Report - webmail-strato.de-w9ttgpkuij.com/ret_url/f1063a66f88fbc4e864c066e22c0f076/login.php?serID=email

Report Overview

Visited public
2025-05-19 11:45:09
Tags
URL
webmail-strato.de-w9ttgpkuij.com/ret_url/f1063a66f88fbc4e864c066e22c0f076/login.php?serID=email_auth&sessionID=yIFqQyJFQHSG&em=
Finishing URL
www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
IP / ASN
45.158.169.85
#138195 MOACK.Co.LTD
Title
AI Website Builder | GPT Site Creator & Generator | Sites GPT

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

324

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
q.quora.com	3239	2000-03-29	2017-05-08	2025-05-16	1.2 kB	1.0 kB	162.159.152.17
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-05-14	2.1 kB	1.7 MB	142.250.74.136
sc-static.net	1183	2017-03-16	2017-09-05	2025-05-14	417 B	58 kB	3.163.248.4
www.clickcease.com	12756	2014-03-13	2015-03-25	2025-05-17	423 B	146 kB	54.240.174.33
sitesgpt.com	unknown	2023-03-23	2025-03-06	2025-05-17	524 B	240 kB	76.76.21.21
grsm.io	105463	2016-05-19	2017-02-05	2025-05-16	483 B	449 B	104.18.10.212
partnerlinks.io	unknown	2021-10-28	2021-12-07	2025-05-16	477 B	503 B	104.18.31.133
bat.bing.com	387	1996-01-29	2014-04-08	2025-05-14	831 B	57 kB	150.171.28.10
res.cloudinary.com	2520	2011-05-24	2012-10-03	2025-05-15	7.2 kB	3.2 MB	96.6.16.40
www.redditstatic.com	1440	2011-11-09	2012-06-30	2025-05-15	923 B	71 kB	151.101.65.140
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-05-14	2.2 kB	77 kB	142.250.74.35
ct.pinterest.com	852	2009-11-26	2015-03-12	2025-05-14	2.0 kB	2.8 kB	151.101.0.84
js.partnerstack.com	35088	2012-04-22	2021-03-01	2025-05-15	412 B	9.4 kB	104.18.6.218
s.pinimg.com	732	2010-05-29	2017-01-13	2025-05-15	837 B	89 kB	151.101.0.84
www.google.com	7	1997-09-15	2015-05-10	2025-05-14	931 B	567 B	142.250.74.68
affiliate.sitesgpt.com	unknown	2023-03-23	2024-12-12	2025-05-17	620 B	503 B	104.18.30.133
webmail-strato.de-w9ttgpkuij.com	unknown	2025-03-05	2025-03-06	2025-05-17	595 B	240 kB	45.158.169.85
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-05-14	515 B	15 kB	142.250.74.10
qvdt3feo.com	unknown	2022-05-16	2022-05-17	2025-05-17	411 B	24 kB	3.210.30.123
www.sitesgpt.com	unknown	2023-03-23	2023-10-01	2025-05-17	62 kB	2.3 MB	76.76.21.241
contentdsp.com	73732	2018-05-07	2018-08-07	2025-05-17	413 B	22 kB	54.86.146.228
bat.bing.net	unknown	1997-09-03	2023-11-04	2025-05-15	1.5 kB	1.1 kB	150.171.28.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

Scan Date	Severity	Indicator	Alert
2025-03-23	medium	www.sitesgpt.com/_nuxt/hero-banner.Dn8qn9Gp.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DE3ZGq8R.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/pricing.8kgCgzTq.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DweOskmn.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/upsell-grid.IDNBL04O.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/value-propositions.C96ctOxB.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/qaRNFkzp.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DUBOytt4.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CtttRcY8.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/ozdIdy08.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DeIzBQTL.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/0KsdZ0HR.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/C9eHKq99.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/BW4iZjkm.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/intro-content.BsdU9ULF.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CBnp3nFE.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DYxG3wnY.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/BXFidBIn.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/register.CeP92_Ys.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CNRwdRu2.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/fwH7ysCB.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CHNhef8t.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/Bb6y1F1E.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DUYOKm7Y.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/ByjbMclv.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/login-form.BH3L7cHi.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CIuyZic-.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CUCXNgFG.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CRVpyP_y.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CfART4xX.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/index.dOE5grau.css	Other
2025-03-23	medium	www.sitesgpt.com/favicon.ico	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/D4DrLqXm.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DeRjPn5x.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DUt1gEF9.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/B1i-OfP0.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CMPv04-F.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/site-header.BJFjwAPc.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/swiper-vue.Bs3d9ZnH.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CnP_jH6d.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/BHvetyLQ.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/C8-mDos4.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/BhinJWWt.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/B0g8w6C8.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CqCfbMda.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/xLpCPpNP.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/68GCDJDY.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/ChFW4WNb.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CejtcvUI.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DOVyz9J4.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/builds/meta/0912dd8d-e786-4f89-b508-f47fc73d35bc.json	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/B2g_S0lp.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/Df4inRZn.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/BD40HhGi.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/OnAibvkV.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/D7VAZrCq.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DCU53ubg.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/Dou5JDIP.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/site-footer.DcygpbFI.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DDF8mOQE.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/LPlMyxak.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DoQ0dPPk.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/CLa8qfpp.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/content.s8zxTeBH.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/DavdG733.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/entry.Ca5DVxA-.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/get-domain-popup.klLoWUUI.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/content-well.DYqmTz1u.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/message.D4_3-x9f.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/review-carousel.D9eQxoXs.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/authentication.DelmvyiP.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/BjmFErMh.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/j_9hAtmz.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/overlay.-t7vUJRR.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/BEKtBocn.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/VTFInkyB.js	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/pagination.BAmrnf5Q.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/login.R-SOXsP5.css	Other
2025-03-23	medium	www.sitesgpt.com/_nuxt/accordion-with-image.DPUw8nGk.css	Other

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	de-w9ttgpkuij.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed
2025-05-19	medium	sitesgpt.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (85)

	URL	From	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-1MG910DR2C	ScriptElement	459 kB	2025-05-19	2025-05-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-1MG910DR2C IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-19 11:45 Last Seen2025-05-19 11:45 Times Seen1 Hash bc9b857fd1f905fe25252ace02ec397b 47969b774ec568306364ee2806bfdefcde9a811e 39083c6d2154db7795811c0cdf080d4701333c3d2381e67dbf59c25346b9afa1 Loading...

	www.sitesgpt.com/_nuxt/0KsdZ0HR.js	ImportedModule	2.4 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/0KsdZ0HR.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash bd20ceb5a47b97cebd69dd8165f2a0cb 188bb97d99c7ad9d816e08bde13554daa7995176 6b623cbcfb89f883f57b73b8892de86f6bbad158ebd4161e8e9dcd7c59cc50d9 Loading...

	www.sitesgpt.com/_nuxt/DweOskmn.js	ImportedModule	584 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/DweOskmn.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 2e9a1bc698d17a87e04c4f5963a2d3fb f00bde1833455b5e0e333d61a75eee566cc04335 18e932663bad31a345f273ea316aa5cd0772ec99378f37d14bd350067e2e5c5e Loading...

	www.redditstatic.com/ads/pixel.js	ScriptElement	69 kB	2025-05-08	2025-05-28
Pretty URL www.redditstatic.com/ads/pixel.js IP 151.101.65.140 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 18:14 Last Seen2025-05-28 20:21 Times Seen338 Hash 940ec35f0004ce16a08c8a6f98c8f311 120a7c64b10e211beac0f900560668161641a438 32381af77f65ff6b4b562c4ea846edc57ae7e5b7bff1e651c7d799e4003d5929 Loading...

	www.sitesgpt.com/_nuxt/B0g8w6C8.js	ImportedModule	787 B	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/B0g8w6C8.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 925257e0b57d8e78508c67c5945d73df feec76bbe91e871d088786d209dcb1fa1224c342 2589162ec5caa7e2ee2225a715753fa50069e5d724c3aa11ce8692f4ebe4aa43 Loading...

	www.sitesgpt.com/_nuxt/CnP_jH6d.js	ScriptElement	8.7 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/CnP_jH6d.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash a43e4018f3437cb25fcfcf43e3ba74fb bb91064240faa1e2c8a1de6b0e71a29a1a2d17a3 4206b9cf27307f2e34a208ed3a86c63d883c36ec4702fa39b8bb115f2dc96954 Loading...

	www.sitesgpt.com/_nuxt/BhinJWWt.js	ScriptElement	10 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/BhinJWWt.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 9c0bf6b43792085632b8811c51e5bdee 369fe8aac7f1ddaf54255aa7ecfd6f745888a75f 5fa28080eedaf1547ae982da7121b966160ccce5fa03bb13888ff596a0eaad74 Loading...

	www.sitesgpt.com/_nuxt/DeRjPn5x.js	ImportedModule	884 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/DeRjPn5x.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 697198de5c93fe4454690a847d227a8a 54ed4c5f133f2f789c038e78716054f2fe31e0d6 89f8dfc7c3e8ed6146bebafc0440a1db2d51efde1e5e997a875de503e1b63c17 Loading...

	www.sitesgpt.com/_nuxt/CNRwdRu2.js	ImportedModule	475 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/CNRwdRu2.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 9ab84556465a36efa1b468d894a48045 ebacf2eea3eeb9913889aa7b7823ac2e9ffe0f89 320f2ed0765eef94b90785dd14c6726b586b2d63234fffd59c9d595253afd486 Loading...

	www.sitesgpt.com/_nuxt/ByjbMclv.js	ImportedModule	169 B	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/ByjbMclv.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 8a75c4ea212034f99e9044cf333095c7 95e7842b1824b78570e78eb23d1c2841a39a9efa aa0f6e47bc02840425cafac7860ca50bf2cc04851c1f1db048b49a13bded2aba Loading...

	bat.bing.com/p/action/343067317.js	ScriptElement	3.2 kB	2025-04-01	2025-06-10
Pretty URL bat.bing.com/p/action/343067317.js IP 150.171.28.10 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-01 21:36 Last Seen2025-06-10 00:03 Times Seen3091 Hash a398e3c6baee8af7166766716b7d995a 72a0078445404182de5860a02a2b1a3edcfa7d58 e9e475e5a9a7516f2f0dba6ce1fd054ee4a8791d4c8b6897c0d8a0b90e249e97 Loading...

	www.sitesgpt.com/_nuxt/CBnp3nFE.js	ImportedModule	893 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/CBnp3nFE.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash e9ba1e89b0ed81c991806aef4d0e0e56 fc6ae74ae416a8433361263729221674b70d3b28 3f38babb2fbf6ed930fc948dec02febd6cd9874b2bc6cabba7c7a3c830218fcf Loading...

	www.sitesgpt.com/_nuxt/BW4iZjkm.js	ImportedModule	4.5 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/BW4iZjkm.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 5cd176a9a0a71a01d26b0e1354504bae 782caf24060e7a6b543eacb3bd8a42be2b4096cd acc62b96db8eb04aac03f181dc60f78972106b825fc149dcf393f8eec49091e7 Loading...

	www.sitesgpt.com/_nuxt/D4DrLqXm.js	ImportedModule	424 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/D4DrLqXm.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 42dbe8219faca64c159d72052c8d74a8 f46024b5e9aa4b39f0bdcd61daa34986a7d298e6 95c3a3be564b0689f74482b07792110bfae2dda84af1f89755b0cc959b7b88d3 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	Function	37 B	2023-04-11	2025-06-25
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-06-25 06:22 Times Seen280505 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	www.sitesgpt.com/_nuxt/CIuyZic-.js	ImportedModule	784 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/CIuyZic-.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 283aae6265195aa9653df968e0664311 8c59d783f11b2e7a0c1c6aa63b6ac1276db37f5c 8e0edcb7a9bdad4f0daaa4bd7978e0d9e553be3872e9fe7e820d9d49e98770dd Loading...

	www.sitesgpt.com/_nuxt/DUYOKm7Y.js	ImportedModule	667 B	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/DUYOKm7Y.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash ea8044698dbcbce18bd1e2c0512038e0 998ae9e5e78780f092ad993c5e85a6bbc47c0b10 0ba8ec7c97069b664b95ccba186bf46c9875935d515e136f7884dcf31024dd65 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	Function	37 B	2023-04-11	2025-06-25
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-06-25 06:22 Times Seen280505 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	www.sitesgpt.com/_nuxt/DoQ0dPPk.js	ImportedModule	2.1 kB	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/DoQ0dPPk.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 3f1178407f264caccf4a54e20f55e31c acc1493cbb6ec58a38c26625f53df2011a81faba 6da0dc2fa5c66abf4dcb3d3d2afd682902d2f169602f3810420776bb594c54bb Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	422 B	2024-05-01	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 01:33 Last Seen2025-06-24 22:04 Times Seen225 Hash 9ff24ab8240c9310b5a75fa094a18723 a73bff2ec2e2bd5be52ab988a70b1dc3cc677bfa d4a7aa391417fa66ccf348346a6d01421058310335e8aaf8dd2a2078fc50f24e Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	887 B	2024-05-01	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 01:33 Last Seen2025-06-24 22:04 Times Seen225 Hash ac4d275fefe08701e2028ce82281a3a4 5aae779123f88911e4c32ab525660ca8892d7be9 3b768767e8455569e5d284c90489b7a76c9790d8280f28e680adbc50cace02a2 Loading...

	www.sitesgpt.com/_nuxt/CHNhef8t.js	ScriptElement	823 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/CHNhef8t.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 8d4c59145376f556377848a767a15371 a4cb317e65eebc75c8bff0e72d2b7fe2955d4409 61fd18012ec3d78c9e38a59af07e2091b34dedb3c161712fb5975a29faf55b1b Loading...

	s.pinimg.com/ct/core.js	ScriptElement	4.7 kB	2025-01-31	2025-06-04
Pretty URL s.pinimg.com/ct/core.js IP 151.101.0.84 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-31 00:20 Last Seen2025-06-04 21:08 Times Seen3014 Hash 0c7e7a463edc91437c917f70f0a2390e afc6365f94059242b878b957183fe761aea36d5c 4dcc63f7d8103225fdef27e536a7ef191efca98ee1c806bc1795ad1d483e235e Loading...

	www.sitesgpt.com/_nuxt/BjmFErMh.js	ImportedModule	1.3 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/BjmFErMh.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash ed882c5660a2773e76871f462720ac86 3bf9ea6212062dcd45bb613054d313de39df82ef d7ee28f6d38e4362951d84017cfd47c4e4ec7debf52c44c686b1e69eb79a428f Loading...

	www.sitesgpt.com/_nuxt/C8-mDos4.js	ImportedModule	4.0 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/C8-mDos4.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash a97e5409bfae750771b48b69f6340cbb 559def909177c2c31e7a33613d37fe44c23e0a55 c9db20528904298591d551fd0522758b9e5eea0bc950e0a497c577af046215e1 Loading...

	www.sitesgpt.com/_nuxt/CtttRcY8.js	ImportedModule	870 B	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/CtttRcY8.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 74abab497d8906d5eaf199e917b3ea28 0c406d4b32d519d6237fb9cd39c7d6ebb333cf80 c2bee3fa1c5e9a9b9984ea17ea2a1727b6dd32d0c6bcfaf0b4876b551b814b94 Loading...

	www.sitesgpt.com/_nuxt/DavdG733.js	ImportedModule	371 B	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/DavdG733.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 9a48f9a0cd6b39be6b93128e9fff50b3 a899a5f01793cd81a668ac7f4b56ff1f5fde2de3 8a66f52ffa82ade88caace04d46c1997baf75d050580465ff4c83afa52d5565e Loading...

	www.sitesgpt.com/_nuxt/DOVyz9J4.js	ScriptElement	5.4 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/DOVyz9J4.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 1619de45e35cb9b8158eed32bab3441b 4e5bf43a9a707d32f531eac1b3a67e9efedb9b1c bd94dc516abb8dc9ef4458c721e0cd1cf7d187d6f6fb213ed41b27322f0de363 Loading...

	www.sitesgpt.com/_nuxt/DE3ZGq8R.js	ImportedModule	409 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/DE3ZGq8R.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash c3c4f12a745cb420d0b6e53ba1766337 236326968747a9afdad55d5023a34b188efa32f2 c4d4581b21e0460e55259c4060c839e3ad6e03c59602148f53db88e2310c1296 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	325 B	2023-03-07	2025-06-25
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05 Last Seen2025-06-25 03:50 Times Seen3714 Hash 06b4b89af63d7f851febec5906cfdd0b 90000db80d4b2f885e15ec5053dbc69317a50703 642e0885f97ed6cbf7136e43421d3dd084d02b07dfc62a1cc80f42d6f69e3ca5 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	416 B	2024-05-01	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 01:33 Last Seen2025-06-24 22:04 Times Seen225 Hash 260b7d0458d89577988e76624ca33a99 e32ad74c673aa18b4cb9abf0dbdd81aa29533ead b9988a3df14fd0d718e0317cd442df1f11b057f243ed4c991a667e754d3e4cc6 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	323 B	2024-05-01	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 01:33 Last Seen2025-06-24 22:04 Times Seen225 Hash a9aa6fab82dbb57f89c0dbc57189715b 52e1fe4304e64e1c364031a08ebd632d457a993c 35b7d6f06a025768a1a453a0f2bb69fb5ed1a30ede2b583c4c9b9b84fb9c2e63 Loading...

	a.quora.com/qevents.js	ScriptElement	42 kB	2024-10-29	2025-06-25
Pretty URL a.quora.com/qevents.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-29 03:42 Last Seen2025-06-25 05:49 Times Seen2362 Hash 213a2084d90a782e0ad733a5aa1e3202 30b7403a051fcf5b513e6da073bc9a92be41d027 a3b9afdd92edf30d72dd52262c76b75781740b1cb885772194a47529eb1052df Loading...

	www.sitesgpt.com/_nuxt/CRVpyP_y.js	ScriptElement	580 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/CRVpyP_y.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 61d7bc7023b94197626b7b4db04ba4fe 9aa8a2abff4320074794027b63b3ebe3fe73b671 32f6cb19143dc62538b4507b6fe9ed8045fcec0020953bb693a79fbb2f0458b6 Loading...

	www.sitesgpt.com/_nuxt/xLpCPpNP.js	ScriptElement	7.1 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/xLpCPpNP.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 83415606d32a0af768358514e6334048 8b97e4eb0c20888cbcef3b682816c8d4bef9e064 d354370f4c5494739226d36e2d703aa4e02438770f4aaf5ed1cbad2f0f510ad1 Loading...

	www.sitesgpt.com/_nuxt/CejtcvUI.js	ScriptElement	7.8 kB	2025-03-11	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/CejtcvUI.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-11 05:38 Last Seen2025-06-24 22:04 Times Seen160 Hash 66ac48256ef6c4645b15746f9316fe9f 2a162c26216a10bce593f177fd34224877662d1d aa5b63ef844c7793622d495931837441167f206b47bfc7c0e77e14e97e9b2181 Loading...

	www.sitesgpt.com/_nuxt/DeIzBQTL.js	ImportedModule	2.5 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/DeIzBQTL.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash bf1fce18570cc928db50cb681c42dc9b 7afe67136e689c2297f7bdebc4fd9a294a6a1c53 ee819f6603c4b7bd2ad81c2168cc676a0b6a189be971e3c3e15ea8322ebdfabf Loading...

	contentdsp.com/events.js	ScriptElement	22 kB	2025-05-19	2025-05-19
Pretty URL contentdsp.com/events.js IP 54.86.146.228 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-19 11:45 Last Seen2025-05-19 11:45 Times Seen1 Hash 6087f4ba7d2dd79fd6cf9e0c5327bb4d 6da33d8ee027acdf6ee4a4a69b0ac8d2425fdc13 b2dbf12d8755e15ece852c95ffeaa9a6bbdc80ac5e6d91e4bf8a5652b3653160 Loading...

	www.sitesgpt.com/_nuxt/CMPv04-F.js	ScriptElement	7.5 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/CMPv04-F.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 46949061497afde79abe799ae0b992e2 46156caf155ba70d570a802a39bfb52d8e0eaeae 766226a1f967304fa06e869773eebab6f5f16f3f3e424235187702daefed6332 Loading...

	www.sitesgpt.com/_nuxt/BXFidBIn.js	ScriptElement	10 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/BXFidBIn.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 7e15f2f6bdcd151a4fd9171b71f9127f ef665a4a0e0bec97e5445fadbf558ccfd7942771 3e5383cc47e2ba56cf019efc2de4bb7cfb3812eebc4d0b5fe26221e52e693523 Loading...

	www.sitesgpt.com/_nuxt/68GCDJDY.js	ScriptElement	1.0 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/68GCDJDY.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 929ba7b731100d1bdb53fb8e708ca084 0eae44f92df33e0224c8caede10d83252016d88b 575cd3488f96afbccc870e4cf80a8e063c91ba9670ad7bc8cdd83f81a4b25a4e Loading...

	www.sitesgpt.com/_nuxt/OnAibvkV.js	ImportedModule	200 kB	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/OnAibvkV.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 7c61d278d1a085977e998bc11e0e98b7 34253946eaef7f3322bd182ae1ec47031626b700 dec661cee530b498f08a2e19c392c8fee8742efb9a09b565b1d7a5cff5c30925 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	389 B	2024-05-01	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 01:33 Last Seen2025-06-24 22:04 Times Seen225 Hash b336f11fb06bc6f58fbbae8c733519f6 d6a7940cd205264ec951943d3ddb67de972e65f3 c13d865b4ace1076d170baea2aec055fd8c724583e69ef7fbe28b2aaac8fa5ff Loading...

	www.clickcease.com/monitor/stat.js	ScriptElement	145 kB	2023-09-12	2025-06-25
Pretty URL www.clickcease.com/monitor/stat.js IP 54.240.174.33 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-12 11:42 Last Seen2025-06-25 03:39 Times Seen3675 Hash e112b8bf96f23bc2970347a3c98e37fc ce2408e32aea3f8323ecee9b7e4338a943667950 889794fd02992011c4b843a05190531656d4c6148e6d4375be6bab3432b580d0 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	585 B	2024-05-01	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 01:33 Last Seen2025-06-24 22:04 Times Seen225 Hash dd93962368cc444e5b6639fd60f5631c fe692fe221250bc9d63d342d2e575e271449cafa 491a48a816a122bf4ac599f13aa82455910402f9ae7e25d73d0c80079c08af02 Loading...

	www.googletagmanager.com/gtag/js?id=AW-1035996077&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116	ScriptElement	342 kB	2025-05-19	2025-05-19
Pretty URL www.googletagmanager.com/gtag/js?id=AW-1035996077&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116 IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-19 11:45 Last Seen2025-05-19 11:45 Times Seen1 Hash a46d3e7592955fbcbb3dd2c2d42a0e07 10210f77e75218cb7b7f27414ca825a4460e7c62 f5c044a71c621b3eeeb9d02fd89ab5979527f93afed2cff7204d8205d897f4c2 Loading...

	www.sitesgpt.com/_nuxt/Dou5JDIP.js	ScriptElement	1.1 kB	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/Dou5JDIP.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash e60dda8a12d012eb6432d39c2dd94412 91e9a231a7b7be30a50782e2539a6a80eff4309d 4c88955e8ffd6097ac6f15d5054fb680c476a54e26ff4b890c55a8e9666577e4 Loading...

	www.sitesgpt.com/_nuxt/B2g_S0lp.js	ScriptElement	1.3 kB	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/B2g_S0lp.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 01eb847f237ce535a37f1e3de876f5c2 798691148641d535faf514e125b6be6d678a551c aa43fbdfd852c40080d38cf1fd61b8bee9915bb1a8ffd1a3f16f20ff0ab2e2de Loading...

	www.sitesgpt.com/_nuxt/CqCfbMda.js	ScriptElement	1.3 kB	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/CqCfbMda.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 7cb092d1f8d50912e1be8b23fb5cba83 5a7864618ebbb9f67e640b0f3c1bb949e8d63b65 76d8f3b8c5e38600abb77934685104a373d64b154a4f540ed268f297afde685a Loading...

	www.sitesgpt.com/_nuxt/ozdIdy08.js	ImportedModule	2.0 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/ozdIdy08.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 5e802b7b45d5b9e8cc0f0af9ae105fa8 60ab6de929b88aeacfe2ae7c3fd083f3d7f32f5a 6102ce9c2570822a4378108856a36354796b952c8abd6ea7d42a1bd9aef208e5 Loading...

	www.sitesgpt.com/_nuxt/DDF8mOQE.js	ImportedModule	1.7 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/DDF8mOQE.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 48c6fb09e0795aa3456a75b87ba184df 14be1491fe8083a02c3f4d55dac446e307fd2a68 d14b90b154dd0561ffd25ca0fc62c2344d9f651f4b2316eedc9a88fa6158a4b3 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	1.1 kB	2024-12-13	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-13 07:48 Last Seen2025-06-24 22:04 Times Seen257 Hash 1a874d730fad58bc0d82361986908d0a fdfbcfb2885fe6acbbe1a0b8753a02c14a3817e2 1a2fe7602202c83e0b446163f4cb0d56f71ae933417458740f8fdf773d9eb912 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5MCGD8P	ScriptElement	394 kB	2025-05-19	2025-05-19
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5MCGD8P IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-19 11:45 Last Seen2025-05-19 11:45 Times Seen1 Hash ae9ebdb9e6a81e996d7c4ffc1afc34f9 4c3f6ee760ad00fcd4edc5e1aee27a5474622e2a 4c5c7d3f6f05bd37b7369d91f6e56462e50cd28fc3ba8c533d6de4b44e2c29a6 Loading...

	www.sitesgpt.com/_nuxt/ChFW4WNb.js	ImportedModule	84 B	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/ChFW4WNb.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash a51a4683c17ca7f7a15a40de337883f6 d6d9f07e1a7a6fd120f918b9ee6f4e82899521ee 350951a82c90b55592b2afafcd6a89b1e9c5540387a44fb97d42e3ba4f84405c Loading...

	www.sitesgpt.com/_nuxt/LPlMyxak.js	ImportedModule	493 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/LPlMyxak.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 21f8381c58fe21ccf07eb2519833c620 b88ebc7c140581641ffca9f8ee97a64df64b0051 826e0534837b4667fc4b1a4976ff1304c8a38e9fdc6250c2fb8711a66a7a40c9 Loading...

	www.sitesgpt.com/_nuxt/VTFInkyB.js	ImportedModule	476 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/VTFInkyB.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash f1f2251ebfc9819f1b925f3612c91a5d 5f993483f0d223bd68bc886ceb8b3f8d422077e5 b5571d9b176113813e1df1f1f55117026f37254f135b324b2b683fa2c4fdf1e8 Loading...

	www.sitesgpt.com/_nuxt/CUCXNgFG.js	ImportedModule	596 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/CUCXNgFG.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash db549538fe1a8a6a8773e4d3754229f1 c680213ac8f9499eca2e40f02613784fd83170fd ed5865d49b9242046ca6c999cc85820b34c7244d8f1a4f5577677c8ed2f5bf14 Loading...

	www.sitesgpt.com/_nuxt/DYxG3wnY.js	ImportedModule	3.0 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/DYxG3wnY.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 1cec366abad12c8d6cfc1d9501e3bc1f f42a12e90319fb2f23ab1aa1200823261e34c553 834376a5417593640ba0e1175b7c8899a3fc61739060452d376a095e3be640d7 Loading...

	www.sitesgpt.com/_nuxt/Bb6y1F1E.js	ScriptElement	692 B	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/Bb6y1F1E.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 6b68ac051d8259ac0a32497fc0633f07 a1d88626e97eea733f7a0da95bda7ffd06248d36 a88179e72a1bb0e2f94a2d64b4b7c16fc035cd561d9ed6ef4ef5ccf63995f74f Loading...

	sc-static.net/scevent.min.js	ScriptElement	58 kB	2025-05-17	2025-05-19
Pretty URL sc-static.net/scevent.min.js IP 3.163.248.4 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-17 04:35 Last Seen2025-05-19 15:29 Times Seen27 Hash 588b4489b4fda57f0afbef230522cbac 6897c628043d50da6c08a3a914f04c70bb2d46f3 805b6d0ce594698fddb1188bd8bf37cf6c9a08b679025b59128f3e7cd179b500 Loading...

	s.pinimg.com/ct/lib/main.8821a9da.js	ScriptElement	83 kB	2025-01-31	2025-06-13
Pretty URL s.pinimg.com/ct/lib/main.8821a9da.js IP 151.101.0.84 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-31 00:20 Last Seen2025-06-13 14:23 Times Seen3002 Hash 401e1da4d1e7fcba2336f07e5981a21b 9f68e5cf2dcc8d27c7bfea0fc7bbb9e27c4f6f93 8fdbfa23058836e9a847e16898c904faa58a54b48830af1df5a344bb69b591e6 Loading...

	www.sitesgpt.com/_nuxt/BHvetyLQ.js	ScriptElement	2.8 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/BHvetyLQ.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 14a2553f3fa0b8cac50eebae0e529f42 6924b0d43f149471e2a72810110f1b8df8544b25 c00832b30d987765037403269796c40171655cd778c6393caa9fcdef02570058 Loading...

	js.partnerstack.com/v1/	ScriptElement	9.0 kB	2024-07-07	2025-06-25
Pretty URL js.partnerstack.com/v1/ IP 104.18.6.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-07 13:57 Last Seen2025-06-25 06:15 Times Seen936 Hash 5eda21c9b6b3b06345764a7ec4875339 20491064df229acf4aa6f19ba1cdaa1ba1592cff 25e981af19a91c1003cc882c1d86232cd65017739ffa8573990dd0ce2022e3e7 Loading...

	www.sitesgpt.com/_nuxt/BD40HhGi.js	ImportedModule	2.9 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/BD40HhGi.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash a2abe89c4b12ac9f9107cc27ec9856b7 a8c897872ae147d1514bf9fe75ad8021284600c2 93e6c23c987b5bc882578cb3d5865bb81a75f83c6f84c2847d4babc426a352fb Loading...

	www.sitesgpt.com/_nuxt/DUBOytt4.js	ImportedModule	4.3 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/DUBOytt4.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash b0c4cafd3e740686a3c351021902f69d 6c1eaafaeec0f4baff3a33a2764020730421cf97 3fa49007489a7728e7f0d2c4207c36ef8126af0893886d5a308262e08b502bfb Loading...

	www.sitesgpt.com/_nuxt/CLa8qfpp.js	ImportedModule	1.7 kB	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/CLa8qfpp.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 3c976e8e6cf9368ebcbddb65143d6e79 467723161869cd1e5b8b0d5bcef33bc0175572b9 46d242e11d328db14a16e6a9d6e950a307bc368c8c806d7e7b0fc0dac86552a2 Loading...

	www.sitesgpt.com/_nuxt/qaRNFkzp.js	ImportedModule	4.9 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/qaRNFkzp.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 70662fac08ff80e39e8cf583c544411f 72eb59255df04ba6ea8485033d9e80458abb71a2 71b35604ea2b3add4256b1f9eaf9fcb92f192e2b766366390fb2f97c1cbfc67f Loading...

	www.sitesgpt.com/_nuxt/Df4inRZn.js	ScriptElement	8.8 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/Df4inRZn.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 771c2fec2931217b8070bef0467ab044 46626316b1aaccc70b7b262f4805e6aa14de6ab9 93afca58d001ba56a26a1fd455065ddd39db81760384989fbe725c8c8dcce278 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	559 B	2025-02-07	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-07 09:42 Last Seen2025-06-24 22:04 Times Seen220 Hash e9ef40c7a83231cb9eba3cd64be98b0d 5529c7e475b356e6871110308e4ba06c64acf95e 10d66ff919a56a5a75bef32ab1eef8cdf1763bb58d46749c9f2928abc499bd0a Loading...

	www.sitesgpt.com/_nuxt/BEKtBocn.js	ScriptElement	1.4 MB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/BEKtBocn.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash abea6f9db223a9834fa511112b8a5ead 0e7eda8f2990c8637902e45fa5b2487ab5b2b4af 7bb9c695b6dc9b9ece264c185248f172a22a5f313827567fdfd50365a7246fc0 Loading...

	www.sitesgpt.com/_nuxt/j_9hAtmz.js	ImportedModule	2.8 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/j_9hAtmz.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 54a1a0b6091f755fa47fdd2bfa5d5245 6a350f179fdc244b77358f8f29000b529dfedbf4 186a0faaa98b2a150d1502cd7b973fc2cfbe7403d80f013846feed552698c9e7 Loading...

	www.sitesgpt.com/_nuxt/DCU53ubg.js	ImportedModule	759 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/DCU53ubg.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 1ee86190b3d6b2bd7d2aff0520da5692 2fbfaa1b890a429a1202ba7756d5f83fe0967d57 e62a16645bed5831620275a24ed92bba9e2351ea0e7ffcb97faa130d24a080be Loading...

	www.sitesgpt.com/_nuxt/DUt1gEF9.js	ImportedModule	737 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/DUt1gEF9.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 6f3ece531c5a9a3c8c807c9ad8d890d9 3f1cfb042c8461b31ffb36c84751a3fa79a0f328 d014379d5e0888bfda61b83d58dbba2014018d60c8d1d73f69e264006f3e13aa Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	231 B	2024-05-01	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-01 01:33 Last Seen2025-06-24 22:04 Times Seen225 Hash 3d2c6c3ac8213e0e90db5e1f1082ad8e c68c9f16d07d9bb8921ad97299eed5c6922c1887 f85320502f6aa22cc3b51e24f6269296ca3a7b74390d6bb8844efc8c9bc4a11f Loading...

	www.sitesgpt.com/_nuxt/D7VAZrCq.js	ImportedModule	633 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/D7VAZrCq.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 05bc5ac1b3c18836c8f3d2fecb866252 f1699be104c7eba951bae72daddc17ed0960d893 b39d4b23c7811084d873d45f5b83763b4702223c5febaab122520ded46b33036 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	435 B	2024-05-01	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 01:33 Last Seen2025-06-24 22:04 Times Seen225 Hash 4232e5bdf341bf18e1283c8b08f12be4 d367f2b510ece21f16afa580e40aa351503c4732 652d32474c0fb1467246b0eb2ff4cf5d9ea707587f2bdce824e4a7208e40074e Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	164 B	2024-05-01	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 01:33 Last Seen2025-06-24 22:04 Times Seen225 Hash 85b03a7e2ef8c3fd915063972f2a420f 19163d6d67939dc203b9e6166ebe11229c860b48 fbdc3da84b8de585953c63275646b7ab3fd2bf67d09c3f0dee064c8943bd4afa Loading...

	www.googletagmanager.com/gtag/js?id=G-V3Z900D5SE&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116	ScriptElement	462 kB	2025-05-19	2025-05-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-V3Z900D5SE&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116 IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-19 11:45 Last Seen2025-05-19 11:45 Times Seen1 Hash 7ae1aded05f8b4554663e11e0dc72a36 e3fead25847a41066bea51d7f96f79b40f5d482c d0f66590d7aea29a5a4f728c9c37b71e82114a65afc9f407fe2c5a2d08d1cf83 Loading...

	www.sitesgpt.com/_nuxt/B1i-OfP0.js	ScriptElement	958 B	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/B1i-OfP0.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 6531f2da6c62f6741b6caaba5bb2c389 a4df0cb471ba0c7809be6043c41135cb63759377 a91891a04b60828535d996bdaf3c08e8dc729d2264a636914d12c5143d3ee49d Loading...

	bat.bing.com/bat.js	ScriptElement	53 kB	2025-05-08	2025-06-25
Pretty URL bat.bing.com/bat.js IP 150.171.28.10 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-08 20:13 Last Seen2025-06-25 06:26 Times Seen7634 Hash 8aa3621e078f553b342b105272dd45fc 7d0086d79b7ba961871becf1f55233d2cf9750cb c4e400da2b9e9a111a08457d1de07c9280c7233e4a305b967da320564a83eb0f Loading...

	www.sitesgpt.com/_nuxt/C9eHKq99.js	ImportedModule	1.1 kB	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/C9eHKq99.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by importedModule Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 0668cb79a56e9ee45174eadca3341464 2dd8a09e101bac4fa075107c8c2ae8aa5a75aa69 932abfe4356cbec0de5e845efa99ade5642f5ad0733e9d48a912a2f3ff265388 Loading...

	ct.pinterest.com/ct.html	ScriptElement	436 B	2025-03-02	2025-06-25
Pretty URL ct.pinterest.com/ct.html IP 151.101.0.84 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-02 12:41 Last Seen2025-06-25 06:26 Times Seen3373 Hash 59e69030b3eddd557aebcfedf0474a63 66d4f09f9ad02a4c0e28b9c1ecb2a699848dfeb7 6b3ab6e7095925d374e483784bd4beb874b39078c4263063b97d544ffc5457b3 Loading...

	www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG	ScriptElement	499 B	2024-12-12	2025-06-24
Pretty URL www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-12 08:26 Last Seen2025-06-24 22:04 Times Seen212 Hash a5761f758ebd60f76b7e05a5840317da 5e041dbfaa15551113cec5ac8106b7b266b81dca 310ac68e3d1ed899015633e2d5cfb25fb6a7f8611d247cffc174d59b0aca492f Loading...

	www.sitesgpt.com/_nuxt/fwH7ysCB.js	ScriptElement	938 B	2025-05-01	2025-06-24
Pretty URL www.sitesgpt.com/_nuxt/fwH7ysCB.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-06-24 22:04 Times Seen139 Hash 7e9f05c0fbb401c7400e10790843b9f8 7b7a3136f8402d0a863e9b039cabf67fca640fd5 83514cb37c9060d3c6a840de31007a3d73a532dcf054ae3b3364ac7d5dc8e0f8 Loading...

	www.sitesgpt.com/_nuxt/CfART4xX.js	ScriptElement	509 B	2025-05-01	2025-05-22
Pretty URL www.sitesgpt.com/_nuxt/CfART4xX.js IP 76.76.21.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-01 14:45 Last Seen2025-05-22 17:55 Times Seen17 Hash 8414c54aa4be74974a541120f714a7f4 c4d27a62787627ea0c9e2e007d8dd64de6917c9f 9a03157f273a27cf88d9b94646cfa1b4ede86ddb929af480e07a033f1d60f11c Loading...

HTTP Transactions (128)

URL IP Response Size

GET www.sitesgpt.com/_nuxt/hero-banner.Dn8qn9Gp.css

76.76.21.241

200 OK

1.6 kB

URL GET
www.sitesgpt.com/_nuxt/hero-banner.Dn8qn9Gp.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1588)
Size
1.6 kB (1589 bytes)
Hash
3b41d32b6ed74b78e23b808dd0b2c384
b661d0b2cb70fa362bb920f2d33dca2d4c49bfef
f02d16cdb1d4cd3b7ab308483b2535ca2f213aea97d2357a57cdef566a6da79d

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/hero-banner.Dn8qn9Gp.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2011
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="hero-banner.Dn8qn9Gp.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"3b41d32b6ed74b78e23b808dd0b2c384"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::2mf4j-1747655076861-842366ae079d
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DE3ZGq8R.js

76.76.21.241

200 OK

409 B

URL GET
www.sitesgpt.com/_nuxt/DE3ZGq8R.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (408)
Size
409 B (409 bytes)
Hash
c3c4f12a745cb420d0b6e53ba1766337
236326968747a9afdad55d5023a34b188efa32f2
c4d4581b21e0460e55259c4060c839e3ad6e03c59602148f53db88e2310c1296

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DE3ZGq8R.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1184758
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DE3ZGq8R.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "c3c4f12a745cb420d0b6e53ba1766337"
last-modified: Mon, 05 May 2025 18:38:38 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::gdkjm-1747655077939-2dfe140a6697
content-length: 409
X-Firefox-Spdy: h2

GET q.quora.com/_/ad/c60701aa8d884a0ea3fb4f76e52bffc6/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG

162.159.152.17

200 OK

43 B

URL GET
q.quora.com/_/ad/c60701aa8d884a0ea3fb4f76e52bffc6/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG
IP
162.159.152.17:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subjectquora.com
FingerprintD7:61:69:34:FA:4B:2F:1E:18:39:75:EB:93:89:38:77:A1:E7:EC:EE
ValidityThu, 08 May 2025 16:11:50 GMT - Wed, 06 Aug 2025 16:11:49 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /_/ad/c60701aa8d884a0ea3fb4f76e52bffc6/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 19 May 2025 11:44:38 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-q-stat: ,82c7c98193087636d72e05db7574d12a,10.0.0.76,51512,91.90.42.154,,55269826357,1,1747655078.315,0.001,,.,0,0,0.000,0.000,-,0,0,203,283,141,10,34729,,,,,,-,
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 942357eefb86569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET bat.bing.com/bat.js

150.171.28.10

200 OK

53 kB

URL GET
bat.bing.com/bat.js
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint8F:FE:D3:58:48:93:DF:0E:26:DA:5E:55:30:00:F2:14:BF:4B:AB:8E
ValidityFri, 14 Mar 2025 18:35:35 GMT - Wed, 10 Sep 2025 18:35:35 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (52941), with no line terminators
Size
53 kB (52942 bytes)
Hash
8aa3621e078f553b342b105272dd45fc
7d0086d79b7ba961871becf1f55233d2cf9750cb
c4e400da2b9e9a111a08457d1de07c9280c7233e4a305b967da320564a83eb0f

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 14978
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 08 May 2025 19:07:55 GMT
accept-ranges: bytes
etag: "8077e3804cc0db1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FE2351EB31F34F6DAEE01891CF590136 Ref B: OSL30EDGE0505 Ref C: 2025-05-19T11:44:38Z
date: Mon, 19 May 2025 11:44:38 GMT
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/pricing.8kgCgzTq.css

76.76.21.241

200 OK

1.5 kB

URL GET
www.sitesgpt.com/_nuxt/pricing.8kgCgzTq.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1547)
Size
1.5 kB (1548 bytes)
Hash
29fdb969594160a78066e60b94c0b852
318c0922637506fe063a4c6cb0f86e82e7091daa
cf5d4064e2085fc19cffea04b9697a81e840f6b729b9dc3edbc22faab84e8eef

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/pricing.8kgCgzTq.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1167846
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="pricing.8kgCgzTq.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"29fdb969594160a78066e60b94c0b852"
last-modified: Mon, 05 May 2025 23:20:32 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::647ms-1747655079289-a6a87d169508
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-1MG910DR2C

142.250.74.136

200 OK

459 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-1MG910DR2C
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint02:7D:56:C0:B9:20:0C:27:A4:AC:B9:8F:9D:45:1D:85:2A:30:50:AD
ValidityMon, 21 Apr 2025 08:40:41 GMT - Mon, 14 Jul 2025 08:40:40 GMT

File type
JavaScript source, ASCII text, with very long lines (8069)
Size
459 kB (459063 bytes)
Hash
bc9b857fd1f905fe25252ace02ec397b
47969b774ec568306364ee2806bfdefcde9a811e
39083c6d2154db7795811c0cdf080d4701333c3d2381e67dbf59c25346b9afa1

HTTP Headers

GET /gtag/js?id=G-1MG910DR2C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 May 2025 11:44:37 GMT
expires: Mon, 19 May 2025 11:44:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1075:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1075:0
report-to: {"group":"ascgcycc:1075:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1075:0"}],}
server: Google Tag Manager
content-length: 148500
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET s.pinimg.com/ct/lib/main.8821a9da.js

151.101.0.84

200 OK

83 kB

URL GET
s.pinimg.com/ct/lib/main.8821a9da.js
IP
151.101.0.84:443
ASN
#54113 FASTLY

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerDigiCert Inc
Subject*.pinterest.com
Fingerprint6E:48:6C:AA:E4:13:AF:8E:56:5F:98:5A:DE:07:8C:24:0D:90:5A:EA
ValidityMon, 05 Aug 2024 00:00:00 GMT - Thu, 07 Aug 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
83 kB (82993 bytes)
Hash
401e1da4d1e7fcba2336f07e5981a21b
9f68e5cf2dcc8d27c7bfea0fc7bbb9e27c4f6f93
8fdbfa23058836e9a847e16898c904faa58a54b48830af1df5a344bb69b591e6

HTTP Headers

GET /ct/lib/main.8821a9da.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-length: 23524
etag: "f12de704edb28749091f976a1d1a46b2"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: application/javascript
x-cdn: fastly
alt-svc: h3=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=1209600
date: Mon, 19 May 2025 11:44:39 GMT

GET www.sitesgpt.com/_nuxt/DweOskmn.js

76.76.21.241

200 OK

584 B

URL GET
www.sitesgpt.com/_nuxt/DweOskmn.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (583)
Size
584 B (584 bytes)
Hash
2e9a1bc698d17a87e04c4f5963a2d3fb
f00bde1833455b5e0e333d61a75eee566cc04335
18e932663bad31a345f273ea316aa5cd0772ec99378f37d14bd350067e2e5c5e

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DweOskmn.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DweOskmn.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "2e9a1bc698d17a87e04c4f5963a2d3fb"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::ffpxv-1747655077946-04f8421b31de
content-length: 584
X-Firefox-Spdy: h2

GET sc-static.net/scevent.min.js

3.163.248.4

200 OK

58 kB

URL GET
sc-static.net/scevent.min.js
IP
3.163.248.4:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerAmazon
Subjectsc-static.net
FingerprintF1:7E:BE:DE:70:59:C9:25:F5:A9:A0:FF:A5:D1:80:5A:79:B4:3E:74
ValidityWed, 20 Nov 2024 00:00:00 GMT - Sat, 20 Dec 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (57430)
Size
58 kB (57457 bytes)
Hash
588b4489b4fda57f0afbef230522cbac
6897c628043d50da6c08a3a914f04c70bb2d46f3
805b6d0ce594698fddb1188bd8bf37cf6c9a08b679025b59128f3e7cd179b500

HTTP Headers

GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 24300
server: CloudFront
date: Mon, 19 May 2025 11:44:38 GMT
access-control-allow-headers: Content-Type
access-control-allow-origin: *
content-encoding: gzip
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=d9e71b3487014531a38a9ef87fbdef46;max-age=86400;expires=Tue, 20 May 2025 11:44:38 GMT;Path=/scevent.min.js;Secure;SameSite=None
x-cache: Miss from cloudfront
via: 1.1 094188bf05865a3d323dcbfb7173f1f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: BnDJdio-KxKRjorBEKizUMsim9Lx49uw1KJ37UczN0q1iQUcjjGtkw==
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/upsell-grid.IDNBL04O.css

76.76.21.241

200 OK

2.7 kB

URL GET
www.sitesgpt.com/_nuxt/upsell-grid.IDNBL04O.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (2728)
Size
2.7 kB (2729 bytes)
Hash
a2e822d777bf6eacff8af9b038372dbe
901ce48312c0eea88356fd3a9e971861f3ca5d33
cdb3888a46dd5dd90883d786359d8d425cec4c75d51e062a40579a1060c3ee96

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/upsell-grid.IDNBL04O.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1144583
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="upsell-grid.IDNBL04O.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"a2e822d777bf6eacff8af9b038372dbe"
last-modified: Tue, 06 May 2025 05:48:13 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::rz97f-1747655076867-42b7009f9625
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/cloud-strength.png

96.6.16.40

200 OK

12 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/cloud-strength.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 152 x 138, 8-bit/color RGBA, non-interlaced
Size
12 kB (11813 bytes)
Hash
0847e9ad1b75cc7ac22054fda78d23c0
2531931df74ed74d8ba98efbc3ce6b75a18f1ef3
cbae591c57fa0b65349949b6e8e743cadd634517649c086a7a669d32ef541b0b

HTTP Headers

GET /dq0gbgsdy/image/upload/site/cloud-strength.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 11813
etag: "0847e9ad1b75cc7ac22054fda78d23c0"
last-modified: Tue, 30 Jan 2024 19:34:10 GMT
date: Mon, 19 May 2025 11:44:36 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=12;start=2025-05-19T11:44:36.971Z;desc=hit,rtt;dur=6,content-info;desc="width=152,height=138,bytes=11813,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/tech_squares.svg

96.6.16.40

200 OK

30 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/tech_squares.svg
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
SVG Scalable Vector Graphics image
Size
30 kB (30343 bytes)
Hash
28b17ec37da224f13d882e696abf2918
f2bd2607fe17b14e326fb8be546191e33e7d2271
a88b48be776c5373775551d909a63abb2a5c0e10376e4c665936689cfd170827

HTTP Headers

GET /dq0gbgsdy/image/upload/site/tech_squares.svg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 2763
content-disposition: attachment; filename="tech_squares_lli11a.svg"
content-encoding: br
etag: W/"28b17ec37da224f13d882e696abf2918"
last-modified: Tue, 30 Jan 2024 19:28:48 GMT
date: Mon, 19 May 2025 11:44:37 GMT
cache-control: private, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cld-akam;dur=9;start=2025-05-19T11:44:37.607Z;desc=hit,rtt;dur=0,content-info;desc="width=1123,height=765,bytes=30343,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/value-propositions.C96ctOxB.css

76.76.21.241

200 OK

1.5 kB

URL GET
www.sitesgpt.com/_nuxt/value-propositions.C96ctOxB.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1505)
Size
1.5 kB (1506 bytes)
Hash
a1bc6532e6a7fe1f5eac269da819e6d4
c053538e58e5954af4822b0246663669fc1ca853
db73d50be7f5e23ea4cbb5cc829a1a2609cd03d63d5809002ad45ba297dae93c

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/value-propositions.C96ctOxB.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2709968
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="value-propositions.C96ctOxB.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"a1bc6532e6a7fe1f5eac269da819e6d4"
last-modified: Fri, 18 Apr 2025 02:58:28 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::qdcwr-1747655076863-af52214b8833
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/free-to-try.png

96.6.16.40

200 OK

13 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/free-to-try.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 152 x 138, 8-bit/color RGBA, non-interlaced
Size
13 kB (12727 bytes)
Hash
327570efff578467bc8cfeaff43780b2
d817564efd1b6c67cc470eb67c40c2b2eda2b0ba
fa4d2ec02ba7d53a1ad6013d1e332d721fc89de48d59d2904f5dcd46ecc84e34

HTTP Headers

GET /dq0gbgsdy/image/upload/site/free-to-try.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 12727
etag: "327570efff578467bc8cfeaff43780b2"
last-modified: Tue, 30 Jan 2024 19:31:52 GMT
date: Mon, 19 May 2025 11:44:36 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=10;start=2025-05-19T11:44:36.964Z;desc=hit,rtt;dur=6,content-info;desc="width=152,height=138,bytes=12727,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/qaRNFkzp.js

76.76.21.241

200 OK

4.9 kB

URL GET
www.sitesgpt.com/_nuxt/qaRNFkzp.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, Unicode text, UTF-8 text, with very long lines (4887)
Size
4.9 kB (4889 bytes)
Hash
70662fac08ff80e39e8cf583c544411f
72eb59255df04ba6ea8485033d9e80458abb71a2
71b35604ea2b3add4256b1f9eaf9fcb92f192e2b766366390fb2f97c1cbfc67f

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/qaRNFkzp.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1184758
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="qaRNFkzp.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"70662fac08ff80e39e8cf583c544411f"
last-modified: Mon, 05 May 2025 18:38:38 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::ffpxv-1747655077935-61255297de3d
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DUBOytt4.js

76.76.21.241

200 OK

4.3 kB

URL GET
www.sitesgpt.com/_nuxt/DUBOytt4.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
JavaScript source, ASCII text, with very long lines (4339)
Size
4.3 kB (4340 bytes)
Hash
b0c4cafd3e740686a3c351021902f69d
6c1eaafaeec0f4baff3a33a2764020730421cf97
3fa49007489a7728e7f0d2c4207c36ef8126af0893886d5a308262e08b502bfb

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DUBOytt4.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2062711
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DUBOytt4.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"b0c4cafd3e740686a3c351021902f69d"
last-modified: Fri, 25 Apr 2025 14:46:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::2vs2p-1747655077937-7c0665e5a262
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-V3Z900D5SE&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116

142.250.74.136

200 OK

462 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-V3Z900D5SE&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint02:7D:56:C0:B9:20:0C:27:A4:AC:B9:8F:9D:45:1D:85:2A:30:50:AD
ValidityMon, 21 Apr 2025 08:40:41 GMT - Mon, 14 Jul 2025 08:40:40 GMT

File type
JavaScript source, ASCII text, with very long lines (7743)
Size
462 kB (461966 bytes)
Hash
7ae1aded05f8b4554663e11e0dc72a36
e3fead25847a41066bea51d7f96f79b40f5d482c
d0f66590d7aea29a5a4f728c9c37b71e82114a65afc9f407fe2c5a2d08d1cf83

HTTP Headers

GET /gtag/js?id=G-V3Z900D5SE&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 May 2025 11:44:38 GMT
expires: Mon, 19 May 2025 11:44:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1075:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1075:0
report-to: {"group":"ascgcycc:1075:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1075:0"}],}
server: Google Tag Manager
content-length: 149461
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.redditstatic.com/ads/conversions-config/v1/pixel/config/t2_ed3fb7869_telemetry

151.101.65.140

200 OK

86 B

URL GET
www.redditstatic.com/ads/conversions-config/v1/pixel/config/t2_ed3fb7869_telemetry
IP
151.101.65.140:443
ASN
#54113 FASTLY

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerDigiCert Inc
Subjectwww.redditstatic.com
FingerprintC1:DF:6F:A9:0B:8A:2E:A9:B8:14:56:36:4A:AB:DC:C9:B7:27:C9:98
ValidityMon, 24 Feb 2025 00:00:00 GMT - Fri, 22 Aug 2025 23:59:59 GMT

File type
JSON text data
Size
86 B (86 bytes)
Hash
ea03273602ac31c0858fa2d9a1895526
4f8afe25482a22c6858af1f58e55d83f9df9b854
98d77039ea9249b3dce91ad7b467ee382f29daa61213c3e2737bd4a8786c8801

HTTP Headers

GET /ads/conversions-config/v1/pixel/config/t2_ed3fb7869_telemetry HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=300
content-type: application/json
content-encoding: gzip
accept-ranges: bytes
date: Mon, 19 May 2025 11:44:38 GMT
via: 1.1 varnish
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true,  "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}, {"group": "w3-reporting-csp", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-csp.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 98
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CtttRcY8.js

76.76.21.241

200 OK

870 B

URL GET
www.sitesgpt.com/_nuxt/CtttRcY8.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (869)
Size
870 B (870 bytes)
Hash
74abab497d8906d5eaf199e917b3ea28
0c406d4b32d519d6237fb9cd39c7d6ebb333cf80
c2bee3fa1c5e9a9b9984ea17ea2a1727b6dd32d0c6bcfaf0b4876b551b814b94

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CtttRcY8.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/68GCDJDY.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2062711
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CtttRcY8.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "74abab497d8906d5eaf199e917b3ea28"
last-modified: Fri, 25 Apr 2025 14:46:07 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::kjf8c-1747655079692-4281196c0bcb
content-length: 870
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/tech_face.png

96.6.16.40

200 OK

380 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/tech_face.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 470 x 613, 8-bit/color RGB, non-interlaced
Size
380 kB (379482 bytes)
Hash
90364016e07752bc39c3bdb3e5d52f63
421e296e9f706c2a672b869a79d4295cbea9cf55
8b26d082bc40d8c06c8f90c980207aa0e41b1a118650b3979616e71adde45bb3

HTTP Headers

GET /dq0gbgsdy/image/upload/site/tech_face.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 379482
etag: "90364016e07752bc39c3bdb3e5d52f63"
last-modified: Tue, 30 Jan 2024 19:29:07 GMT
date: Mon, 19 May 2025 11:44:36 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=10;start=2025-05-19T11:44:36.966Z;desc=hit,rtt;dur=6,content-info;desc="width=470,height=613,bytes=379482,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

142.250.74.35

200 OK

7.8 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint15:8B:D4:EA:7E:CB:34:1B:6F:2E:20:9E:39:44:7A:D6:D7:30:26:AB
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v23/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 May 2025 20:43:34 GMT
expires: Fri, 15 May 2026 20:43:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 23 Apr 2025 16:08:43 GMT
content-type: font/woff2
age: 313263
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET s.pinimg.com/ct/core.js

151.101.0.84

200 OK

4.7 kB

URL GET
s.pinimg.com/ct/core.js
IP
151.101.0.84:443
ASN
#54113 FASTLY

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerDigiCert Inc
Subject*.pinterest.com
Fingerprint6E:48:6C:AA:E4:13:AF:8E:56:5F:98:5A:DE:07:8C:24:0D:90:5A:EA
ValidityMon, 05 Aug 2024 00:00:00 GMT - Thu, 07 Aug 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (4730), with no line terminators
Size
4.7 kB (4730 bytes)
Hash
0c7e7a463edc91437c917f70f0a2390e
afc6365f94059242b878b957183fe761aea36d5c
4dcc63f7d8103225fdef27e536a7ef191efca98ee1c806bc1795ad1d483e235e

HTTP Headers

GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
etag: "7992d478669b2e5a1e243ad79c6868fa"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: application/javascript
x-cdn: fastly
alt-svc: h3=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=7200
date: Mon, 19 May 2025 11:44:38 GMT
content-length: 1862
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/ozdIdy08.js

76.76.21.241

200 OK

2.0 kB

URL GET
www.sitesgpt.com/_nuxt/ozdIdy08.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (2021)
Size
2.0 kB (2022 bytes)
Hash
5e802b7b45d5b9e8cc0f0af9ae105fa8
60ab6de929b88aeacfe2ae7c3fd083f3d7f32f5a
6102ce9c2570822a4378108856a36354796b952c8abd6ea7d42a1bd9aef208e5

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/ozdIdy08.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2062711
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="ozdIdy08.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"5e802b7b45d5b9e8cc0f0af9ae105fa8"
last-modified: Fri, 25 Apr 2025 14:46:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::2vs2p-1747655077934-d421e585abd3
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DeIzBQTL.js

76.76.21.241

200 OK

2.5 kB

URL GET
www.sitesgpt.com/_nuxt/DeIzBQTL.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (2522)
Size
2.5 kB (2523 bytes)
Hash
bf1fce18570cc928db50cb681c42dc9b
7afe67136e689c2297f7bdebc4fd9a294a6a1c53
ee819f6603c4b7bd2ad81c2168cc676a0b6a189be971e3c3e15ea8322ebdfabf

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DeIzBQTL.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/B1i-OfP0.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2013
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DeIzBQTL.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: W/"bf1fce18570cc928db50cb681c42dc9b"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::c8mx7-1747655078580-6798b8f40895
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/flexible-use.png

96.6.16.40

200 OK

10 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/flexible-use.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 152 x 138, 8-bit/color RGBA, non-interlaced
Size
10 kB (10251 bytes)
Hash
2821e72f74fbe78fed3cf3fe0456903b
f12e07d1d52179581e2ebbcabca7ccd78064e861
36cee17198509217ad73afef82fe8311ef0b009d33d2fa509c44e5c579e19a95

HTTP Headers

GET /dq0gbgsdy/image/upload/site/flexible-use.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 10251
etag: "2821e72f74fbe78fed3cf3fe0456903b"
last-modified: Tue, 30 Jan 2024 19:32:20 GMT
date: Mon, 19 May 2025 11:44:37 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=92;start=2025-05-19T11:44:37.025Z;desc=hit,rtt;dur=3,content-info;desc="width=152,height=138,bytes=10251,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/0KsdZ0HR.js

76.76.21.241

200 OK

2.4 kB

URL GET
www.sitesgpt.com/_nuxt/0KsdZ0HR.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (2357)
Size
2.4 kB (2358 bytes)
Hash
bd20ceb5a47b97cebd69dd8165f2a0cb
188bb97d99c7ad9d816e08bde13554daa7995176
6b623cbcfb89f883f57b73b8892de86f6bbad158ebd4161e8e9dcd7c59cc50d9

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/0KsdZ0HR.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="0KsdZ0HR.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"bd20ceb5a47b97cebd69dd8165f2a0cb"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::ffpxv-1747655077931-6a8a5e5a2964
X-Firefox-Spdy: h2

GET ct.pinterest.com/user/?tid=2613920181022&pd=%7B%22em%22%3A%2224aba99b2defbb47ee981b4200313f61f3ae31541d8717bdac1e463c838939b0%22%7D&cb=1747655079178&dep=2%2CPAGE_LOAD

151.101.0.84

200 OK

320 B

URL GET
ct.pinterest.com/user/?tid=2613920181022&pd=%7B%22em%22%3A%2224aba99b2defbb47ee981b4200313f61f3ae31541d8717bdac1e463c838939b0%22%7D&cb=1747655079178&dep=2%2CPAGE_LOAD
IP
151.101.0.84:443
ASN
#54113 FASTLY

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerDigiCert Inc
Subject*.pinterest.com
Fingerprint6E:48:6C:AA:E4:13:AF:8E:56:5F:98:5A:DE:07:8C:24:0D:90:5A:EA
ValidityMon, 05 Aug 2024 00:00:00 GMT - Thu, 07 Aug 2025 23:59:59 GMT

File type
JSON text data
Size
320 B (320 bytes)
Hash
021d5844baf52f03b4fdb536392131b6
1cd376b168a33bfad34f37a25cfc92da4e1841f9
95e69570e8e390f7ff1264bdb4ee08053210e6dac2cf85fee8c418e073a48403

HTTP Headers

GET /user/?tid=2613920181022&pd=%7B%22em%22%3A%2224aba99b2defbb47ee981b4200313f61f3ae31541d8717bdac1e463c838939b0%22%7D&cb=1747655079178&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-length: 189
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.sitesgpt.com
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 3477993178917905
x-pinterest-rid-128bit: a06e3489c5483cf83044505e78a225f3
date: Mon, 19 May 2025 11:44:39 GMT
x-cdn: fastly
alt-svc: h3=":443";ma=604800
pinterest-version: 7c5dcd4233cef162da4bf3022693745b6c19a6fe

GET www.sitesgpt.com/_nuxt/C9eHKq99.js

76.76.21.241

200 OK

1.1 kB

URL GET
www.sitesgpt.com/_nuxt/C9eHKq99.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (1139)
Size
1.1 kB (1140 bytes)
Hash
0668cb79a56e9ee45174eadca3341464
2dd8a09e101bac4fa075107c8c2ae8aa5a75aa69
932abfe4356cbec0de5e845efa99ade5642f5ad0733e9d48a912a2f3ff265388

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/C9eHKq99.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BHvetyLQ.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1167845
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="C9eHKq99.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"0668cb79a56e9ee45174eadca3341464"
last-modified: Mon, 05 May 2025 23:20:33 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::msq4r-1747655079679-22eb6c10b937
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/fade-grid.svg

96.6.16.40

200 OK

2.7 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/fade-grid.svg
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
SVG Scalable Vector Graphics image
Size
2.7 kB (2699 bytes)
Hash
f87acc3c67ffc19f77bb8b5996dc7d99
d190da3c8d59326393e064813e80b27f12ce6c0e
a0898ac6e16cd33b091f86c1ecf1dcfed2c3e088e052a426a625741e286ad520

HTTP Headers

GET /dq0gbgsdy/image/upload/site/fade-grid.svg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 879
content-disposition: attachment; filename="fade-grid_gfzthj.svg"
content-encoding: br
etag: W/"f87acc3c67ffc19f77bb8b5996dc7d99"
last-modified: Tue, 30 Jan 2024 19:32:02 GMT
date: Mon, 19 May 2025 11:44:37 GMT
cache-control: private, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cld-akam;dur=8;start=2025-05-19T11:44:37.599Z;desc=hit,rtt;dur=0,content-info;desc="width=1200,height=211,bytes=2699,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/BW4iZjkm.js

76.76.21.241

200 OK

4.5 kB

URL GET
www.sitesgpt.com/_nuxt/BW4iZjkm.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (4535)
Size
4.5 kB (4536 bytes)
Hash
5cd176a9a0a71a01d26b0e1354504bae
782caf24060e7a6b543eacb3bd8a42be2b4096cd
acc62b96db8eb04aac03f181dc60f78972106b825fc149dcf393f8eec49091e7

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BW4iZjkm.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/B1i-OfP0.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2013
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="BW4iZjkm.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: W/"5cd176a9a0a71a01d26b0e1354504bae"
last-modified: Mon, 19 May 2025 11:11:04 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::msq4r-1747655078579-463ead8679cf
X-Firefox-Spdy: h2

POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.sitesgpt.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=626308859.1747655078&dt=AI%20Website%20Builder%20%7C%20GPT%20Site%20Creator%20%26%20Generator%20%7C%20Sites%20GPT&auid=1381138812.1747655078&navt=n&npa=1&gtm=45He55g2h2v9122625792za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116&tft=1747655078156&tfd=3052&apve=1&apvf=sb

142.250.74.68

200 OK

0 B

URL POST
www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.sitesgpt.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=626308859.1747655078&dt=AI%20Website%20Builder%20%7C%20GPT%20Site%20Creator%20%26%20Generator%20%7C%20Sites%20GPT&auid=1381138812.1747655078&navt=n&npa=1&gtm=45He55g2h2v9122625792za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116&tft=1747655078156&tfd=3052&apve=1&apvf=sb
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
FingerprintC0:9B:21:A5:10:36:7E:DC:25:8D:0B:AB:4B:D9:D7:AD:92:06:96:49
ValidityMon, 21 Apr 2025 08:42:35 GMT - Mon, 14 Jul 2025 08:42:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.sitesgpt.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=626308859.1747655078&dt=AI%20Website%20Builder%20%7C%20GPT%20Site%20Creator%20%26%20Generator%20%7C%20Sites%20GPT&auid=1381138812.1747655078&navt=n&npa=1&gtm=45He55g2h2v9122625792za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116&tft=1747655078156&tfd=3052&apve=1&apvf=sb HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
date: Mon, 19 May 2025 11:44:39 GMT
cache-control: no-cache, no-store, must-revalidate
expires: Fri, 01 Jan 1990 00:00:00 GMT
content-type: text/plain
pragma: no-cache
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.sitesgpt.com
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/intro-content.BsdU9ULF.css

76.76.21.241

200 OK

530 B

URL GET
www.sitesgpt.com/_nuxt/intro-content.BsdU9ULF.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (529)
Size
530 B (530 bytes)
Hash
9c5c163b66c75b9ac3bb9bd15a218d20
bfebf5b1512b3d723b6bdcd475d77ea2bde66c53
c0e2be119a4f7b640c56e0cd7f36ca3133a69fbbba6442140339b7ff21d89a78

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/intro-content.BsdU9ULF.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1167845
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="intro-content.BsdU9ULF.css"
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "9c5c163b66c75b9ac3bb9bd15a218d20"
last-modified: Mon, 05 May 2025 23:20:33 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::mn4ch-1747655079288-4ef4edcde8f1
content-length: 530
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CBnp3nFE.js

76.76.21.241

200 OK

893 B

URL GET
www.sitesgpt.com/_nuxt/CBnp3nFE.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (892)
Size
893 B (893 bytes)
Hash
e9ba1e89b0ed81c991806aef4d0e0e56
fc6ae74ae416a8433361263729221674b70d3b28
3f38babb2fbf6ed930fc948dec02febd6cd9874b2bc6cabba7c7a3c830218fcf

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CBnp3nFE.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CBnp3nFE.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "e9ba1e89b0ed81c991806aef4d0e0e56"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::ffpxv-1747655077944-352cea685582
content-length: 893
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DYxG3wnY.js

76.76.21.241

200 OK

3.0 kB

URL GET
www.sitesgpt.com/_nuxt/DYxG3wnY.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (3033)
Size
3.0 kB (3034 bytes)
Hash
1cec366abad12c8d6cfc1d9501e3bc1f
f42a12e90319fb2f23ab1aa1200823261e34c553
834376a5417593640ba0e1175b7c8899a3fc61739060452d376a095e3be640d7

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DYxG3wnY.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/B1i-OfP0.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1184759
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DYxG3wnY.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: W/"1cec366abad12c8d6cfc1d9501e3bc1f"
last-modified: Mon, 05 May 2025 18:38:38 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::s5bvr-1747655078582-72c73e2aab30
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/BXFidBIn.js

76.76.21.241

200 OK

10 kB

URL GET
www.sitesgpt.com/_nuxt/BXFidBIn.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Unicode text, UTF-8 text, with very long lines (5637)
Size
10 kB (10500 bytes)
Hash
7e15f2f6bdcd151a4fd9171b71f9127f
ef665a4a0e0bec97e5445fadbf558ccfd7942771
3e5383cc47e2ba56cf019efc2de4bb7cfb3812eebc4d0b5fe26221e52e693523

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BXFidBIn.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1167845
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="BXFidBIn.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"7e15f2f6bdcd151a4fd9171b71f9127f"
last-modified: Mon, 05 May 2025 23:20:33 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::nhq9g-1747655079291-a38b78fb0c80
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/register.CeP92_Ys.css

76.76.21.241

200 OK

1.5 kB

URL GET
www.sitesgpt.com/_nuxt/register.CeP92_Ys.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1472)
Size
1.5 kB (1473 bytes)
Hash
8530be575eab899e66bfb79d1c9705c2
1b0c4d27eb2704c57e48655f3587c9fc03e7a8b9
578f93aca7a4af64a1e15808a1c6e7022fc134a476fed0d2f23e28a1ba8269d1

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/register.CeP92_Ys.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="register.CeP92_Ys.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"8530be575eab899e66bfb79d1c9705c2"
last-modified: Mon, 19 May 2025 11:11:07 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::9p4zp-1747655079594-484e10601e77
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CNRwdRu2.js

76.76.21.241

200 OK

475 B

URL GET
www.sitesgpt.com/_nuxt/CNRwdRu2.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (474)
Size
475 B (475 bytes)
Hash
9ab84556465a36efa1b468d894a48045
ebacf2eea3eeb9913889aa7b7823ac2e9ffe0f89
320f2ed0765eef94b90785dd14c6726b586b2d63234fffd59c9d595253afd486

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CNRwdRu2.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1184758
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CNRwdRu2.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "9ab84556465a36efa1b468d894a48045"
last-modified: Mon, 05 May 2025 18:38:38 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::ffpxv-1747655077942-93f1436339fe
content-length: 475
X-Firefox-Spdy: h2

GET q.quora.com/_/ad/c60701aa8d884a0ea3fb4f76e52bffc6/pixel?j=1&u=https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG&tag=ViewContent&ts=1747655078331&i=gtm

162.159.152.17

200 OK

43 B

URL GET
q.quora.com/_/ad/c60701aa8d884a0ea3fb4f76e52bffc6/pixel?j=1&u=https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG&tag=ViewContent&ts=1747655078331&i=gtm
IP
162.159.152.17:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subjectquora.com
FingerprintD7:61:69:34:FA:4B:2F:1E:18:39:75:EB:93:89:38:77:A1:E7:EC:EE
ValidityThu, 08 May 2025 16:11:50 GMT - Wed, 06 Aug 2025 16:11:49 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /_/ad/c60701aa8d884a0ea3fb4f76e52bffc6/pixel?j=1&u=https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG&tag=ViewContent&ts=1747655078331&i=gtm HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 19 May 2025 11:44:38 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-q-stat: ,f491838e07dc2e43c670a885c79d5fac,10.0.0.165,46830,91.90.42.154,,488113612122,1,1747655078.487,0.002,,.,0,0,0.000,0.000,-,0,0,203,244,122,10,26847,,,,,,-,
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 942357efebb4712f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET www.sitesgpt.com/_nuxt/fwH7ysCB.js

76.76.21.241

200 OK

938 B

URL GET
www.sitesgpt.com/_nuxt/fwH7ysCB.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (937)
Size
938 B (938 bytes)
Hash
7e9f05c0fbb401c7400e10790843b9f8
7b7a3136f8402d0a863e9b039cabf67fca640fd5
83514cb37c9060d3c6a840de31007a3d73a532dcf054ae3b3364ac7d5dc8e0f8

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/fwH7ysCB.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="fwH7ysCB.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: "7e9f05c0fbb401c7400e10790843b9f8"
last-modified: Mon, 19 May 2025 11:11:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::vnzgx-1747655078797-fc6d07ecda29
content-length: 938
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CHNhef8t.js

76.76.21.241

200 OK

823 B

URL GET
www.sitesgpt.com/_nuxt/CHNhef8t.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (822)
Size
823 B (823 bytes)
Hash
8d4c59145376f556377848a767a15371
a4cb317e65eebc75c8bff0e72d2b7fe2955d4409
61fd18012ec3d78c9e38a59af07e2091b34dedb3c161712fb5975a29faf55b1b

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CHNhef8t.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1179856
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CHNhef8t.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: "8d4c59145376f556377848a767a15371"
last-modified: Mon, 05 May 2025 20:00:21 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::kjf8c-1747655078800-2be2b36abb10
content-length: 823
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/Bb6y1F1E.js

76.76.21.241

200 OK

692 B

URL GET
www.sitesgpt.com/_nuxt/Bb6y1F1E.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (691)
Size
692 B (692 bytes)
Hash
6b68ac051d8259ac0a32497fc0633f07
a1d88626e97eea733f7a0da95bda7ffd06248d36
a88179e72a1bb0e2f94a2d64b4b7c16fc035cd561d9ed6ef4ef5ccf63995f74f

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/Bb6y1F1E.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1167846
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="Bb6y1F1E.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "6b68ac051d8259ac0a32497fc0633f07"
last-modified: Mon, 05 May 2025 23:20:32 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::5bvqf-1747655079440-712d3210ada6
content-length: 692
X-Firefox-Spdy: h2

GET www.redditstatic.com/ads/pixel.js

151.101.65.140

200 OK

69 kB

URL GET
www.redditstatic.com/ads/pixel.js
IP
151.101.65.140:443
ASN
#54113 FASTLY

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerDigiCert Inc
Subjectwww.redditstatic.com
FingerprintC1:DF:6F:A9:0B:8A:2E:A9:B8:14:56:36:4A:AB:DC:C9:B7:27:C9:98
ValidityMon, 24 Feb 2025 00:00:00 GMT - Fri, 22 Aug 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
69 kB (69019 bytes)
Hash
940ec35f0004ce16a08c8a6f98c8f311
120a7c64b10e211beac0f900560668161641a438
32381af77f65ff6b4b562c4ea846edc57ae7e5b7bff1e651c7d799e4003d5929

HTTP Headers

GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 08 May 2025 17:26:41 GMT
etag: "d86b92a48ab44b31d05310ed30d35a6e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 19 May 2025 11:44:38 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true,  "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}, {"group": "w3-reporting-csp", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-csp.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 18700
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DUYOKm7Y.js

76.76.21.241

200 OK

667 B

URL GET
www.sitesgpt.com/_nuxt/DUYOKm7Y.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (666)
Size
667 B (667 bytes)
Hash
ea8044698dbcbce18bd1e2c0512038e0
998ae9e5e78780f092ad993c5e85a6bbc47c0b10
0ba8ec7c97069b664b95ccba186bf46c9875935d515e136f7884dcf31024dd65

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DUYOKm7Y.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/B1i-OfP0.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2013
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DUYOKm7Y.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: "ea8044698dbcbce18bd1e2c0512038e0"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::6g4dh-1747655078583-60358ff5481c
content-length: 667
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/ByjbMclv.js

76.76.21.241

200 OK

169 B

URL GET
www.sitesgpt.com/_nuxt/ByjbMclv.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text
Size
169 B (169 bytes)
Hash
8a75c4ea212034f99e9044cf333095c7
95e7842b1824b78570e78eb23d1c2841a39a9efa
aa0f6e47bc02840425cafac7860ca50bf2cc04851c1f1db048b49a13bded2aba

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/ByjbMclv.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/B1i-OfP0.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1184759
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="ByjbMclv.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: "8a75c4ea212034f99e9044cf333095c7"
last-modified: Mon, 05 May 2025 18:38:39 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::s5bvr-1747655078586-fc63260ae82c
content-length: 169
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/login-form.BH3L7cHi.css

76.76.21.241

200 OK

509 B

URL GET
www.sitesgpt.com/_nuxt/login-form.BH3L7cHi.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (508)
Size
509 B (509 bytes)
Hash
fb5800aff0bb5d28b60cdbaadd98895a
11efd492cb348c6efdfa7911d9619bb217c69aee
34ef754ad782b755a23d1076d8cddd7d87b79a858569aa7cac9496641a3ea22c

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/login-form.BH3L7cHi.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1179842
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="login-form.BH3L7cHi.css"
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "fb5800aff0bb5d28b60cdbaadd98895a"
last-modified: Mon, 05 May 2025 20:00:37 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::fgtfz-1747655079593-a67288eb0863
content-length: 509
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CIuyZic-.js

76.76.21.241

200 OK

784 B

URL GET
www.sitesgpt.com/_nuxt/CIuyZic-.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (783)
Size
784 B (784 bytes)
Hash
283aae6265195aa9653df968e0664311
8c59d783f11b2e7a0c1c6aa63b6ac1276db37f5c
8e0edcb7a9bdad4f0daaa4bd7978e0d9e553be3872e9fe7e820d9d49e98770dd

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CIuyZic-.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1184758
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CIuyZic-.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "283aae6265195aa9653df968e0664311"
last-modified: Mon, 05 May 2025 18:38:39 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::2vs2p-1747655077949-558259c2dbb8
content-length: 784
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CUCXNgFG.js

76.76.21.241

200 OK

596 B

URL GET
www.sitesgpt.com/_nuxt/CUCXNgFG.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (595)
Size
596 B (596 bytes)
Hash
db549538fe1a8a6a8773e4d3754229f1
c680213ac8f9499eca2e40f02613784fd83170fd
ed5865d49b9242046ca6c999cc85820b34c7244d8f1a4f5577677c8ed2f5bf14

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CUCXNgFG.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/B1i-OfP0.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1186784
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CUCXNgFG.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: "db549538fe1a8a6a8773e4d3754229f1"
last-modified: Mon, 05 May 2025 18:04:54 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::xnhqd-1747655078581-83323c7a3842
content-length: 596
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CRVpyP_y.js

76.76.21.241

200 OK

580 B

URL GET
www.sitesgpt.com/_nuxt/CRVpyP_y.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (579)
Size
580 B (580 bytes)
Hash
61d7bc7023b94197626b7b4db04ba4fe
9aa8a2abff4320074794027b63b3ebe3fe73b671
32f6cb19143dc62538b4507b6fe9ed8045fcec0020953bb693a79fbb2f0458b6

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CRVpyP_y.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1179856
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CRVpyP_y.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: "61d7bc7023b94197626b7b4db04ba4fe"
last-modified: Mon, 05 May 2025 20:00:21 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::26zqk-1747655078800-2ec8234e03cd
content-length: 580
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CfART4xX.js

76.76.21.241

200 OK

509 B

URL GET
www.sitesgpt.com/_nuxt/CfART4xX.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (508)
Size
509 B (509 bytes)
Hash
8414c54aa4be74974a541120f714a7f4
c4d27a62787627ea0c9e2e007d8dd64de6917c9f
9a03157f273a27cf88d9b94646cfa1b4ede86ddb929af480e07a033f1d60f11c

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CfART4xX.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1179707
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CfART4xX.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "8414c54aa4be74974a541120f714a7f4"
last-modified: Mon, 05 May 2025 20:02:51 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::zkjzj-1747655079292-8ab8ae0331e0
content-length: 509
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/index.dOE5grau.css

76.76.21.241

200 OK

844 B

URL GET
www.sitesgpt.com/_nuxt/index.dOE5grau.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (843)
Size
844 B (844 bytes)
Hash
01568896647d25a20800bbdb70085dc4
be5130d79909c73dab82d3e54ace4f17588639f3
6d1ed6708bf92b8ea168917b930c952ce826970fcc30ae1c54dc01d12a387175

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/index.dOE5grau.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="index.dOE5grau.css"
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "01568896647d25a20800bbdb70085dc4"
last-modified: Mon, 19 May 2025 11:11:07 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::9h9rm-1747655079591-dcc7a056d973
content-length: 844
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/sourcesans3/v18/nwpStKy2OAdR1K-IwhWudF-R3w8aZejZ5HZV8Q.woff2

142.250.74.35

200 OK

29 kB

URL GET
fonts.gstatic.com/s/sourcesans3/v18/nwpStKy2OAdR1K-IwhWudF-R3w8aZejZ5HZV8Q.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint15:8B:D4:EA:7E:CB:34:1B:6F:2E:20:9E:39:44:7A:D6:D7:30:26:AB
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28768, version 1.0
Size
29 kB (28768 bytes)
Hash
d0557afb3f0c7a3864f0e3f412bcd8ed
b358d67d067e4cd71a3a6e51245fef72cb063c95
4ac9b88dc5104c7450eb73bfd416a63dbe4bf6b6acac44b8c953e3567dc4a663

HTTP Headers

GET /s/sourcesans3/v18/nwpStKy2OAdR1K-IwhWudF-R3w8aZejZ5HZV8Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 May 2025 09:39:29 GMT
expires: Fri, 15 May 2026 09:39:29 GMT
cache-control: public, max-age=31536000
age: 353108
last-modified: Tue, 11 Mar 2025 01:13:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.sitesgpt.com/favicon.ico

76.76.21.241

200 OK

15 kB

URL GET
www.sitesgpt.com/favicon.ico
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15086 bytes)
Hash
3140dba616455edb5494764a3c489956
93c3bffc4d1e547bc0618bd8b502efd0adedb5e5
6468afaccac79638fd2f4cbbd73cfee5ed0941cde15e35a123f42c4f7c501e13

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 16984
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="favicon.ico"
content-encoding: br
content-type: image/vnd.microsoft.icon
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"3140dba616455edb5494764a3c489956"
last-modified: Mon, 19 May 2025 07:01:32 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::6g4dh-1747655077843-12e4c18ae595
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/D4DrLqXm.js

76.76.21.241

200 OK

424 B

URL GET
www.sitesgpt.com/_nuxt/D4DrLqXm.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (423)
Size
424 B (424 bytes)
Hash
42dbe8219faca64c159d72052c8d74a8
f46024b5e9aa4b39f0bdcd61daa34986a7d298e6
95c3a3be564b0689f74482b07792110bfae2dda84af1f89755b0cc959b7b88d3

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/D4DrLqXm.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/B1i-OfP0.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1184759
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="D4DrLqXm.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: "42dbe8219faca64c159d72052c8d74a8"
last-modified: Mon, 05 May 2025 18:38:38 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::6g4dh-1747655078585-b829fcad41a5
content-length: 424
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DeRjPn5x.js

76.76.21.241

200 OK

884 B

URL GET
www.sitesgpt.com/_nuxt/DeRjPn5x.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (883)
Size
884 B (884 bytes)
Hash
697198de5c93fe4454690a847d227a8a
54ed4c5f133f2f789c038e78716054f2fe31e0d6
89f8dfc7c3e8ed6146bebafc0440a1db2d51efde1e5e997a875de503e1b63c17

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DeRjPn5x.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/68GCDJDY.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2014
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DeRjPn5x.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "697198de5c93fe4454690a847d227a8a"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::kjf8c-1747655079696-7beb12c4d4ae
content-length: 884
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/site-wave.svg

96.6.16.40

200 OK

689 B

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/site-wave.svg
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
SVG Scalable Vector Graphics image
Size
689 B (689 bytes)
Hash
43e2478d8758b88217364862239fbe01
9a38d5950ced42dfd50dd967e83a861454fee914
571440c4505e7a6400f119490b100c4fb5944169893d369165616c4531a77b34

HTTP Headers

GET /dq0gbgsdy/image/upload/site/site-wave.svg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 404
content-disposition: attachment; filename="site-wave_e3ohat.svg"
content-encoding: br
etag: W/"43e2478d8758b88217364862239fbe01"
last-modified: Tue, 30 Jan 2024 19:29:31 GMT
date: Mon, 19 May 2025 11:44:36 GMT
cache-control: private, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cld-akam;dur=13;start=2025-05-19T11:44:36.982Z;desc=hit,rtt;dur=2,content-info;desc="width=172,height=18,bytes=689,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DUt1gEF9.js

76.76.21.241

200 OK

737 B

URL GET
www.sitesgpt.com/_nuxt/DUt1gEF9.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (736)
Size
737 B (737 bytes)
Hash
6f3ece531c5a9a3c8c807c9ad8d890d9
3f1cfb042c8461b31ffb36c84751a3fa79a0f328
d014379d5e0888bfda61b83d58dbba2014018d60c8d1d73f69e264006f3e13aa

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DUt1gEF9.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2687188
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DUt1gEF9.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "6f3ece531c5a9a3c8c807c9ad8d890d9"
last-modified: Fri, 18 Apr 2025 09:18:09 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::gdkjm-1747655077950-58b3eac90c6d
content-length: 737
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/B1i-OfP0.js

76.76.21.241

200 OK

958 B

URL GET
www.sitesgpt.com/_nuxt/B1i-OfP0.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (957)
Size
958 B (958 bytes)
Hash
6531f2da6c62f6741b6caaba5bb2c389
a4df0cb471ba0c7809be6043c41135cb63759377
a91891a04b60828535d996bdaf3c08e8dc729d2264a636914d12c5143d3ee49d

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/B1i-OfP0.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2013
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="B1i-OfP0.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: "6531f2da6c62f6741b6caaba5bb2c389"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::5bvqf-1747655078390-0b7a072a2d2c
content-length: 958
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CMPv04-F.js

76.76.21.241

200 OK

7.5 kB

URL GET
www.sitesgpt.com/_nuxt/CMPv04-F.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (7470)
Size
7.5 kB (7473 bytes)
Hash
46949061497afde79abe799ae0b992e2
46156caf155ba70d570a802a39bfb52d8e0eaeae
766226a1f967304fa06e869773eebab6f5f16f3f3e424235187702daefed6332

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CMPv04-F.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1167845
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CMPv04-F.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"46949061497afde79abe799ae0b992e2"
last-modified: Mon, 05 May 2025 23:20:33 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::9h9rm-1747655079291-d2d0c01ffb16
X-Firefox-Spdy: h2

GET js.partnerstack.com/v1/

104.18.6.218

200 OK

9.0 kB

URL GET
js.partnerstack.com/v1/
IP
104.18.6.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subjectpartnerstack.com
FingerprintC7:8B:C3:59:1C:22:E0:2F:62:4B:A8:A4:8A:C8:1D:CF:A0:F7:F5:FB
ValidityThu, 24 Apr 2025 18:42:59 GMT - Wed, 23 Jul 2025 19:42:39 GMT

File type
JavaScript source, ASCII text, with very long lines (8950)
Size
9.0 kB (8951 bytes)
Hash
5eda21c9b6b3b06345764a7ec4875339
20491064df229acf4aa6f19ba1cdaa1ba1592cff
25e981af19a91c1003cc882c1d86232cd65017739ffa8573990dd0ce2022e3e7

HTTP Headers

GET /v1/ HTTP/1.1
Host: js.partnerstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 19 May 2025 11:44:37 GMT
content-type: application/javascript
last-modified: Fri, 21 Mar 2025 16:40:10 GMT
etag: W/"67dd966a-22f7"
cache-control: public, max-age=14400
via: 1.1 google
cf-cache-status: HIT
age: 39
expires: Mon, 19 May 2025 15:44:37 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 942357eb9e165688-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/video/upload/site/home_hero.mp4

96.6.16.40

206 Partial Content

762 kB

URL GET
res.cloudinary.com/dq0gbgsdy/video/upload/site/home_hero.mp4
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
762 kB (761534 bytes)
Hash
2fef62b1e36d87885fea51b63231c875
3237cd5183fb0a78b86c959debc6d7622eb256e2
8fa77d622a96c32a3fbbc7486a1684e6219187b0817df95287c7df8281e32f5c

HTTP Headers

GET /dq0gbgsdy/video/upload/site/home_hero.mp4 HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
content-type: video/mp4;codecs=avc1
etag: "2fef62b1e36d87885fea51b63231c875"
last-modified: Thu, 08 Feb 2024 16:57:13 GMT
date: Mon, 19 May 2025 11:44:37 GMT
content-range: bytes 0-761533/761534
content-length: 761534
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=41;start=2025-05-19T11:44:37.648Z;desc=hit,rtt;dur=0,content-info;desc="width=1280,height=720,abps=203982,fps=30.0,du=3.733,vc=\"h264\",bytes=761534,o=1,ef=(18)"
X-Firefox-Spdy: h2

GET contentdsp.com/events.js

54.86.146.228

301 Moved Permanently

22 kB

URL GET
contentdsp.com/events.js
IP
54.86.146.228:443
ASN
#14618 AMAZON-AES

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerAmazon
Subjectcontent.to
FingerprintA1:F2:04:99:C5:19:76:26:0C:C2:AA:AC:08:E9:8A:EF:AD:57:81:BA
ValidityThu, 17 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT

File type

Size
22 kB (22254 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /events.js HTTP/1.1
Host: contentdsp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Mon, 19 May 2025 11:44:38 GMT
content-type: text/html; charset=utf-8
content-length: 65
location: https://qvdt3feo.com/events.js
X-Firefox-Spdy: h2

GET ct.pinterest.com/ct.html

151.101.0.84

200 OK

565 B

URL GET
ct.pinterest.com/ct.html
IP
151.101.0.84:443
ASN
#54113 FASTLY

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerDigiCert Inc
Subject*.pinterest.com
Fingerprint6E:48:6C:AA:E4:13:AF:8E:56:5F:98:5A:DE:07:8C:24:0D:90:5A:EA
ValidityMon, 05 Aug 2024 00:00:00 GMT - Thu, 07 Aug 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (565), with no line terminators
Size
565 B (565 bytes)
Hash
433cbac690542626f503b4269a8da12a
3e810bc4abaccf42ac5e4b0b939d63c03711bbd9
f83b1a3ea61ad62e47fad82de5495a2547e2f12e591ad8108050538c566ae1e3

HTTP Headers

GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-length: 323
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 1031760946577317
x-pinterest-rid-128bit: 344544e5725147f78f2f8324e29e3cd8
date: Mon, 19 May 2025 11:44:39 GMT
x-cdn: fastly
alt-svc: h3=":443";ma=604800
pinterest-version: 7c5dcd4233cef162da4bf3022693745b6c19a6fe

GET www.clickcease.com/monitor/stat.js

54.240.174.33

200 OK

145 kB

URL GET
www.clickcease.com/monitor/stat.js
IP
54.240.174.33:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerAmazon
Subjectclickcease.com
Fingerprint40:78:8E:56:B3:A1:B9:A2:85:39:9D:07:BF:C2:93:B1:02:17:93:38
ValiditySat, 26 Oct 2024 00:00:00 GMT - Mon, 24 Nov 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
145 kB (145222 bytes)
Hash
e112b8bf96f23bc2970347a3c98e37fc
ce2408e32aea3f8323ecee9b7e4338a943667950
889794fd02992011c4b843a05190531656d4c6148e6d4375be6bab3432b580d0

HTTP Headers

GET /monitor/stat.js HTTP/1.1
Host: www.clickcease.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Sep 2023 09:05:15 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: Cf02rYNryv9UIBzoGOQeQJTZ2QU2vf2Y
server: AmazonS3
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"e112b8bf96f23bc2970347a3c98e37fc"
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 00HOrNwwhQVla3Nv6aqDSCaNjGEZEiyHW1gnyyyBPAwK6K0e92Osdg==
age: 13
x-frame-options: SAMEORIGIN
referrer-policy: no-referrer-when-downgrade
content-security-policy: frame-ancestors 'self' https://clickceasebiz.com https://*.clickceasebiz.com; upgrade-insecure-requests;
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: microphone 'none'; camera 'none';
vary: accept-encoding, Origin
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/site-header.BJFjwAPc.css

76.76.21.241

200 OK

1.6 kB

URL GET
www.sitesgpt.com/_nuxt/site-header.BJFjwAPc.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1615)
Size
1.6 kB (1616 bytes)
Hash
d9ba39573293177f12aa7de936414c95
776990c22b1717558ead0d0013aaae727587ed24
d889cb35c66a17688811177822a1e6671e3ad7158cda3b1694cd95feb603f8ab

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/site-header.BJFjwAPc.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1186782
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="site-header.BJFjwAPc.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"d9ba39573293177f12aa7de936414c95"
last-modified: Mon, 05 May 2025 18:04:54 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::n62hv-1747655076859-d4d16836a488
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtm.js?id=GTM-5MCGD8P

142.250.74.136

200 OK

394 kB

URL GET
www.googletagmanager.com/gtm.js?id=GTM-5MCGD8P
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint02:7D:56:C0:B9:20:0C:27:A4:AC:B9:8F:9D:45:1D:85:2A:30:50:AD
ValidityMon, 21 Apr 2025 08:40:41 GMT - Mon, 14 Jul 2025 08:40:40 GMT

File type
JavaScript source, ASCII text, with very long lines (18409)
Size
394 kB (393570 bytes)
Hash
ae9ebdb9e6a81e996d7c4ffc1afc34f9
4c3f6ee760ad00fcd4edc5e1aee27a5474622e2a
4c5c7d3f6f05bd37b7369d91f6e56462e50cd28fc3ba8c533d6de4b44e2c29a6

HTTP Headers

GET /gtm.js?id=GTM-5MCGD8P HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 May 2025 11:44:37 GMT
expires: Mon, 19 May 2025 11:44:37 GMT
cache-control: private, max-age=900
last-modified: Mon, 19 May 2025 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1317:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1317:0
report-to: {"group":"ascgcycc:1317:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1317:0"}],}
server: Google Tag Manager
content-length: 130877
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST bat.bing.net/actionp/0?ti=343067317&tm=gtm002&Ver=2&mid=8f5a12da-f30e-45d7-bd0d-353a1a61e28e&bo=1&evt=consent&src=enforced&cdb=AQAY&asc=D

150.171.28.10

204 No Content

0 B

URL POST
bat.bing.net/actionp/0?ti=343067317&tm=gtm002&Ver=2&mid=8f5a12da-f30e-45d7-bd0d-353a1a61e28e&bo=1&evt=consent&src=enforced&cdb=AQAY&asc=D
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerMicrosoft Corporation
Subjectbat.bing.net
Fingerprint36:B0:89:87:47:4A:B0:8A:1F:A8:EB:71:A6:13:8A:FF:CD:94:46:23
ValidityThu, 24 Apr 2025 22:29:23 GMT - Tue, 21 Oct 2025 22:29:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /actionp/0?ti=343067317&tm=gtm002&Ver=2&mid=8f5a12da-f30e-45d7-bd0d-353a1a61e28e&bo=1&evt=consent&src=enforced&cdb=AQAY&asc=D HTTP/1.1
Host: bat.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3CCD58D653BE46679D47DE52D9589E99 Ref B: OSL30EDGE0216 Ref C: 2025-05-19T11:44:39Z
date: Mon, 19 May 2025 11:44:39 GMT
X-Firefox-Spdy: h2

GET sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG

76.76.21.21

308 Permanent Redirect

240 kB

URL User Request GET
sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectsitesgpt.com
FingerprintCE:A1:30:2F:61:06:72:D3:2C:48:10:C6:F7:B0:23:94:2C:F3:37:D1
ValiditySun, 30 Mar 2025 12:20:54 GMT - Sat, 28 Jun 2025 12:20:53 GMT

File type
HTML document, ASCII text, with very long lines (60807)
Size
240 kB (239454 bytes)
Hash
c6b118059d667978fad3a57f0b17b65d
d6461ba7ca090106b64a4004446ded392fd4037b
4ae7fef6bcdac867864f48c12e0e6c2d974c701813c81492e7e9117af36ceea7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?em&serID=email_auth&sessionID=yIFqQyJFQHSG HTTP/1.1
Host: sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 308 Permanent Redirect
cache-control: public, max-age=0, must-revalidate
content-type: text/html
date: Mon, 19 May 2025 11:44:35 GMT
location: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
refresh: 0;url=https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-id: arn1::v487q-1747655075917-f5fad82ba694
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/swiper-vue.Bs3d9ZnH.css

76.76.21.241

200 OK

18 kB

URL GET
www.sitesgpt.com/_nuxt/swiper-vue.Bs3d9ZnH.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (17802)
Size
18 kB (17803 bytes)
Hash
9cc8b650c3fd7b8e7da299a16b777c36
6518222ba45d8fd9e797144f660faa56508167e9
b2aca30be8c1d58bd26708d9eb8151ab5188dfe71f509a43d45e22759ea9f4fc

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/swiper-vue.Bs3d9ZnH.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2011
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="swiper-vue.Bs3d9ZnH.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"9cc8b650c3fd7b8e7da299a16b777c36"
last-modified: Mon, 19 May 2025 11:11:04 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::kjf8c-1747655076858-0e50f61b5f9d
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CnP_jH6d.js

76.76.21.241

200 OK

8.7 kB

URL GET
www.sitesgpt.com/_nuxt/CnP_jH6d.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (8664)
Size
8.7 kB (8671 bytes)
Hash
a43e4018f3437cb25fcfcf43e3ba74fb
bb91064240faa1e2c8a1de6b0e71a29a1a2d17a3
4206b9cf27307f2e34a208ed3a86c63d883c36ec4702fa39b8bb115f2dc96954

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CnP_jH6d.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1167847
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CnP_jH6d.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"a43e4018f3437cb25fcfcf43e3ba74fb"
last-modified: Mon, 05 May 2025 23:20:32 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::nhq9g-1747655079415-ff8bdb761108
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/BHvetyLQ.js

76.76.21.241

200 OK

2.8 kB

URL GET
www.sitesgpt.com/_nuxt/BHvetyLQ.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (2783)
Size
2.8 kB (2784 bytes)
Hash
14a2553f3fa0b8cac50eebae0e529f42
6924b0d43f149471e2a72810110f1b8df8544b25
c00832b30d987765037403269796c40171655cd778c6393caa9fcdef02570058

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BHvetyLQ.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="BHvetyLQ.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"14a2553f3fa0b8cac50eebae0e529f42"
last-modified: Mon, 19 May 2025 11:11:07 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::tch9z-1747655079630-c426cbf95c14
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/C8-mDos4.js

76.76.21.241

200 OK

4.0 kB

URL GET
www.sitesgpt.com/_nuxt/C8-mDos4.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (3961)
Size
4.0 kB (3962 bytes)
Hash
a97e5409bfae750771b48b69f6340cbb
559def909177c2c31e7a33613d37fe44c23e0a55
c9db20528904298591d551fd0522758b9e5eea0bc950e0a497c577af046215e1

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/C8-mDos4.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/68GCDJDY.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="C8-mDos4.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"a97e5409bfae750771b48b69f6340cbb"
last-modified: Mon, 19 May 2025 11:11:07 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::msq4r-1747655079689-f29039c0e059
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/BhinJWWt.js

76.76.21.241

200 OK

10 kB

URL GET
www.sitesgpt.com/_nuxt/BhinJWWt.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (10241)
Size
10 kB (10301 bytes)
Hash
9c0bf6b43792085632b8811c51e5bdee
369fe8aac7f1ddaf54255aa7ecfd6f745888a75f
5fa28080eedaf1547ae982da7121b966160ccce5fa03bb13888ff596a0eaad74

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BhinJWWt.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="BhinJWWt.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"9c0bf6b43792085632b8811c51e5bdee"
last-modified: Mon, 19 May 2025 11:11:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::5bvqf-1747655079291-f9ea8413f441
X-Firefox-Spdy: h2

GET ct.pinterest.com/v3/?tid=2613920181022&pd=%7B%22em%22%3A%2224aba99b2defbb47ee981b4200313f61f3ae31541d8717bdac1e463c838939b0%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228821a9da%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1747655079180

151.101.0.84

200 OK

35 B

URL GET
ct.pinterest.com/v3/?tid=2613920181022&pd=%7B%22em%22%3A%2224aba99b2defbb47ee981b4200313f61f3ae31541d8717bdac1e463c838939b0%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228821a9da%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1747655079180
IP
151.101.0.84:443
ASN
#54113 FASTLY

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerDigiCert Inc
Subject*.pinterest.com
Fingerprint6E:48:6C:AA:E4:13:AF:8E:56:5F:98:5A:DE:07:8C:24:0D:90:5A:EA
ValidityMon, 05 Aug 2024 00:00:00 GMT - Thu, 07 Aug 2025 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
35 B (35 bytes)
Hash
9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b

HTTP Headers

GET /v3/?tid=2613920181022&pd=%7B%22em%22%3A%2224aba99b2defbb47ee981b4200313f61f3ae31541d8717bdac1e463c838939b0%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228821a9da%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1747655079180 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sitesgpt.com/
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-length: 35
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
access-control-allow-origin: https://www.sitesgpt.com
access-control-allow-credentials: true
set-cookie: ar_debug=1; Expires=Tue, 19 May 2026 11:44:39 GMT; Path=/; Domain=.pinterest.com; Secure; HTTPOnly; SameSite=None
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1776371906003818
x-pinterest-rid-128bit: 4bfd4a4989f7f9a2f685685e6f6975aa
date: Mon, 19 May 2025 11:44:39 GMT
x-cdn: fastly
alt-svc: h3=":443";ma=604800
pinterest-version: 7c5dcd4233cef162da4bf3022693745b6c19a6fe

GET www.sitesgpt.com/_nuxt/B0g8w6C8.js

76.76.21.241

200 OK

787 B

URL GET
www.sitesgpt.com/_nuxt/B0g8w6C8.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (786)
Size
787 B (787 bytes)
Hash
925257e0b57d8e78508c67c5945d73df
feec76bbe91e871d088786d209dcb1fa1224c342
2589162ec5caa7e2ee2225a715753fa50069e5d724c3aa11ce8692f4ebe4aa43

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/B0g8w6C8.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BhinJWWt.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1167845
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="B0g8w6C8.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "925257e0b57d8e78508c67c5945d73df"
last-modified: Mon, 05 May 2025 23:20:33 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::d4ppr-1747655079449-8d219a8d2612
content-length: 787
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/ai-website-builder.png

96.6.16.40

200 OK

409 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/ai-website-builder.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 697 x 649, 8-bit/color RGBA, non-interlaced
Size
409 kB (408584 bytes)
Hash
91adc863af15f810e81ad6fdaab58335
7020a69e84987c995a515eaf8a2bc65a8f157aac
116aac01fe5d9f407a2997f3be2a70f901bcbe515b3a6e039800ece3dc18ff9a

HTTP Headers

GET /dq0gbgsdy/image/upload/site/ai-website-builder.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 408584
etag: "91adc863af15f810e81ad6fdaab58335"
last-modified: Tue, 30 Jan 2024 19:34:41 GMT
date: Mon, 19 May 2025 11:44:37 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=27;start=2025-05-19T11:44:36.983Z;desc=hit,rtt;dur=2,content-info;desc="width=697,height=649,bytes=408584,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CqCfbMda.js

76.76.21.241

200 OK

1.3 kB

URL GET
www.sitesgpt.com/_nuxt/CqCfbMda.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (1314)
Size
1.3 kB (1315 bytes)
Hash
7cb092d1f8d50912e1be8b23fb5cba83
5a7864618ebbb9f67e640b0f3c1bb949e8d63b65
76d8f3b8c5e38600abb77934685104a373d64b154a4f540ed268f297afde685a

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CqCfbMda.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CqCfbMda.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: W/"7cb092d1f8d50912e1be8b23fb5cba83"
last-modified: Mon, 19 May 2025 11:11:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::g72wl-1747655078799-25808cb49513
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/xLpCPpNP.js

76.76.21.241

200 OK

7.1 kB

URL GET
www.sitesgpt.com/_nuxt/xLpCPpNP.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (7095)
Size
7.1 kB (7098 bytes)
Hash
83415606d32a0af768358514e6334048
8b97e4eb0c20888cbcef3b682816c8d4bef9e064
d354370f4c5494739226d36e2d703aa4e02438770f4aaf5ed1cbad2f0f510ad1

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/xLpCPpNP.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="xLpCPpNP.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"83415606d32a0af768358514e6334048"
last-modified: Mon, 19 May 2025 11:11:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::xnhqd-1747655079413-33634d318673
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/68GCDJDY.js

76.76.21.241

200 OK

1.0 kB

URL GET
www.sitesgpt.com/_nuxt/68GCDJDY.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (1034)
Size
1.0 kB (1035 bytes)
Hash
929ba7b731100d1bdb53fb8e708ca084
0eae44f92df33e0224c8caede10d83252016d88b
575cd3488f96afbccc870e4cf80a8e063c91ba9670ad7bc8cdd83f81a4b25a4e

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/68GCDJDY.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2687174
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="68GCDJDY.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"929ba7b731100d1bdb53fb8e708ca084"
last-modified: Fri, 18 Apr 2025 09:18:24 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::tch9z-1747655079640-bc0b32ef63bc
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/stop-waiting-start-building.png

96.6.16.40

200 OK

299 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/stop-waiting-start-building.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 604 x 496, 8-bit/color RGBA, non-interlaced
Size
299 kB (299446 bytes)
Hash
5e1f84478aec2ade611e6b2c74a2c8a5
299566a2a9f2131d19076839dc101987ed78a441
3e0649f3649bfd6e82ea9a0ea6c764b2581c23b8f3982ceba3a61e2c30ba20a5

HTTP Headers

GET /dq0gbgsdy/image/upload/site/stop-waiting-start-building.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 299446
etag: "5e1f84478aec2ade611e6b2c74a2c8a5"
last-modified: Tue, 30 Jan 2024 19:29:20 GMT
date: Mon, 19 May 2025 11:44:37 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=40;start=2025-05-19T11:44:36.978Z;desc=hit,rtt;dur=0,content-info;desc="width=604,height=496,bytes=299446,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/ChFW4WNb.js

76.76.21.241

200 OK

84 B

URL GET
www.sitesgpt.com/_nuxt/ChFW4WNb.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text
Size
84 B (84 bytes)
Hash
a51a4683c17ca7f7a15a40de337883f6
d6d9f07e1a7a6fd120f918b9ee6f4e82899521ee
350951a82c90b55592b2afafcd6a89b1e9c5540387a44fb97d42e3ba4f84405c

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/ChFW4WNb.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="ChFW4WNb.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "a51a4683c17ca7f7a15a40de337883f6"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::647ms-1747655077936-6119d4602b5d
content-length: 84
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CejtcvUI.js

76.76.21.241

200 OK

7.8 kB

URL GET
www.sitesgpt.com/_nuxt/CejtcvUI.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (7803)
Size
7.8 kB (7804 bytes)
Hash
66ac48256ef6c4645b15746f9316fe9f
2a162c26216a10bce593f177fd34224877662d1d
aa5b63ef844c7793622d495931837441167f206b47bfc7c0e77e14e97e9b2181

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CejtcvUI.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1184754
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CejtcvUI.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: W/"66ac48256ef6c4645b15746f9316fe9f"
last-modified: Mon, 05 May 2025 18:38:43 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::xc5d7-1747655078181-86ccd5bf921f
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DOVyz9J4.js

76.76.21.241

200 OK

5.4 kB

URL GET
www.sitesgpt.com/_nuxt/DOVyz9J4.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (5353)
Size
5.4 kB (5354 bytes)
Hash
1619de45e35cb9b8158eed32bab3441b
4e5bf43a9a707d32f531eac1b3a67e9efedb9b1c
bd94dc516abb8dc9ef4458c721e0cd1cf7d187d6f6fb213ed41b27322f0de363

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DOVyz9J4.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1179707
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DOVyz9J4.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"1619de45e35cb9b8158eed32bab3441b"
last-modified: Mon, 05 May 2025 20:02:51 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::kjf8c-1747655079644-87795e89fba0
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/sourcesans3/v18/nwpStKy2OAdR1K-IwhWudF-R3w8aZejZ5HZV8Q.woff2

142.250.74.35

200 OK

29 kB

URL GET
fonts.gstatic.com/s/sourcesans3/v18/nwpStKy2OAdR1K-IwhWudF-R3w8aZejZ5HZV8Q.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint15:8B:D4:EA:7E:CB:34:1B:6F:2E:20:9E:39:44:7A:D6:D7:30:26:AB
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28768, version 1.0
Size
29 kB (28768 bytes)
Hash
d0557afb3f0c7a3864f0e3f412bcd8ed
b358d67d067e4cd71a3a6e51245fef72cb063c95
4ac9b88dc5104c7450eb73bfd416a63dbe4bf6b6acac44b8c953e3567dc4a663

HTTP Headers

GET /s/sourcesans3/v18/nwpStKy2OAdR1K-IwhWudF-R3w8aZejZ5HZV8Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 May 2025 09:39:29 GMT
expires: Fri, 15 May 2026 09:39:29 GMT
cache-control: public, max-age=31536000
age: 353108
last-modified: Tue, 11 Mar 2025 01:13:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/builds/meta/0912dd8d-e786-4f89-b508-f47fc73d35bc.json

76.76.21.241

200 OK

187 B

URL GET
www.sitesgpt.com/_nuxt/builds/meta/0912dd8d-e786-4f89-b508-f47fc73d35bc.json
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
JSON text data
Size
187 B (187 bytes)
Hash
c7c9adf1315f5e6b9e80e8d1cd832b72
ea1c0b87a0ef2e4fccad07b3fa64d6ee92bd4934
9012f88e2a2d48ef4bd7a28ad5934545fb2f8164cc11a6f581f43ba19dc29292

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/builds/meta/0912dd8d-e786-4f89-b508-f47fc73d35bc.json HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
DNT: 1
Connection: keep-alive
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1144583
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="0912dd8d-e786-4f89-b508-f47fc73d35bc.json"
content-type: application/json; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: "c7c9adf1315f5e6b9e80e8d1cd832b72"
last-modified: Tue, 06 May 2025 05:48:14 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::gdkjm-1747655078247-fb18b9c6d925
content-length: 187
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/B2g_S0lp.js

76.76.21.241

200 OK

1.3 kB

URL GET
www.sitesgpt.com/_nuxt/B2g_S0lp.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (1267)
Size
1.3 kB (1268 bytes)
Hash
01eb847f237ce535a37f1e3de876f5c2
798691148641d535faf514e125b6be6d678a551c
aa43fbdfd852c40080d38cf1fd61b8bee9915bb1a8ffd1a3f16f20ff0ab2e2de

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/B2g_S0lp.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="B2g_S0lp.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: W/"01eb847f237ce535a37f1e3de876f5c2"
last-modified: Mon, 19 May 2025 11:11:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::kjf8c-1747655078795-02d56f8e7017
X-Firefox-Spdy: h2

GET bat.bing.net/action/0?ti=343067317&tm=gtm002&Ver=2&mid=8f5a12da-f30e-45d7-bd0d-353a1a61e28e&bo=2&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=AI%20Website%20Builder%20%7C%20GPT%20Site%20Creator%20%26%20Generator%20%7C%20Sites%20GPT&kw=AI%20Website,AI%20site%20builder,Artificial%20Intelligence,SitesGPT,AI,SiteGPT,Sites%20GPT,SitesGPT.com,SiteGPT.com,%20Sites%20GPT,%20Site%20GPT,Build%20Website%20with%20AI&p=https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG&r=&lt=2719&evt=pageLoad&sv=1&asc=D&cdb=AQAY&rn=625046

150.171.28.10

204 No Content

0 B

URL GET
bat.bing.net/action/0?ti=343067317&tm=gtm002&Ver=2&mid=8f5a12da-f30e-45d7-bd0d-353a1a61e28e&bo=2&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=AI%20Website%20Builder%20%7C%20GPT%20Site%20Creator%20%26%20Generator%20%7C%20Sites%20GPT&kw=AI%20Website,AI%20site%20builder,Artificial%20Intelligence,SitesGPT,AI,SiteGPT,Sites%20GPT,SitesGPT.com,SiteGPT.com,%20Sites%20GPT,%20Site%20GPT,Build%20Website%20with%20AI&p=https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG&r=&lt=2719&evt=pageLoad&sv=1&asc=D&cdb=AQAY&rn=625046
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerMicrosoft Corporation
Subjectbat.bing.net
Fingerprint36:B0:89:87:47:4A:B0:8A:1F:A8:EB:71:A6:13:8A:FF:CD:94:46:23
ValidityThu, 24 Apr 2025 22:29:23 GMT - Tue, 21 Oct 2025 22:29:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=343067317&tm=gtm002&Ver=2&mid=8f5a12da-f30e-45d7-bd0d-353a1a61e28e&bo=2&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=AI%20Website%20Builder%20%7C%20GPT%20Site%20Creator%20%26%20Generator%20%7C%20Sites%20GPT&kw=AI%20Website,AI%20site%20builder,Artificial%20Intelligence,SitesGPT,AI,SiteGPT,Sites%20GPT,SitesGPT.com,SiteGPT.com,%20Sites%20GPT,%20Site%20GPT,Build%20Website%20with%20AI&p=https%3A%2F%2Fwww.sitesgpt.com%2F%3Fem%26serID%3Demail_auth%26sessionID%3DyIFqQyJFQHSG&r=&lt=2719&evt=pageLoad&sv=1&asc=D&cdb=AQAY&rn=625046 HTTP/1.1
Host: bat.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FFFC061146244D80972FC708620FB3BC Ref B: OSL30EDGE0216 Ref C: 2025-05-19T11:44:39Z
date: Mon, 19 May 2025 11:44:39 GMT
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.35

200 OK

8.0 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint15:8B:D4:EA:7E:CB:34:1B:6F:2E:20:9E:39:44:7A:D6:D7:30:26:AB
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v23/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 May 2025 14:59:58 GMT
expires: Sat, 16 May 2026 14:59:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 23 Apr 2025 16:07:17 GMT
content-type: font/woff2
age: 247479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/Df4inRZn.js

76.76.21.241

200 OK

8.8 kB

URL GET
www.sitesgpt.com/_nuxt/Df4inRZn.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (8824)
Size
8.8 kB (8827 bytes)
Hash
771c2fec2931217b8070bef0467ab044
46626316b1aaccc70b7b262f4805e6aa14de6ab9
93afca58d001ba56a26a1fd455065ddd39db81760384989fbe725c8c8dcce278

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/Df4inRZn.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="Df4inRZn.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"771c2fec2931217b8070bef0467ab044"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::d4ppr-1747655077726-2df2484ad1a4
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/BD40HhGi.js

76.76.21.241

200 OK

2.9 kB

URL GET
www.sitesgpt.com/_nuxt/BD40HhGi.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (2948)
Size
2.9 kB (2949 bytes)
Hash
a2abe89c4b12ac9f9107cc27ec9856b7
a8c897872ae147d1514bf9fe75ad8021284600c2
93e6c23c987b5bc882578cb3d5865bb81a75f83c6f84c2847d4babc426a352fb

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BD40HhGi.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1186783
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="BD40HhGi.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"a2abe89c4b12ac9f9107cc27ec9856b7"
last-modified: Mon, 05 May 2025 18:04:54 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::ffpxv-1747655077925-131c5a5ff7f4
X-Firefox-Spdy: h2

GET affiliate.sitesgpt.com/pr/grc/pk_STTHhTGeNMs7dXzoxMdBT1uJ9X4sC8pb

104.18.30.133

200 OK

0 B

URL GET
affiliate.sitesgpt.com/pr/grc/pk_STTHhTGeNMs7dXzoxMdBT1uJ9X4sC8pb
IP
104.18.30.133:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectaffiliate.sitesgpt.com
FingerprintFC:6F:2B:86:1A:3B:EC:BE:84:0E:DE:26:48:74:20:A4:58:99:2D:6C
ValiditySat, 29 Mar 2025 16:51:48 GMT - Fri, 27 Jun 2025 16:51:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pr/grc/pk_STTHhTGeNMs7dXzoxMdBT1uJ9X4sC8pb HTTP/1.1
Host: affiliate.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 19 May 2025 11:44:38 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.sitesgpt.com
p3p: CP="This is not a P3P policy! See our docs for more info."
x-envoy-upstream-service-time: 1
last-modified: Sun, 18 May 2025 13:40:23 GMT
cf-cache-status: HIT
age: 41027
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 942357f04e4bb4f9-OSL
X-Firefox-Spdy: h2

GET webmail-strato.de-w9ttgpkuij.com/ret_url/f1063a66f88fbc4e864c066e22c0f076/login.php?serID=email_auth&sessionID=yIFqQyJFQHSG&em=

45.158.169.85

302 Found

240 kB

URL User Request GET
webmail-strato.de-w9ttgpkuij.com/ret_url/f1063a66f88fbc4e864c066e22c0f076/login.php?serID=email_auth&sessionID=yIFqQyJFQHSG&em=
IP
45.158.169.85:443
ASN
#138195 MOACK.Co.LTD

Certificate
IssuerLet's Encrypt
Subjectwebmail-strato.de-w9ttgpkuij.com
Fingerprint88:5D:11:8F:B6:8C:26:AE:87:59:BA:F7:E9:45:55:B1:AB:3B:84:80
ValiditySun, 04 May 2025 05:22:36 GMT - Sat, 02 Aug 2025 05:22:35 GMT

File type

Size
240 kB (239454 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ret_url/f1063a66f88fbc4e864c066e22c0f076/login.php?serID=email_auth&sessionID=yIFqQyJFQHSG&em= HTTP/1.1
Host: webmail-strato.de-w9ttgpkuij.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Mon, 19 May 2025 11:44:35 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-store
set-cookie: PHPSESSID=po1jp99sm9bagudiu4vpjt0l94; path=/
X-Firefox-Spdy: h2

GET www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG

76.76.21.241

200 OK

240 kB

URL User Request GET
www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
HTML document, ASCII text, with very long lines (60807)
Size
240 kB (239454 bytes)
Hash
c6b118059d667978fad3a57f0b17b65d
d6461ba7ca090106b64a4004446ded392fd4037b
4ae7fef6bcdac867864f48c12e0e6c2d974c701813c81492e7e9117af36ceea7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?em&serID=email_auth&sessionID=yIFqQyJFQHSG HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html;charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-powered-by: Nuxt
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::2vs2p-1747655076042-44214b662c82
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/OnAibvkV.js

76.76.21.241

200 OK

200 kB

URL GET
www.sitesgpt.com/_nuxt/OnAibvkV.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
JavaScript source, ASCII text, with very long lines (30348)
Size
200 kB (199885 bytes)
Hash
7c61d278d1a085977e998bc11e0e98b7
34253946eaef7f3322bd182ae1ec47031626b700
dec661cee530b498f08a2e19c392c8fee8742efb9a09b565b1d7a5cff5c30925

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/OnAibvkV.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1184758
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="OnAibvkV.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"7c61d278d1a085977e998bc11e0e98b7"
last-modified: Mon, 05 May 2025 18:38:39 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::xc5d7-1747655077503-88d4c5cbecc2
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/D7VAZrCq.js

76.76.21.241

200 OK

633 B

URL GET
www.sitesgpt.com/_nuxt/D7VAZrCq.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (632)
Size
633 B (633 bytes)
Hash
05bc5ac1b3c18836c8f3d2fecb866252
f1699be104c7eba951bae72daddc17ed0960d893
b39d4b23c7811084d873d45f5b83763b4702223c5febaab122520ded46b33036

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/D7VAZrCq.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1184758
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="D7VAZrCq.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "05bc5ac1b3c18836c8f3d2fecb866252"
last-modified: Mon, 05 May 2025 18:38:39 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::ffpxv-1747655077938-bebad2a982bf
content-length: 633
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DCU53ubg.js

76.76.21.241

200 OK

759 B

URL GET
www.sitesgpt.com/_nuxt/DCU53ubg.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (758)
Size
759 B (759 bytes)
Hash
1ee86190b3d6b2bd7d2aff0520da5692
2fbfaa1b890a429a1202ba7756d5f83fe0967d57
e62a16645bed5831620275a24ed92bba9e2351ea0e7ffcb97faa130d24a080be

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DCU53ubg.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1184758
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DCU53ubg.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "1ee86190b3d6b2bd7d2aff0520da5692"
last-modified: Mon, 05 May 2025 18:38:39 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::2vs2p-1747655077943-0f7eeb006146
content-length: 759
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/Dou5JDIP.js

76.76.21.241

200 OK

1.1 kB

URL GET
www.sitesgpt.com/_nuxt/Dou5JDIP.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (1056)
Size
1.1 kB (1057 bytes)
Hash
e60dda8a12d012eb6432d39c2dd94412
91e9a231a7b7be30a50782e2539a6a80eff4309d
4c88955e8ffd6097ac6f15d5054fb680c476a54e26ff4b890c55a8e9666577e4

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/Dou5JDIP.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BEKtBocn.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="Dou5JDIP.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:38 GMT
etag: W/"e60dda8a12d012eb6432d39c2dd94412"
last-modified: Mon, 19 May 2025 11:11:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::g72wl-1747655078794-6de4aa111ec7
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/site-footer.DcygpbFI.css

76.76.21.241

200 OK

2.5 kB

URL GET
www.sitesgpt.com/_nuxt/site-footer.DcygpbFI.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (2509)
Size
2.5 kB (2510 bytes)
Hash
d476a2df0b113db93f014287f8ef89c3
46521d2e746b7b623618714a8f1c433281591891
5643aa9646056b657fbeae315b0070f39d50acfbe00f2c5422a35e6eb48685f3

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/site-footer.DcygpbFI.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1186782
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="site-footer.DcygpbFI.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"d476a2df0b113db93f014287f8ef89c3"
last-modified: Mon, 05 May 2025 18:04:54 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::6g4dh-1747655076867-75cdd10a125e
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/connector-wide.svg

96.6.16.40

200 OK

630 B

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/connector-wide.svg
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
SVG Scalable Vector Graphics image
Size
630 B (630 bytes)
Hash
f27b543b690458c2fb23a425b4dc70ac
d263ec1501f8a9d75997091deb961c78a30cc60c
f286b63ac05506442408d3fec4c2c9eed5c7d7129f3c1e32c8667f89cbb8e97a

HTTP Headers

GET /dq0gbgsdy/image/upload/site/connector-wide.svg HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 368
content-disposition: attachment; filename="connector-wide_somg27.svg"
content-encoding: br
etag: W/"f27b543b690458c2fb23a425b4dc70ac"
last-modified: Tue, 30 Jan 2024 19:32:40 GMT
date: Mon, 19 May 2025 11:44:36 GMT
cache-control: private, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept-Encoding
x-content-type-options: nosniff
server-timing: cld-akam;dur=12;start=2025-05-19T11:44:36.986Z;desc=hit,rtt;dur=1,content-info;desc="width=361,height=245,bytes=630,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/begin-with-your-journey-with-ai-design.png

96.6.16.40

200 OK

589 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/begin-with-your-journey-with-ai-design.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 704 x 664, 8-bit/color RGBA, non-interlaced
Size
589 kB (589045 bytes)
Hash
a64815b9b2c8c5f6f8f3e7a91cdf6d9f
581db5edaca67023e83b5d878208e54dbe1d327f
a1e9d809704d23fbbe093ae3ed51eaf06d297331b312764b97861d417620f54a

HTTP Headers

GET /dq0gbgsdy/image/upload/site/begin-with-your-journey-with-ai-design.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 589045
etag: "a64815b9b2c8c5f6f8f3e7a91cdf6d9f"
last-modified: Tue, 30 Jan 2024 19:34:00 GMT
date: Mon, 19 May 2025 11:44:37 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=25;start=2025-05-19T11:44:36.981Z;desc=hit,rtt;dur=2,content-info;desc="width=704,height=664,bytes=589045,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET grsm.io/pr/grc/pk_STTHhTGeNMs7dXzoxMdBT1uJ9X4sC8pb?get_pscd=true

104.18.10.212

200 OK

73 B

URL GET
grsm.io/pr/grc/pk_STTHhTGeNMs7dXzoxMdBT1uJ9X4sC8pb?get_pscd=true
IP
104.18.10.212:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subjectgrsm.io
Fingerprint0F:87:A3:AA:58:44:E4:9E:62:5E:80:FC:C3:A3:87:21:1F:93:07:9A
ValidityMon, 12 May 2025 01:59:46 GMT - Sun, 10 Aug 2025 02:59:31 GMT

File type
JSON text data
Size
73 B (73 bytes)
Hash
eb6aaa9800cf23af71a59c24bdfbbfe0
8bafde3ae03dcbfb6d92adf7f3b48f7ffcfe9ec4
a4bd775672376958d11a58237e07a5ce41ad6ac7d2a1dcf2475dd076fab62a1a

HTTP Headers

GET /pr/grc/pk_STTHhTGeNMs7dXzoxMdBT1uJ9X4sC8pb?get_pscd=true HTTP/1.1
Host: grsm.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 19 May 2025 11:44:38 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://www.sitesgpt.com
access-control-allow-credentials: true
p3p: CP="This is not a P3P policy! See our docs for more info."
vary: Accept-Encoding
server: cloudflare
cf-ray: 942357ecd9d156b9-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DDF8mOQE.js

76.76.21.241

200 OK

1.7 kB

URL GET
www.sitesgpt.com/_nuxt/DDF8mOQE.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (1714)
Size
1.7 kB (1715 bytes)
Hash
48c6fb09e0795aa3456a75b87ba184df
14be1491fe8083a02c3f4d55dac446e307fd2a68
d14b90b154dd0561ffd25ca0fc62c2344d9f651f4b2316eedc9a88fa6158a4b3

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DDF8mOQE.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1167845
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DDF8mOQE.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"48c6fb09e0795aa3456a75b87ba184df"
last-modified: Mon, 05 May 2025 23:20:32 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::ngqmq-1747655077933-a49340446713
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/LPlMyxak.js

76.76.21.241

200 OK

493 B

URL GET
www.sitesgpt.com/_nuxt/LPlMyxak.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (492)
Size
493 B (493 bytes)
Hash
21f8381c58fe21ccf07eb2519833c620
b88ebc7c140581641ffca9f8ee97a64df64b0051
826e0534837b4667fc4b1a4976ff1304c8a38e9fdc6250c2fb8711a66a7a40c9

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/LPlMyxak.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="LPlMyxak.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "21f8381c58fe21ccf07eb2519833c620"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::qjr5h-1747655077938-7e11c39dfdea
content-length: 493
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DoQ0dPPk.js

76.76.21.241

200 OK

2.1 kB

URL GET
www.sitesgpt.com/_nuxt/DoQ0dPPk.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (2080)
Size
2.1 kB (2081 bytes)
Hash
3f1178407f264caccf4a54e20f55e31c
acc1493cbb6ec58a38c26625f53df2011a81faba
6da0dc2fa5c66abf4dcb3d3d2afd682902d2f169602f3810420776bb594c54bb

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DoQ0dPPk.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1184758
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DoQ0dPPk.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"3f1178407f264caccf4a54e20f55e31c"
last-modified: Mon, 05 May 2025 18:38:39 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::2vs2p-1747655077940-1f4f064b5be1
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/CLa8qfpp.js

76.76.21.241

200 OK

1.7 kB

URL GET
www.sitesgpt.com/_nuxt/CLa8qfpp.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (1727)
Size
1.7 kB (1728 bytes)
Hash
3c976e8e6cf9368ebcbddb65143d6e79
467723161869cd1e5b8b0d5bcef33bc0175572b9
46d242e11d328db14a16e6a9d6e950a307bc368c8c806d7e7b0fc0dac86552a2

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/CLa8qfpp.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="CLa8qfpp.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"3c976e8e6cf9368ebcbddb65143d6e79"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::2vs2p-1747655077945-a2a92e958b17
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=AW-1035996077&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116

142.250.74.136

200 OK

342 kB

URL GET
www.googletagmanager.com/gtag/js?id=AW-1035996077&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint02:7D:56:C0:B9:20:0C:27:A4:AC:B9:8F:9D:45:1D:85:2A:30:50:AD
ValidityMon, 21 Apr 2025 08:40:41 GMT - Mon, 14 Jul 2025 08:40:40 GMT

File type
JavaScript source, ASCII text, with very long lines (5432)
Size
342 kB (342021 bytes)
Hash
a46d3e7592955fbcbb3dd2c2d42a0e07
10210f77e75218cb7b7f27414ca825a4460e7c62
f5c044a71c621b3eeeb9d02fd89ab5979527f93afed2cff7204d8205d897f4c2

HTTP Headers

GET /gtag/js?id=AW-1035996077&cx=c&gtm=45He55g2h2v9122625792za200&tag_exp=101509157~103116026~103130498~103130500~103136993~103136995~103200004~103207802~103233427~103252644~103252646~103263073~103301114~103301116 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 May 2025 11:44:38 GMT
expires: Mon, 19 May 2025 11:44:38 GMT
cache-control: private, max-age=900
last-modified: Mon, 19 May 2025 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1075:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1075:0
report-to: {"group":"ascgcycc:1075:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1075:0"}],}
server: Google Tag Manager
content-length: 117795
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.sitesgpt.com/_nuxt/content.s8zxTeBH.css

76.76.21.241

200 OK

797 B

URL GET
www.sitesgpt.com/_nuxt/content.s8zxTeBH.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (796)
Size
797 B (797 bytes)
Hash
f5c6c455357baae95ebea6634fa7fdfe
029f07a807fc614ff52cc760870ec1746c7351b1
9fc380652b77cb0745c0a7c53790f91a4666c90b6c9c467f8b54f0dbdc75b6b7

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/content.s8zxTeBH.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="content.s8zxTeBH.css"
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "f5c6c455357baae95ebea6634fa7fdfe"
last-modified: Mon, 19 May 2025 11:11:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::v8km5-1747655079290-c086954ffb85
content-length: 797
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/DavdG733.js

76.76.21.241

200 OK

371 B

URL GET
www.sitesgpt.com/_nuxt/DavdG733.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (370)
Size
371 B (371 bytes)
Hash
9a48f9a0cd6b39be6b93128e9fff50b3
a899a5f01793cd81a668ac7f4b56ff1f5fde2de3
8a66f52ffa82ade88caace04d46c1997baf75d050580465ff4c83afa52d5565e

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/DavdG733.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/68GCDJDY.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="DavdG733.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "9a48f9a0cd6b39be6b93128e9fff50b3"
last-modified: Mon, 19 May 2025 11:11:07 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::tvcll-1747655079697-5ae8089b207b
content-length: 371
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css2?family=Poppins:wght@300;400;600&family=Source+Sans+3:wght@300;400;500;600&display=swap

142.250.74.10

200 OK

14 kB

URL GET
fonts.googleapis.com/css2?family=Poppins:wght@300;400;600&family=Source+Sans+3:wght@300;400;500;600&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7A:29:E6:A8:BE:59:2C:AE:82:2D:CA:8E:15:89:41:BE:EC:D2:0D:EA
ValidityMon, 21 Apr 2025 08:41:49 GMT - Mon, 14 Jul 2025 08:41:48 GMT

File type
ASCII text
Size
14 kB (13899 bytes)
Hash
3b3f9e667f9e3f279a1f0ab54f2f9b71
1dc55522bad81cedf3cdde98a058a6b23fd329e0
3db59b35e5f23ba652fdd24432ed7fad43413b131f8b33ae523e534dcd476e37

HTTP Headers

GET /css2?family=Poppins:wght@300;400;600&family=Source+Sans+3:wght@300;400;500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 19 May 2025 11:44:37 GMT
date: Mon, 19 May 2025 11:44:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/entry.Ca5DVxA-.css

76.76.21.241

200 OK

169 kB

URL GET
www.sitesgpt.com/_nuxt/entry.Ca5DVxA-.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
169 kB (168568 bytes)
Hash
2b159e8cd0bde409e256a6d333acbcd7
c13c9ae799cd3e7a72eea8aabcaec5f2ca2d5b68
362b7006ae4d0324ce07d5f96e9a59b3913854e26dd537665f2fde0ba28c850d

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/entry.Ca5DVxA-.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1144582
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="entry.Ca5DVxA-.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"2b159e8cd0bde409e256a6d333acbcd7"
last-modified: Tue, 06 May 2025 05:48:13 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::vv9c4-1747655076857-115827d2b3fd
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/get-domain-popup.klLoWUUI.css

76.76.21.241

200 OK

1.5 kB

URL GET
www.sitesgpt.com/_nuxt/get-domain-popup.klLoWUUI.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1545)
Size
1.5 kB (1546 bytes)
Hash
f6253f87b015dd3626f59b884f0ecea3
c7efda0936f2f1e965750da559a7e0f4ef4bda9a
5d33de994471b97b5e82db37e59ff99f4cc7685bf72cd162fbb5b26d0584b013

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/get-domain-popup.klLoWUUI.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1186782
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="get-domain-popup.klLoWUUI.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"f6253f87b015dd3626f59b884f0ecea3"
last-modified: Mon, 05 May 2025 18:04:54 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::rz97f-1747655076861-819a26877657
X-Firefox-Spdy: h2

GET bat.bing.com/p/action/343067317.js

150.171.28.10

200 OK

3.2 kB

URL GET
bat.bing.com/p/action/343067317.js
IP
150.171.28.10:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint8F:FE:D3:58:48:93:DF:0E:26:DA:5E:55:30:00:F2:14:BF:4B:AB:8E
ValidityFri, 14 Mar 2025 18:35:35 GMT - Wed, 10 Sep 2025 18:35:35 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
3.2 kB (3154 bytes)
Hash
a398e3c6baee8af7166766716b7d995a
72a0078445404182de5860a02a2b1a3edcfa7d58
e9e475e5a9a7516f2f0dba6ce1fd054ee4a8791d4c8b6897c0d8a0b90e249e97

HTTP Headers

GET /p/action/343067317.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: private,max-age=1800
content-type: application/javascript; charset=utf-8
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AA90A421005747F080B9A922EAD82A03 Ref B: OSL30EDGE0505 Ref C: 2025-05-19T11:44:39Z
date: Mon, 19 May 2025 11:44:38 GMT
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/content-well.DYqmTz1u.css

76.76.21.241

200 OK

480 B

URL GET
www.sitesgpt.com/_nuxt/content-well.DYqmTz1u.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (479)
Size
480 B (480 bytes)
Hash
23bb4129a8ce669d81b12369166a3253
c9c601036ad1a8de977fc9e1010e0185412a5a49
e5408a017b31321085c07e1bf7f9368edeae83a362263741c89cde6e7411e6eb

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/content-well.DYqmTz1u.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="content-well.DYqmTz1u.css"
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "23bb4129a8ce669d81b12369166a3253"
last-modified: Mon, 19 May 2025 11:11:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::zkjzj-1747655079288-c580ab4500c7
content-length: 480
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/message.D4_3-x9f.css

76.76.21.241

200 OK

1.3 kB

URL GET
www.sitesgpt.com/_nuxt/message.D4_3-x9f.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1261)
Size
1.3 kB (1262 bytes)
Hash
eda0693a8d3a3fef655c568f3757118b
962abe0563d752f05edcc76b98be7dc8c83db434
2b183a30f7707e79a67bf20abe4afbe34254fccb32460330cecc025e2a5fa6e3

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/message.D4_3-x9f.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2014
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="message.D4_3-x9f.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"eda0693a8d3a3fef655c568f3757118b"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::n62hv-1747655079592-87faddb2be2c
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/review-carousel.D9eQxoXs.css

76.76.21.241

200 OK

1.6 kB

URL GET
www.sitesgpt.com/_nuxt/review-carousel.D9eQxoXs.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1591)
Size
1.6 kB (1592 bytes)
Hash
7c97f32b2ba1c0fc5c783b2832892891
f1733c018184648ccb12fa948fe619cac81e8227
9a8dbf75e38228f23991baf0257a0d859ae5bd454fcd8668c02bee28ad2970c5

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/review-carousel.D9eQxoXs.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1186782
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="review-carousel.D9eQxoXs.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"7c97f32b2ba1c0fc5c783b2832892891"
last-modified: Mon, 05 May 2025 18:04:54 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::s5bvr-1747655076867-36ad84f61f2d
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/advancements-in-ai.png

96.6.16.40

200 OK

188 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/advancements-in-ai.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 711 x 503, 8-bit/color RGBA, non-interlaced
Size
188 kB (187528 bytes)
Hash
a68c5d51fc3f3771758a0f7a9c8a09e8
75d2a4694859a3c0cb7b3bb4f4f18302aad537fe
ffe8f4b46ca9141e638bc52c4304a58dd42b4066be3c437a6d33bc02201825dc

HTTP Headers

GET /dq0gbgsdy/image/upload/site/advancements-in-ai.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 187528
etag: "a68c5d51fc3f3771758a0f7a9c8a09e8"
last-modified: Tue, 30 Jan 2024 19:35:00 GMT
date: Mon, 19 May 2025 11:44:37 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=25;start=2025-05-19T11:44:36.984Z;desc=hit,rtt;dur=1,content-info;desc="width=711,height=503,bytes=187528,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/authentication.DelmvyiP.css

76.76.21.241

200 OK

206 B

URL GET
www.sitesgpt.com/_nuxt/authentication.DelmvyiP.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text
Size
206 B (206 bytes)
Hash
788f65e8d222a47411870d86b0f7c150
454c7fb5014150653cab6fd677cb448cc622393d
8f02a4f2a31144ed36d9c5ba5e552699b061f5d24952e9108fbe0c9d2e5e2587

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/authentication.DelmvyiP.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2062711
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="authentication.DelmvyiP.css"
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "788f65e8d222a47411870d86b0f7c150"
last-modified: Fri, 25 Apr 2025 14:46:08 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::26zqk-1747655079290-6a74e57a9aa6
content-length: 206
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/BjmFErMh.js

76.76.21.241

200 OK

1.3 kB

URL GET
www.sitesgpt.com/_nuxt/BjmFErMh.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (1312)
Size
1.3 kB (1313 bytes)
Hash
ed882c5660a2773e76871f462720ac86
3bf9ea6212062dcd45bb613054d313de39df82ef
d7ee28f6d38e4362951d84017cfd47c4e4ec7debf52c44c686b1e69eb79a428f

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BjmFErMh.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/BhinJWWt.js
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="BjmFErMh.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: W/"ed882c5660a2773e76871f462720ac86"
last-modified: Mon, 19 May 2025 11:11:06 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::647ms-1747655079465-6d4524f9fa32
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/j_9hAtmz.js

76.76.21.241

200 OK

2.8 kB

URL GET
www.sitesgpt.com/_nuxt/j_9hAtmz.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (2800)
Size
2.8 kB (2801 bytes)
Hash
54a1a0b6091f755fa47fdd2bfa5d5245
6a350f179fdc244b77358f8f29000b529dfedbf4
186a0faaa98b2a150d1502cd7b973fc2cfbe7403d80f013846feed552698c9e7

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/j_9hAtmz.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1167845
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="j_9hAtmz.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: W/"54a1a0b6091f755fa47fdd2bfa5d5245"
last-modified: Mon, 05 May 2025 23:20:32 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::d4ppr-1747655077934-b7b12b74306c
X-Firefox-Spdy: h2

GET partnerlinks.io/pr/grc/pk_STTHhTGeNMs7dXzoxMdBT1uJ9X4sC8pb

104.18.31.133

200 OK

0 B

URL GET
partnerlinks.io/pr/grc/pk_STTHhTGeNMs7dXzoxMdBT1uJ9X4sC8pb
IP
104.18.31.133:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoogle Trust Services
Subjectpartnerlinks.io
FingerprintBF:A3:77:9C:10:B2:8C:B0:4C:A1:A3:95:EF:D9:E8:E7:38:53:7C:DA
ValidityWed, 30 Apr 2025 06:37:16 GMT - Tue, 29 Jul 2025 07:37:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pr/grc/pk_STTHhTGeNMs7dXzoxMdBT1uJ9X4sC8pb HTTP/1.1
Host: partnerlinks.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sitesgpt.com
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 19 May 2025 11:44:38 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.sitesgpt.com
p3p: CP="This is not a P3P policy! See our docs for more info."
x-envoy-upstream-service-time: 1
last-modified: Sun, 18 May 2025 13:40:22 GMT
cf-cache-status: HIT
age: 41027
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 942357f02ca1b4ff-OSL
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/overlay.-t7vUJRR.css

76.76.21.241

200 OK

1.9 kB

URL GET
www.sitesgpt.com/_nuxt/overlay.-t7vUJRR.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1937)
Size
1.9 kB (1938 bytes)
Hash
bd32c3baa7c096ae34da6a630324c8b6
7371b22bd8d71c2f0d6f4a5d5ec56efdf483af5f
b30d34143a63881ea13fd3632d813293463d70c9fd730b0c308fdc4ea634cc27

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/overlay.-t7vUJRR.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1184757
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="overlay.-t7vUJRR.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"bd32c3baa7c096ae34da6a630324c8b6"
last-modified: Mon, 05 May 2025 18:38:39 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::s5bvr-1747655076860-eed0b39bdfb5
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/BEKtBocn.js

76.76.21.241

200 OK

1.4 MB

URL GET
www.sitesgpt.com/_nuxt/BEKtBocn.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
JavaScript source, ASCII text, with very long lines (33117)
Size
1.4 MB (1416824 bytes)
Hash
abea6f9db223a9834fa511112b8a5ead
0e7eda8f2990c8637902e45fa5b2487ab5b2b4af
7bb9c695b6dc9b9ece264c185248f172a22a5f313827567fdfd50365a7246fc0

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/BEKtBocn.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 2011
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="BEKtBocn.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"abea6f9db223a9834fa511112b8a5ead"
last-modified: Mon, 19 May 2025 11:11:05 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::9p4zp-1747655076868-c0128322c2a5
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/VTFInkyB.js

76.76.21.241

200 OK

476 B

URL GET
www.sitesgpt.com/_nuxt/VTFInkyB.js
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
Java source, ASCII text, with very long lines (475)
Size
476 B (476 bytes)
Hash
f1f2251ebfc9819f1b925f3612c91a5d
5f993483f0d223bd68bc886ceb8b3f8d422077e5
b5571d9b176113813e1df1f1f55117026f37254f135b324b2b683fa2c4fdf1e8

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/VTFInkyB.js HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/_nuxt/Df4inRZn.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1184758
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="VTFInkyB.js"
content-type: application/javascript; charset=utf-8
date: Mon, 19 May 2025 11:44:37 GMT
etag: "f1f2251ebfc9819f1b925f3612c91a5d"
last-modified: Mon, 05 May 2025 18:38:39 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::ffpxv-1747655077948-0440065f9d89
content-length: 476
X-Firefox-Spdy: h2

GET qvdt3feo.com/events.js

3.210.30.123

200 OK

22 kB

URL GET
qvdt3feo.com/events.js
IP
3.210.30.123:443
ASN
#14618 AMAZON-AES

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerAmazon
Subjectqvdt3feo.com
Fingerprint04:14:AD:6A:02:CD:CC:94:35:D6:D1:FE:A4:F3:A9:39:1A:1E:70:8B
ValiditySat, 15 Feb 2025 00:00:00 GMT - Tue, 17 Mar 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (21436)
Size
22 kB (22254 bytes)
Hash
6087f4ba7d2dd79fd6cf9e0c5327bb4d
6da33d8ee027acdf6ee4a4a69b0ac8d2425fdc13
b2dbf12d8755e15ece852c95ffeaa9a6bbdc80ac5e6d91e4bf8a5652b3653160

HTTP Headers

GET /events.js HTTP/1.1
Host: qvdt3feo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sitesgpt.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 19 May 2025 11:44:39 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: max-age=5
content-encoding: gzip
set-cookie: sa-user-id=s%3A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%2BM%2BlpsbrHzyB2Rf0exT1zgnbpRn4%2B3xh6qnlECdE; Max-Age=31536000; Secure; SameSite=None
sa-user-id=s%3A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%2BM%2BlpsbrHzyB2Rf0exT1zgnbpRn4%2B3xh6qnlECdE; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
sa-user-id=s%3A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%2BM%2BlpsbrHzyB2Rf0exT1zgnbpRn4%2B3xh6qnlECdE; Domain=qvdt3feo.com; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; Domain=qvdt3feo.com; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v3=s%3AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v3=s%3AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v3=s%3AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; Domain=qvdt3feo.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/pagination.BAmrnf5Q.css

76.76.21.241

200 OK

189 B

URL GET
www.sitesgpt.com/_nuxt/pagination.BAmrnf5Q.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text
Size
189 B (189 bytes)
Hash
41bb4847be43bd1e8b6594bc77fbc83f
c2dc02bfb7a8fa73a7f084ca3fb0b58233fc3409
207f2a016b2760437cd319a68056cbff2909612d948dcc60902aa4c0f77b6f20

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/pagination.BAmrnf5Q.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2012
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="pagination.BAmrnf5Q.css"
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "41bb4847be43bd1e8b6594bc77fbc83f"
last-modified: Mon, 19 May 2025 11:11:07 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::msq4r-1747655079590-3807fb9c71a7
content-length: 189
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/login.R-SOXsP5.css

76.76.21.241

200 OK

579 B

URL GET
www.sitesgpt.com/_nuxt/login.R-SOXsP5.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (578)
Size
579 B (579 bytes)
Hash
cedd84e979cacc4b2214355e1e38ac50
d0164ee0d83df3c644478af96a5c711e1cad03dc
0758cf96043a4dfe9b39c3ccdc3766e2ff7a1c160eff772cba73eb5c2ea9f3f5

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/login.R-SOXsP5.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Cookie: _ga_1MG910DR2C=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h0; _ga=GA1.1.1641481569.1747655078; _gcl_au=1.1.1381138812.1747655078; viewport=large; _scid=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _scid_r=KtfUjR6U3ot3ea9YIysmuCjskAsDLlLl; _rdt_uuid=1747655078492.7114b252-5424-43a5-87a0-41526253133f; _ga_V3Z900D5SE=GS2.1.s1747655078$o1$g0$t1747655078$j0$l0$h443469095; sa-user-id=s%253A0-4affe0f7-d2d1-5ef8-5ffa-3c7b3ac34e6a.Sxx%252BM%252BlpsbrHzyB2Rf0exT1zgnbpRn4%252B3xh6qnlECdE; sa-user-id-v2=s%253ASv_g99LRXvhf-jx7OsNOaltaKpo.vKGdarGDDylK3CgBb4ic4Nw3I0tJwKdnD8LWhkzn3r8; sa-user-id-v3=s%253AAQAKINqa3VktfrnMp3BctIcNf9TpcYzNUUhsQmGnJ6jVZpYNEAEYAyCns6zBBjABOgQiK7kqQgRG-9pB.ugNtrYBjFZS4hgAboHRLgmN1HHZdLJkYLWURryBjeFg; _pin_unauth=dWlkPVlqaG1OVE00TlRNdFl6UTBNaTAwTWpBMExUbG1OMll0Wm1NeU0yUXpOemt3T1RVeQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1167845
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="login.R-SOXsP5.css"
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:39 GMT
etag: "cedd84e979cacc4b2214355e1e38ac50"
last-modified: Mon, 05 May 2025 23:20:33 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::cjf6d-1747655079594-08f3a255c898
content-length: 579
X-Firefox-Spdy: h2

GET www.sitesgpt.com/_nuxt/accordion-with-image.DPUw8nGk.css

76.76.21.241

200 OK

1.5 kB

URL GET
www.sitesgpt.com/_nuxt/accordion-with-image.DPUw8nGk.css
IP
76.76.21.241:443
ASN
#16509 AMAZON-02

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerLet's Encrypt
Subjectwww.sitesgpt.com
FingerprintA0:20:C1:CC:94:0E:EB:E5:FE:CC:35:96:79:78:79:6D:95:8E:E9:EA
ValiditySun, 30 Mar 2025 10:09:07 GMT - Sat, 28 Jun 2025 10:09:06 GMT

File type
ASCII text, with very long lines (1497)
Size
1.5 kB (1498 bytes)
Hash
9c0612c5f07f99022c84985a055f21e4
a16e77499a2b44c5e5281bbaaa24d421d89f7c6f
0eca70df3ba2b5463149d918276083292b46a3755ebfd9f32a7a973c8a765406

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/accordion-with-image.DPUw8nGk.css HTTP/1.1
Host: www.sitesgpt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1167844
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="accordion-with-image.DPUw8nGk.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Mon, 19 May 2025 11:44:36 GMT
etag: W/"9c0612c5f07f99022c84985a055f21e4"
last-modified: Mon, 05 May 2025 23:20:32 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1::zjs9q-1747655076862-417381b16afe
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/mobile-focused.png

96.6.16.40

200 OK

12 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/mobile-focused.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 152 x 138, 8-bit/color RGBA, non-interlaced
Size
12 kB (12308 bytes)
Hash
e26c21ba0356bb59a96ef6ea922c264d
78bbb6268ac4ba7f19cd70e7c13290c0c4ceb21d
9f218612e2c1ba7a8fd68a34e89045873cae278e73070b7c29345f265e05fb85

HTTP Headers

GET /dq0gbgsdy/image/upload/site/mobile-focused.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 12308
etag: "e26c21ba0356bb59a96ef6ea922c264d"
last-modified: Tue, 30 Jan 2024 19:30:37 GMT
date: Mon, 19 May 2025 11:44:37 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=64;start=2025-05-19T11:44:37.003Z;desc=hit,rtt;dur=2,content-info;desc="width=152,height=138,bytes=12308,o=1,ef=(17)"
X-Firefox-Spdy: h2

GET res.cloudinary.com/dq0gbgsdy/image/upload/site/begin-your-journey-bg.png

96.6.16.40

200 OK

485 kB

URL GET
res.cloudinary.com/dq0gbgsdy/image/upload/site/begin-your-journey-bg.png
IP
96.6.16.40:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.sitesgpt.com/?em&serID=email_auth&sessionID=yIFqQyJFQHSG
Certificate
IssuerGoDaddy.com, Inc.
Subject*.cloudinary.com
Fingerprint3C:38:41:3E:81:35:9E:7E:6D:34:B2:E4:FB:E2:0B:55:E7:BC:5D:73
ValidityWed, 18 Dec 2024 12:38:55 GMT - Wed, 14 Jan 2026 15:36:44 GMT

File type
PNG image data, 1556 x 762, 8-bit/color RGB, non-interlaced
Size
485 kB (485449 bytes)
Hash
118c4b2010d16ad6f71926bc1ef332fd
9a9e94046beac8faf2055efa48a39137b6854638
792b0a971dfcc52bd1b7760b744a8e9a7148cfb6d824ab13c6989bb63e2740fd

HTTP Headers

GET /dq0gbgsdy/image/upload/site/begin-your-journey-bg.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sitesgpt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 485449
etag: "118c4b2010d16ad6f71926bc1ef332fd"
last-modified: Tue, 30 Jan 2024 19:34:20 GMT
date: Mon, 19 May 2025 11:44:36 GMT
cache-control: public, no-transform, max-age=2592000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Robots-Tag,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
x-content-type-options: nosniff
server-timing: cld-akam;dur=10;start=2025-05-19T11:44:36.965Z;desc=hit,rtt;dur=6,content-info;desc="width=1556,height=762,bytes=485449,o=1,ef=(17)"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (85)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML