMT; Max-Age=604800; path=/; HttpOnly;SameSite=None;Secure Content-Length: 1 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

	doctor-ai.shop/sub	147.45.198.31		0 B
URL doctor-ai.shop/sub IP 147.45.198.31:0 ASN #210546 Miglovets Egor Andreevich File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sub HTTP/1.1 Host: doctor-ai.shop User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 302 Found Server: nginx Date: Wed, 17 Apr 2024 04:10:43 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Wed, 17 Apr 2024 04:10:43 GMT Location: https://doctorai-welcome-page.minisite.ai/ Set-Cookie: _subid=376l60j8am0; expires=Sat, 18 May 2024 04:10:43 GMT; path=/ 528b5=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjNcIjoxNzEzMzI3MDQzfSxcImNhbXBhaWduc1wiOntcIjJcIjoxNzEzMzI3MDQzfSxcInRpbWVcIjoxNzEzMzI3MDQzfSJ9.A4kN47obKUXaYnLn8_D8dLN1k6-XZHu1koWU4X15iv4; expires=Wed, 03 Aug 2078 08:21:26 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

	doctorai-welcome-page.minisite.ai/	18.198.151.76		14 kB
URL doctorai-welcome-page.minisite.ai/ IP 18.198.151.76:0 ASN #16509 AMAZON-02 File type HTML document, Unicode text, UTF-8 text, with very long lines (24682) Size 14 kB (14122 bytes) Hash d7b69af1a185681378e3036ee96f79dc 2012349ef5b354720aafdd5a576ca36a1950fe15 73f9b7d8d18aa69a5173f61a741bc6ec9f4f1d617e4a60d4e63571ea33a4026d HTTP Headers `GET / HTTP/1.1 Host: doctorai-welcome-page.minisite.ai User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 17 Apr 2024 04:10:44 GMT Content-Type: text/html Last-Modified: Fri, 22 Mar 2024 10:08:59 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"65fd58bb-1147f" Content-Encoding: gzip`

	cdn.jsdelivr.net/npm/form-request-submit-polyfill@2.0.0/form-request-submit-polyfill.min.js	151.101.1.229	200 OK	603 B
URL GET HTTP/2 cdn.jsdelivr.net/npm/form-request-submit-polyfill@2.0.0/form-request-submit-polyfill.min.js IP 151.101.1.229:443 ASN #54113 FASTLY Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type ASCII text, with very long lines (619) Size 603 B (603 bytes) Hash c0387580f30171087dbb62755b6caa99 db3f2f0fb29e46e2e59f81d64ed8e5a6854db2df 5139ebbb89aaa96801e5b5d726f2acbb2606e784d644210f8159451ff34228ad HTTP Headers `GET /npm/form-request-submit-polyfill@2.0.0/form-request-submit-polyfill.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 2.0.0 x-jsd-version-type: version etag: W/"3d7-2z8vD7KeRuLln4HWTtjlpoVNst8" content-encoding: br accept-ranges: bytes date: Wed, 17 Apr 2024 04:10:44 GMT age: 1218810 x-served-by: cache-fra-etou8220065-FRA, cache-hel1410033-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 603 X-Firefox-Spdy: h2

	doctorai-welcome-page.minisite.ai/css/theme_settings_styles.css	18.198.151.76	200 OK	651 B
URL GET HTTP/1.1 doctorai-welcome-page.minisite.ai/css/theme_settings_styles.css IP 18.198.151.76:443 ASN #16509 AMAZON-02 Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerSectigo Limited Subject.minisite.ai Fingerprint6D:2F:27:97:8C:76:87:CC:F1:AE:AF:32:DE:E6:36:DF:1D:F5:8C:10 ValidityTue, 06 Feb 2024 00:00:00 GMT - Wed, 12 Feb 2025 23:59:59 GMT File type ASCII text Size 651 B (651 bytes) Hash 2ec2eed4950fbbc499236d4dda8e9516 3ad003200311d051180520d5175ecae6ad772895 af57d921eff5e7fce80fb78b2e9a377d8bef2722acf60a56486a78ed7730e1d5 HTTP Headers `GET /css/theme_settings_styles.css HTTP/1.1 Host: doctorai-welcome-page.minisite.ai User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 17 Apr 2024 04:10:44 GMT Content-Type: text/css Last-Modified: Fri, 22 Mar 2024 10:08:58 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"65fd58ba-9bd" Content-Encoding: gzip`

	doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/styles.css	18.198.151.76	200 OK	19 kB
URL GET HTTP/1.1 doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/styles.css IP 18.198.151.76:443 ASN #16509 AMAZON-02 Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerSectigo Limited Subject.minisite.ai Fingerprint6D:2F:27:97:8C:76:87:CC:F1:AE:AF:32:DE:E6:36:DF:1D:F5:8C:10 ValidityTue, 06 Feb 2024 00:00:00 GMT - Wed, 12 Feb 2025 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 19 kB (18899 bytes) Hash d60ace093f0e35c19a4db8c993d1b5e8 5e4a1698d906145f04ab829cf3e590f77f9257c1 67f15d4fbd290a4ecc99200d7f37c412f711df2e97ba6e867d8ef414529ed026 HTTP Headers `GET /sp-auth/constructor/mini-landing-site/browser/styles.css HTTP/1.1 Host: doctorai-welcome-page.minisite.ai User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: nginx Date: Wed, 17 Apr 2024 04:10:44 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding, Accept-Encoding Last-Modified: Mon, 25 Mar 2024 08:05:09 GMT ETag: W/"66013035-130f9" Access-Control-Expose-Headers: Content-Length,Content-Range x-sp-pr: lpr-05 Access-Control-Allow-Origin: , * Access-Control-Allow-Methods: GET, POST, DELETE, PUT, OPTIONS, GET, POST, OPTIONS, DELETE, PUT Access-Control-Allow-Headers: Authorization,DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range, DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type Content-Encoding: gzip

	doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/runtime.js	18.198.151.76	200 OK	1.0 kB
URL GET HTTP/1.1 doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/runtime.js IP 18.198.151.76:443 ASN #16509 AMAZON-02 Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerSectigo Limited Subject.minisite.ai Fingerprint6D:2F:27:97:8C:76:87:CC:F1:AE:AF:32:DE:E6:36:DF:1D:F5:8C:10 ValidityTue, 06 Feb 2024 00:00:00 GMT - Wed, 12 Feb 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (1923), with no line terminators Size 1.0 kB (1049 bytes) Hash 2635b4928df9f3a49ccc3f5dfc738b4d 8ce578f9f720f64efa902bd74175020696e99d3c a17ccf69d5960565f267093edc665be5ff6cee2253f6570542105092b020f15a HTTP Headers `GET /sp-auth/constructor/mini-landing-site/browser/runtime.js HTTP/1.1 Host: doctorai-welcome-page.minisite.ai User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: nginx Date: Wed, 17 Apr 2024 04:10:44 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding, Accept-Encoding Last-Modified: Mon, 25 Mar 2024 08:05:09 GMT ETag: W/"66013035-783" Access-Control-Expose-Headers: Content-Length,Content-Range Cache-Control: no-store, no-cache, must-revalidate x-sp-pr: lpr-05 Access-Control-Allow-Origin: , Access-Control-Allow-Methods: GET, POST, DELETE, PUT, OPTIONS, GET, POST, OPTIONS, DELETE, PUT Access-Control-Allow-Headers: Authorization,DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range, DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type Content-Encoding: gzip

	doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/polyfills.js	18.198.151.76	200 OK	14 kB
URL GET HTTP/1.1 doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/polyfills.js IP 18.198.151.76:443 ASN #16509 AMAZON-02 Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerSectigo Limited Subject.minisite.ai Fingerprint6D:2F:27:97:8C:76:87:CC:F1:AE:AF:32:DE:E6:36:DF:1D:F5:8C:10 ValidityTue, 06 Feb 2024 00:00:00 GMT - Wed, 12 Feb 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (33881), with no line terminators Size 14 kB (13454 bytes) Hash bd94291df751cb13de2393cdb6f59f99 06e281e473d94b2c0496b4806f23c9d43abc9303 89f11ccfda2c56753d2d0c6d79726ee7e22280cc64951aef6f5987709c62398a HTTP Headers `GET /sp-auth/constructor/mini-landing-site/browser/polyfills.js HTTP/1.1 Host: doctorai-welcome-page.minisite.ai User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: nginx Date: Wed, 17 Apr 2024 04:10:44 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding, Accept-Encoding Last-Modified: Mon, 25 Mar 2024 08:05:09 GMT ETag: W/"66013035-8459" Access-Control-Expose-Headers: Content-Length,Content-Range Cache-Control: no-store, no-cache, must-revalidate x-sp-pr: lpr-05 Access-Control-Allow-Origin: , Access-Control-Allow-Methods: GET, POST, DELETE, PUT, OPTIONS, GET, POST, OPTIONS, DELETE, PUT Access-Control-Allow-Headers: Authorization,DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range, DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type Content-Encoding: gzip

	1443908614.rsc.cdn77.org/b07fedd68eb800767eba7487ddea43598598008/resize_landing/doctor-ai-high-resolution-logo-transparent_png/1920.webp	185.76.9.26	200 OK	38 kB
URL GET HTTP/2 1443908614.rsc.cdn77.org/b07fedd68eb800767eba7487ddea43598598008/resize_landing/doctor-ai-high-resolution-logo-transparent_png/1920.webp IP 185.76.9.26:443 ASN #60068 Datacamp Limited Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerLet's Encrypt Subjectwww.cdn77.com FingerprintC8:9D:13:B0:DB:68:50:CF:32:B1:D9:54:1F:A1:A3:EB:0C:9E:D1:B5 ValidityWed, 10 Apr 2024 09:50:18 GMT - Tue, 09 Jul 2024 09:50:17 GMT File type RIFF (little-endian) data, Web/P image Size 38 kB (37802 bytes) Hash eeb26a6ec90627fddbefe8a6d104b425 b3405a432e8ee06f1ef2bf43b3dc68baa1391657 61f084821dd55320c4f15565470f7699e8a1f5db9c6c75019406fff201601182 HTTP Headers GET /b07fedd68eb800767eba7487ddea43598598008/resize_landing/doctor-ai-high-resolution-logo-transparent_png/1920.webp HTTP/1.1 Host: 1443908614.rsc.cdn77.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Wed, 17 Apr 2024 04:10:44 GMT content-type: image/webp content-length: 37802 x-amz-id-2: 5jSRZSmssV9h2pNMS/exh4bCuFeROOErAXEMvTbgLX1B12WOvHWVnDBM4kIbnNuQbsSI4nbOYFI= x-amz-request-id: 8J63WXWB15SSJV3D last-modified: Thu, 14 Mar 2024 10:57:03 GMT etag: "eeb26a6ec90627fddbefe8a6d104b425" x-amz-server-side-encryption: AES256 x-77-nzt: EwgBuUwJFAFBCAG5TAoBAUEMAYrHJcEB90H8CgA x-77-nzt-ray: af585630cb22ee34c44b1f66a391aa26 x-accel-expires: @1713643907 x-accel-date: 1712607107 x-77-cache: HIT x-77-age: 719937 server: CDN77-Turbo x-cache: MISS x-77-pop: stockholmSE accept-ranges: bytes X-Firefox-Spdy: h2

	doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/main.js	18.198.151.76	200 OK	577 kB
URL GET HTTP/1.1 doctorai-welcome-page.minisite.ai/sp-auth/constructor/mini-landing-site/browser/main.js IP 18.198.151.76:443 ASN #16509 AMAZON-02 Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerSectigo Limited Subject.minisite.ai Fingerprint6D:2F:27:97:8C:76:87:CC:F1:AE:AF:32:DE:E6:36:DF:1D:F5:8C:10 ValidityTue, 06 Feb 2024 00:00:00 GMT - Wed, 12 Feb 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 577 kB (576669 bytes) Hash d4875f8f6497ccf6886f471c212b27c8 1600322ae12822346bae342f6656a9b7a1f41a23 d6a3deec56b1378b5685284d9c2125785543c2d870821f730ccc20ccb9b8b218 HTTP Headers `GET /sp-auth/constructor/mini-landing-site/browser/main.js HTTP/1.1 Host: doctorai-welcome-page.minisite.ai User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: nginx Date: Wed, 17 Apr 2024 04:10:44 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding, Accept-Encoding Last-Modified: Mon, 15 Apr 2024 16:12:53 GMT ETag: W/"661d5205-1bd6bc" Access-Control-Expose-Headers: Content-Length,Content-Range Cache-Control: no-store, no-cache, must-revalidate x-sp-pr: lpr-05 Access-Control-Allow-Origin: , Access-Control-Allow-Methods: GET, POST, DELETE, PUT, OPTIONS, GET, POST, OPTIONS, DELETE, PUT Access-Control-Allow-Headers: Authorization,DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range, DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type Content-Encoding: gzip

	doctorai-welcome-page.minisite.ai/sp-auth/constructor/assets/img/sendpulse-logo-symbol.svg	18.198.151.76	200 OK	2.0 kB
URL GET HTTP/1.1 doctorai-welcome-page.minisite.ai/sp-auth/constructor/assets/img/sendpulse-logo-symbol.svg IP 18.198.151.76:443 ASN #16509 AMAZON-02 Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerSectigo Limited Subject.minisite.ai Fingerprint6D:2F:27:97:8C:76:87:CC:F1:AE:AF:32:DE:E6:36:DF:1D:F5:8C:10 ValidityTue, 06 Feb 2024 00:00:00 GMT - Wed, 12 Feb 2025 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 2.0 kB (2001 bytes) Hash 84c077ff94a7979622dd5cc329e46a2c 95fe6e1c1ce9cf932bfa6203e88a87de1433492c c588d59b9cfd1e5f5ff990983d41f1323a18ac2db614fadebf5987f72d2879f4 HTTP Headers `GET /sp-auth/constructor/assets/img/sendpulse-logo-symbol.svg HTTP/1.1 Host: doctorai-welcome-page.minisite.ai User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: nginx Date: Wed, 17 Apr 2024 04:10:44 GMT Content-Type: image/svg+xml Content-Length: 2001 Connection: keep-alive Last-Modified: Tue, 16 Apr 2024 10:44:37 GMT ETag: "661e5695-7d1" Access-Control-Expose-Headers: Content-Length,Content-Range Accept-Ranges: bytes x-sp-pr: lpr-05 Access-Control-Allow-Origin: , Access-Control-Allow-Methods: GET, POST, DELETE, PUT, OPTIONS, GET, POST, OPTIONS, DELETE, PUT Access-Control-Allow-Headers: Authorization,DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range, DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type

	fonts.googleapis.com/css2?family=Manrope:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&display=swap	142.250.74.106	200 OK	1.1 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Manrope:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT File type gzip compressed data, max compression Size 1.1 kB (1114 bytes) Hash cb165fa4b6d333cca3d5334ec08b5f5d c3643a7834ac297f1fa229437caba261f33aa6c8 68e38b9703487b26dbae7aa146bbe3dc2c949043a6db0d12bc8aaa23294f72c4 HTTP Headers `GET /css2?family=Manrope:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 17 Apr 2024 04:10:44 GMT date: Wed, 17 Apr 2024 04:10:44 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggexSg.woff2	216.58.207.227	200 OK	24 kB
URL GET HTTP/2 fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggexSg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT File type Web Open Font Format (Version 2), TrueType, length 24376, version 1.0 Size 24 kB (24376 bytes) Hash fc03edc2c67353b7608b593ee05565c6 72106071998b0ef5f145ea4f9d53459e52a33e9f 14be4114dcfde74652f19f9ffae8c9bb50707e9e88bd2b1fcd86fb50224109e7 HTTP Headers GET /s/manrope/v15/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://doctorai-welcome-page.minisite.ai DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 24376 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 16 Apr 2024 03:15:40 GMT expires: Wed, 16 Apr 2025 03:15:40 GMT cache-control: public, max-age=31536000 age: 89704 last-modified: Wed, 13 Sep 2023 23:22:16 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	click.pulse.is/public/visit/image/8598008/154999/186344.png	18.193.126.142	200 OK	95 B
URL GET HTTP/1.1 click.pulse.is/public/visit/image/8598008/154999/186344.png IP 18.193.126.142:443 ASN #16509 AMAZON-02 Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerSectigo Limited Subject.pulse.is FingerprintCA:EC:C9:FE:8F:FE:17:97:4D:44:90:D2:55:7E:C0:17:06:B1:37:2A ValiditySat, 10 Feb 2024 00:00:00 GMT - Thu, 13 Feb 2025 23:59:59 GMT File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced Size 95 B (95 bytes) Hash 60cf42b4d05caf10cf8bb15c0817a7b4 bd269860bb508aebcb6f08fe7289d5f117830383 18c327afa903633f86c3efcf12b77f098077eacaa8be101bb007846fd74f8b93 HTTP Headers `GET /public/visit/image/8598008/154999/186344.png HTTP/1.1 Host: click.pulse.is User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://doctorai-welcome-page.minisite.ai/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: nginx Date: Wed, 17 Apr 2024 04:10:44 GMT Content-Type: image/png Transfer-Encoding: chunked Connection: keep-alive X-Powered-By: PHP/8.2.11 Cache-Control: private, must-revalidate pragma: no-cache expires: -1 Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, DELETE, PUT, OPTIONS Access-Control-Allow-Headers: Authorization,DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range Access-Control-Expose-Headers: Content-Length,Content-Range

	fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggexSg.woff2	216.58.207.227	200 OK	24 kB
URL GET HTTP/2 fonts.gstatic.com/s/manrope/v15/xn7gYHE41ni1AdIRggexSg.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://doctorai-welcome-page.minisite.ai/#NkkuTu Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT File type Web Open Font Format (Version 2), TrueType, length 24376, version 1.0 Size 24 kB (24376 bytes) Hash fc03edc2c67353b7608b593ee05565c6 72106071998b0ef5f145ea4f9d53459e52a33e9f 14be4114dcfde74652f19f9ffae8c9bb50707e9e88bd2b1fcd86fb50224109e7 HTTP Headers GET /s/manrope/v15/xn7gYHE41ni1AdIRggexSg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://doctorai-welcome-page.minisite.ai DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 24376 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 16 Apr 2024 03:15:40 GMT expires: Wed, 16 Apr 2025 03:15:40 GMT cache-control: public, max-age=31536000 age: 89704 last-modified: Wed, 13 Sep 2023 23:22:16 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	normandy.cdn.mozilla.net/api/v1/	35.201.103.21		598 B
URL normandy.cdn.mozilla.net/api/v1/ IP 35.201.103.21:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type JSON text data Size 598 B (598 bytes) Hash 3076f9a5cb273105528b893ff7111e41 b8990c145fe71b9a2410eea41a60a712b43b82bf 69c578fb0c03a28141a975833f660f4571e7991dc28ae7f9cead37672ee2c9b3 HTTP Headers `GET /api/v1/ HTTP/1.1 Host: normandy.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-length: 598 allow: GET, HEAD, OPTIONS content-security-policy: form-action 'self'; object-src 'none'; frame-src 'none'; base-uri 'none'; block-all-mixed-content; default-src 'self' https://normandy.cdn.mozilla.net/; worker-src 'none'; report-uri /__cspreport__ x-frame-options: DENY x-content-type-options: nosniff x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 via: 1.1 google date: Tue, 16 Apr 2024 23:46:22 GMT cache-control: public, max-age=86400 content-type: application/json vary: Accept, Origin age: 15873 alt-svc: clear X-Firefox-Spdy: h2

	classify-client.services.mozilla.com/api/v1/classify_client/	34.98.75.36		64 B
URL classify-client.services.mozilla.com/api/v1/classify_client/ IP 34.98.75.36:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type JSON text data Size 64 B (64 bytes) Hash b13e6fdabd0df1f6becef603d8a03283 e28e053c43f16755d7e40a468d41017df931c1db 2bc37a4a4dd42da2169baf165b97c49b1a7ed81b885f620fb7b91dbe7da63791 HTTP Headers `GET /api/v1/classify_client/ HTTP/1.1 Host: classify-client.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 17 Apr 2024 04:10:55 GMT content-type: application/json content-length: 64 cache-control: max-age=0, no-cache, no-store, must-revalidate strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml	35.244.181.201		444 B
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP 35.244.181.201:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type XML 1.0 document, ASCII text, with very long lines (332) Size 444 B (444 bytes) Hash 3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463 HTTP Headers `GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1 Host: aus5.mozilla.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Cache-Control: no-cache Pragma: no-cache Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx rule-id: unknown rule-data-version: unknown content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=YDBScxPfHz6N1Y1JQtFtsQQi0Iu4sqyDC8XR1wTvSDJ_ACZTKE6VxLiRmqqcFyBWWqX3o3nkwkBYfkNHGNbGZUUxAzOTDLjrJHlfNYAVsm1LNTm62E1EmS-IL1yiW7wK strict-transport-security: max-age=31536000; x-content-type-options: nosniff content-security-policy: default-src 'none'; frame-ancestors 'none' x-proxy-cache-status: EXPIRED content-encoding: gzip via: 1.1 google date: Wed, 17 Apr 2024 04:10:31 GMT content-type: text/xml; charset=utf-8 vary: Accept-Encoding content-length: 444 age: 30 cache-control: public,max-age=90 alt-svc: clear X-Firefox-Spdy: h2

	www.lovevivah.com/tracking/ealert?uid=URuqtrZso&mtype=yYWvMou&mid=MRVtiz&atype=YqvYtomnRr&src=///doctor%2Dai%2Eshop%2Fsub	182.156.76.126	307 Temporary Redirect	71 kB
URL User Request GET HTTP/1.1 www.lovevivah.com/tracking/ealert?uid=URuqtrZso&mtype=yYWvMou&mid=MRVtiz&atype=YqvYtomnRr&src=///doctor%2Dai%2Eshop%2Fsub IP 182.156.76.126:443 ASN #45820 Tata Teleservices ISP AS Certificate IssuerLet's Encrypt Subjectlovevivah.com FingerprintA7:B1:E5:67:9E:64:7F:6C:03:55:F1:98:C4:FA:C2:1B:BB:F8:02:23 ValidityWed, 07 Feb 2024 14:28:19 GMT - Tue, 07 May 2024 14:28:18 GMT File type Size 71 kB (70783 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tracking/ealert?uid=URuqtrZso&mtype=yYWvMou&mid=MRVtiz&atype=YqvYtomnRr&src=///doctor%2Dai%2Eshop%2Fsub HTTP/1.1 Host: www.lovevivah.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 307 Temporary Redirect Date: Wed, 17 Apr 2024 04:10:43 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.2.34 Vary: User-Agent X-Powered-By: PHP/7.2.34 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform Pragma: no-cache Location: ///doctor-ai.shop/sub Set-Cookie: ci_session=a97misd5u0ofjv7kp0ndrs92kkk7lqp5; expires=Wed, 24-Apr-2024 04:10:43 GMT; Max-Age=604800; path=/; HttpOnly;SameSite=None;Secure Content-Length: 1 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

	doctorai-welcome-page.minisite.ai/	18.198.151.76	200 OK	71 kB
URL User Request GET HTTP/1.1 doctorai-welcome-page.minisite.ai/ IP 18.198.151.76:443 ASN #16509 AMAZON-02 Certificate IssuerSectigo Limited Subject.minisite.ai Fingerprint6D:2F:27:97:8C:76:87:CC:F1:AE:AF:32:DE:E6:36:DF:1D:F5:8C:10 ValidityTue, 06 Feb 2024 00:00:00 GMT - Wed, 12 Feb 2025 23:59:59 GMT File type Size 71 kB (70783 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: doctorai-welcome-page.minisite.ai User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Wed, 17 Apr 2024 04:10:44 GMT Content-Type: text/html Last-Modified: Fri, 22 Mar 2024 10:08:59 GMT Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding ETag: W/"65fd58bb-1147f" Content-Encoding: gzip`

	doctor-ai.shop/sub	147.45.198.31	302 Found	71 kB
URL User Request GET HTTP/1.1 doctor-ai.shop/sub IP 147.45.198.31:443 ASN #210546 Miglovets Egor Andreevich Certificate IssuerLet's Encrypt Subjectdoctor-ai.shop Fingerprint6A:53:5D:8C:1A:A7:6B:35:F2:C9:64:A3:FD:C6:A4:E9:8B:D1:71:14 ValidityMon, 26 Feb 2024 17:31:15 GMT - Sun, 26 May 2024 17:31:14 GMT File type Size 71 kB (70783 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sub HTTP/1.1 Host: doctor-ai.shop User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 302 Found Server: nginx Date: Wed, 17 Apr 2024 04:10:43 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Wed, 17 Apr 2024 04:10:43 GMT Location: https://doctorai-welcome-page.minisite.ai/ Set-Cookie: _subid=376l60j8am0; expires=Sat, 18 May 2024 04:10:43 GMT; path=/ 528b5=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjNcIjoxNzEzMzI3MDQzfSxcImNhbXBhaWduc1wiOntcIjJcIjoxNzEzMzI3MDQzfSxcInRpbWVcIjoxNzEzMzI3MDQzfSJ9.A4kN47obKUXaYnLn8_D8dLN1k6-XZHu1koWU4X15iv4; expires=Wed, 03 Aug 2078 08:21:26 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: *

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (21)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by