{"report_id":"c57c801f-6b3d-48f5-bdf3-1c228efc74aa","version":6,"status":"done","tags":[],"date":"2026-02-27T05:23:59Z","url":{"schema":"http","addr":"aihypeyp.one","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":0,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"final":{"url":{"schema":"https","addr":"aihypeyp.one/#/","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"title":"aihypeyp.one/#/","dom":{"size":8670,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (2757)","md5":"9e475f2c5cc82ac7d0eb4c2ca0d995cf","sha1":"6bd64dcadb21c868c39601a054d1b375998e852f","sha256":"6b9ee2ffe0e4c1cb2e924edfb898267d080deb2dbd3508f69aa04c7485c7e45d","sha512":"acb55f266318d80cfff5a2102f0f42401891e7d2d24d4ed1ae633efe45d51f1da8124e50406b2a2276d8be3bb202e3a2f34defeb77127c3d9bb64911af5398df","ssdeep":"192:gnSbI2OqgSjsvgyrErmZ5LfRWcLfRwfLfRwDLfRir4LfR+MMrrxRco/7:6SbI27JrmZ5LfRWcLfRwfLfRwDLfRG4a","tlshash":"1002f0303004646a52373b42f4e2cb0d6943b316cb56587cb7fb1ba597c8daa89b1c7a","dom_hash":"domhashbeb3a83ae3bb79478b6f4f2034e480ed","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"aihypeyp.one","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":0,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-03T05:23:59Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"aihypeyp.one","ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"2026-02-03","domain_rank":0,"first_seen":"2026-02-27T03:51:43.332308Z","last_seen":"2026-02-27T03:51:43.332308Z","alert_count":46,"request_count":46,"received_data":2679423,"sent_data":20088,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.dcloud.net.cn","ip":{"addr":"124.220.203.60","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"domain_registered":"2013-07-17","domain_rank":296858,"first_seen":"2018-09-15T09:18:08Z","last_seen":"2026-02-25T18:46:08.416376Z","alert_count":0,"request_count":1,"received_data":579,"sent_data":443,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"api.hypeaabbb.shop","ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-11-14T07:49:15.291685Z","last_seen":"2026-02-23T01:41:52.6193Z","alert_count":0,"request_count":10,"received_data":6957,"sent_data":5614,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ws.hypeaabbb.shop","ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-11-03T12:41:25.293359Z","last_seen":"2026-02-23T01:41:52.62155Z","alert_count":0,"request_count":2,"received_data":416,"sent_data":1198,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"aihypeyp.one/#/","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"78f892a6cfef93f07558761073154f55","sha1":"709b139cc0edda8dd81d62e01b7d1b25e98cb681","sha256":"1c41adab46d50baf11f93365929c9bb19e5509251dc3edf77121189ee99d6617","sha512":"36ad297cf367d877ed0395bfd59422fa6fbc802d26cb41f465bcae70950fe7ae3b428d3048f8bcffbe99a6d8da08f387c8b252f91a8cc8315c3866a1c75a9df8","ssdeep":"","tlshash":"5bc08cc4a0c22d105606641010af29e49024402670889b02cca4e8492e230b08233e98","size":136,"data":"","first_seen":"2024-08-20T08:22:25.451659Z","last_seen":"2026-06-05T02:19:33.652504Z","times_seen":121,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/#/","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"536c3c6b90ee834a439d489c79336cc3","sha1":"525e609e9477124df7f5cda9187c6b27ee26acee","sha256":"bf39d3c99af9e308dcc07f4b745feb8ffce05370775f35be27da1f1dd2a818de","sha512":"744a7d7420ef72b7068a5fd2a321abaa1e1d4041d3cc399668533d267a7e5f3d496ef0d343385a60dde3fd8770c9bb8e158bfe61c4859c5ead5fcfac70ccde33","ssdeep":"","tlshash":"2bc08cc4b0d62d002602682050af34e49024442670481b428c94d8482e630b08233e98","size":136,"data":"","first_seen":"2024-06-29T09:12:59Z","last_seen":"2026-06-05T02:19:33.664866Z","times_seen":150,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/index-No8yArsk.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"f620d0c895906cb24c112f6ca2d6b97d","sha1":"78849a8cc2fdfdf96f7173f0c1b64b78172245de","sha256":"38401776eb2b6d85655622ec59f724c4819cbb5e30c76d7a11e1284c1789cd73","sha512":"d4f273a2d8bbc3d761d16338c7aa80927ad190f96386bdcd20bb36fb17169c48a8836b1e044670c68460b7f201b3b3549715de25ad41b69dd2d912787237425a","ssdeep":"49152:SkbO/N7tkdXTqO6qG5+2OlqCGOANx7jTWYCZXhI4mlop4OD4O24OZ4OxU:17hf","tlshash":"8995b6282a1bf354e959c0d7f9373c84959dd18ab00714d54fb98bb30be2782eaadd13","size":1987455,"data":"","first_seen":"2025-11-03T12:41:42.489653Z","last_seen":"2026-03-14T18:36:03.230744Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"3df38511ddc1798fced45fd3ddc0ae4e","sha1":"5172a9514fc72f60710569ad9195f5a1ce38f265","sha256":"d6800be8d60d81a72514f449f3ea2039ae413185c00a2fa267c02e34457a0f63","sha512":"087916c44269173d5526aa64fca5d62f7bde043600251e2997fc2edf70374736183d8993e80133032c9532032bcb1e279b42f10dc4d1432160c8aacb24f5c4c5","ssdeep":"","tlshash":"91e068c260b7294c1220c156304ac4031fb608739e868d613c8c77a58ff9b5bc56d899","size":383,"data":"","first_seen":"2025-03-02T13:36:53.293678Z","last_seen":"2026-06-05T07:28:30.70317Z","times_seen":948,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"3d5272693eb411e5b8b13a243f76c720","sha1":"6a586ab8e0a4bf12bbc60eea6ca9f2418625a22c","sha256":"9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8","sha512":"03fc5614f48fc9a2e3c4a30626fdbacde74c1fda09ffa9d1cde0393d31cd5fe1588e270c241f4cedb473c6e5cc224ff16c141468a29519ea6159accf3e3a18f1","ssdeep":"","tlshash":"a4c08c8350e2080c8210861b848880050b8808b04f9308a22cd85b7ecc9ae88c8f804c","size":148,"data":"","first_seen":"2023-03-07T01:10:06Z","last_seen":"2026-06-06T04:49:51.25457Z","times_seen":15866,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"aihypeyp.one/assets/use-route.BocVJu-Q.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.267Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/use-route.BocVJu-Q.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 290\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-122\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":290,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"66d268855666d5c4d147bdc7978c9750","sha1":"e59cba0f1347fa123709d05da04979a38e0200a6","sha256":"c6b5b0251a24cf03afc679de45963f40ef85f6dec01621e8aeaf4bbf7b9fac5c","sha512":"ed7c5873b1b13d65a623a654481ef930e3c7b03d2bafa185ad5581d831e212e6faa7057913d86fb05f86569338a56de31ba42ad279cb475b0a3d47e46bdda479","ssdeep":"","tlshash":"5cd0e7db3c456ef5005307ad4407057f8173164c31a3b0d0c104f46b11a609c960ff08","first_seen":"2025-11-03T12:41:42.38097Z","last_seen":"2026-03-14T18:36:03.209759Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/index-No8yArsk.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:38.390Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/index-No8yArsk.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:38 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-1e537f\"\r\nexpires: Fri, 27 Feb 2026 17:23:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1987455,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (22530)","md5":"fca714460bcfb17c199ca21054b15a9e","sha1":"d9f94e2b5e5bd80296bf3013f559ea537cf11aa3","sha256":"e3a1d6bc38a1bd777a5c8cea26161c5a8e8af193fc254f62f371554c0607286e","sha512":"f17f7a6f4de9097b60cf7ca481996397930e701341236aacf804125625646af31759169e4a6278ecbbb4910072210d84631b1105d4e2fee7ecf9b081df3efe0e","ssdeep":"24576:SkbO/N7tkdbTqYLs46qG5+2OKqqCNSOANx7jTWYC7NXhIGDxl/D4OKS4OK34OKYl:SkbO/N7tkdbTqO6qG5+2OlqCNSOANx7t","tlshash":"75455c4db68ba73397f702f0a05b4644307d5943f116805ceaececa835eda48a1d7f6a","first_seen":"2026-02-27T05:24:02.396031Z","last_seen":"2026-02-27T05:24:02.396031Z","times_seen":1,"resource_available":false,"data":null}},"time_used":732,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":732,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/favicon.ico","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:40.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:40 GMT\r\ncontent-type: text/html\r\ncontent-length: 138\r\netag: \"668df724-8a\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7389d931c86b3d7bb6b8af46d8c4172b","sha1":"8d2a4760aa0b47984d11cd1a66448719177fb791","sha256":"301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f","sha512":"dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889","ssdeep":"","tlshash":"d9c09b5d755366449913155167c33641d196837f689a84510941c593f0cf69ac4c73a9","first_seen":"2023-03-13T12:56:15Z","last_seen":"2026-06-06T05:17:11.560464Z","times_seen":279006,"resource_available":true,"data":null}},"time_used":3614,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":3120,"receive":494,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.dcloud.net.cn/img/shadow-grey.png","fqdn":"cdn.dcloud.net.cn","domain":"dcloud.net.cn","tld":"net.cn"},"ip":{"addr":"124.220.203.60","port":443,"asn":45090,"as":"Shenzhen Tencent Computer Systems Company Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:46.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.dcloud.net.cn","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 26 Aug 2025 11:47:17 GMT","end":"Fri, 25 Sep 2026 11:47:16 GMT"},"fingerprint":{"sha1":"47:A7:6C:09:6B:1D:CA:2D:7D:39:2E:C1:7F:15:DE:5D:F2:C4:0F:77","sha256":"EA:73:37:83:D0:38:44:D9:3C:0B:26:F0:DD:D1:22:2F:36:F7:F2:86:A1:B0:58:52:DE:4E:0A:21:D6:89:E7:3E"}}},"request":{"raw":"GET /img/shadow-grey.png HTTP/1.1\r\nHost: cdn.dcloud.net.cn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:47 GMT\r\ncontent-type: image/png\r\ncontent-length: 136\r\nlast-modified: Thu, 06 Jun 2019 06:42:07 GMT\r\netag: \"5cf8b5bf-88\"\r\nexpires: Fri, 27 Feb 2026 15:23:47 GMT\r\ncache-control: max-age=36000\r\nset-cookie: __uni__uid=rBEQiWmhKmOn73+JA1gNAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":136,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1 x 6, 4-bit colormap, non-interlaced","md5":"5a962adf74d92ae702467b3f47976547","sha1":"36f74049375584e3fa69b5ef87e9572336ff9e7a","sha256":"ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f","sha512":"4ace23fe7ec6c7271710030fd423aace13eafac68ac3e76366ce4ce9bdc702caf71c9bdc2fb6a32c8e9791546098617cc0259decd8bb8489afdbce43e1b53a73","ssdeep":"","tlshash":"47c09bf3a615dc754a0d153b42e98271f429511e07046d0e5a13c216741e3448d56793","first_seen":"2023-04-15T10:50:30Z","last_seen":"2026-06-06T04:49:51.251849Z","times_seen":16174,"resource_available":false,"data":null}},"time_used":2216,"timings":{"blocked":985,"dns":349,"connect":245,"send":0,"wait":244,"receive":0,"ssl":390},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/uni-popup.DobYqiPg.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.250Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/uni-popup.DobYqiPg.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-286e\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10350,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10329)","md5":"e72c42c3aa9647e85c1365cdb338d967","sha1":"671e017647630d4b1918629b808515cad6559446","sha256":"3812f719fb2fdfbcc7133ffa02fcfe9e0301ce2a728c84864ca1cc020f65cc46","sha512":"48967acb7362c4b38127d08afe7d837bf13123083c6f490114d6f7fc18cffed313cbfb1f27d4e6a0405afa12155fccc237afbc423995afbea10168d242829099","ssdeep":"192:MjVEG8OepS7bjbNnM4eYeHoxPr9uuCQpqtqELM8urYYxSv/+GbGkYk0YGdJZZ2W:QVErOeObjbNbPr9xCQpILM8urYYxSv/i","tlshash":"be22a986f499e81506d782b7d09d4700557ca5c475760b6c7bbdadfb028a44c339bb3c","first_seen":"2025-11-03T12:41:42.390994Z","last_seen":"2026-03-14T18:36:03.226949Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4029,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4029,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-bottom-popup.Do86PuJn.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.258Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-bottom-popup.Do86PuJn.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-5b9\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1465,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1464)","md5":"9c47a3498f17854bcb9587a78b63e229","sha1":"b54a78404bf6530366f07b97865e73c57bfbe8cf","sha256":"180def387d1bc0be386e9e3e9c34cdc12941080d8c7ac0e7529bd8626eaf6c4b","sha512":"f2a90382fdbd58a9fe03b0d147cc2eb76f884c1ba6cdb8cfb24209d77f31bbaf68c4e92f9144e390c63be10fef30d33ac689f4d8ad2b3023430d704fef4be866","ssdeep":"","tlshash":"db317419b00c25733aa6d4b560281d442c287b9ce7f43fdafed932749b49ed8a15eb20","first_seen":"2025-11-03T12:41:42.37716Z","last_seen":"2026-03-14T18:36:03.206428Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4026,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4026,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/index.Bfh4eeqv.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.268Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/index.Bfh4eeqv.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 513\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-201\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":513,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (512)","md5":"1027a7cf221ca15414595f8f63fb27bf","sha1":"b14c3a37072874be58c341943ca041b761a0b86c","sha256":"6f4a05813c8e83915d9406016194da04019fdd9c8804069a447afe83e3a09205","sha512":"50f4f780f44d945b96ffc8c651780968a0ab69bcb239fad77821f8ca1ec998dd7ac3a7b45730843bccaab55efb44a226294c6ed822db9883edd62012359900a9","ssdeep":"","tlshash":"e7f09eb7bd9297347467b904ad4d0c0b5904935cb691d4d1e5cf49c0a758068fe7d628","first_seen":"2025-11-03T12:41:42.420322Z","last_seen":"2026-03-14T18:36:03.210317Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/index.Gl_Dckpu.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/index.Gl_Dckpu.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-765\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1893,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1892)","md5":"bb9c55ac5c8fcee932af4333f0d8ddce","sha1":"4968d45977d74a86676f42c8254e44607bfea8f1","sha256":"4fb3470802135f85c69ce3f6f64cccf3fed4614dda8de512f5f7b68dcadc0938","sha512":"41a344ac643a4220904e1d5cdd40419f51feb5c102f0098bd67ff4a657c670fc07d55130d68009817357deefac523a307bdf52abada8e1f81e386e63b97f4f3a","ssdeep":"","tlshash":"2241d5817848d3bce77fd998480808889a040f6a3833c5e9e2db384017e97c8fe36a24","first_seen":"2025-11-03T12:41:42.388423Z","last_seen":"2026-03-14T18:36:03.19665Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4025,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4025,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/index.BPzkSZRb.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.266Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/index.BPzkSZRb.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-681\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1665,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1664)","md5":"09b15105e93a0cbfc6785700fea4d03a","sha1":"04bf69af69a2639650f31dc48eb5b83c842512ac","sha256":"27d789fc37395e330aa10712eb4b6335d7edf8cbf7b13b22cde2828567ca3852","sha512":"fdb44c9266198504da3e18aa010912f8c14416ba32ef1b6bbbccad7cd9fc35aa70a5dbb987b97bdc4b29eb2e85a357d8c897d57ded6469b08f90c2683179c528","ssdeep":"","tlshash":"0d3144c6b9c15174931bb4c091a44852d24c9b36fa9e95d4f0fb9e941fbc584f45cb2c","first_seen":"2025-11-03T12:41:42.430302Z","last_seen":"2026-03-14T18:36:03.203868Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4025,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4025,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/common/getCurrencyFee","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:51.603Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"POST /api/common/getCurrencyFee HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: zh_CN\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: Bearer\r\nClient-Device: 0\r\nTimetamp: 1772169831\r\nContent-Type: application/json\r\nContent-Length: 18\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":18,"data":"{\"currency\":\"USD\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:51 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 229\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":234,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"46e15cf4768cfc6a5daaa99655f2fb0e","sha1":"14aa831ad82ff65c64af9b606f4683285487c297","sha256":"7abb768fcf81d4d3a2562cfa873b8cfe9c329bd85a55ddc9e9c4c2828968c05d","sha512":"0e7d82249f7f968d0ba1203d2e5af94fccf3b1e5453bc716cdd86d78f2156d7635c102462be002ec68aae1710e692539dbda0b955c9af8f1505034ab6c41f049","ssdeep":"","tlshash":"67d0973a400922cdc3a26240aa8928b18873f20adf02506d860900bfa28a42820ea884","first_seen":"2026-01-26T05:16:18.289241Z","last_seen":"2026-06-05T02:19:33.625014Z","times_seen":29,"resource_available":false,"data":null}},"time_used":485,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":485,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-icon-BtzrKq7d.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-icon-BtzrKq7d.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\ncontent-length: 435\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-1b3\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":435,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (434)","md5":"ec3c1db6332d7a3e20f170b33dc20001","sha1":"daf5993c11bad6404bba48e510ac58de82fc119b","sha256":"bd604e1a105c4af7778b3e3a93577fe1d54c9f1a35915d58126285a902ce7fde","sha512":"4adf57cf9fe336dd885237d486da93772f3a99fbd75e918b27ff335b3c9c1ee52844bf1c9f0ba0d9e0f49452ec68ce069f26e610e11eb19338354b2d3c74917b","ssdeep":"","tlshash":"53e05c4eb244342234a7d87624d0ec7d1820e4389c26ef782275e2205ff2c427362731","first_seen":"2025-06-08T13:31:29.640671Z","last_seen":"2026-05-31T04:01:43.158475Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/user.PCs5E_5v.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/user.PCs5E_5v.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-572\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1394,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (1393)","md5":"8ad8c1b029f90af4760c71519ea5f0ad","sha1":"14d813c618a34b2b11c15755fa3f9ef06c36bd38","sha256":"029c006ce0a5e6fd89964a35002bbaf038013a0ed79146d1d45efdd2b6efa31b","sha512":"2ed3aedd2c2082e500f24a6c6804069badbee618625384c08743c57562fc75130366591d0990f3b7337c88a86e76c86248947d366240f0f6fba44125bb9f70af","ssdeep":"","tlshash":"7021f59eb91201c789358f487c0c732a8106febdad0f3ae177a4159cc3c99d762a6027","first_seen":"2025-11-03T12:41:42.393731Z","last_seen":"2026-03-14T18:36:03.199732Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4025,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4025,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/check-s.DGG9M_rm.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/check-s.DGG9M_rm.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 989\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-3dd\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":989,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (988)","md5":"8a01cc60f09fa18d9813cae76738128b","sha1":"cdd58e3a03a998c25e74d1380147e6b52a14615d","sha256":"f86903ddef4b497befd3d2e250b6efe3f048e4529a86bb61a0c5560bd50f539d","sha512":"e6544c6053602d335f45ded8f55d0e1252cd9cdd7843656259a2b9bf7969eaa2987314b688a27502ff704a96f0f9697e299ad115ac73aea28f38f355863c359a","ssdeep":"","tlshash":"ba1194f4abaa8d72ca9c0f99363ed00c5c3108de45ade5203769e0a20335d306b9e814","first_seen":"2025-03-06T21:41:52.860647Z","last_seen":"2026-05-31T04:01:43.205197Z","times_seen":78,"resource_available":true,"data":null}},"time_used":4261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/common/config","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:51.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"POST /api/common/config HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: zh_CN\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: Bearer\r\nClient-Device: 0\r\nTimetamp: 1772169830\r\nContent-Type: application/json\r\nContent-Length: 23\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":23,"data":"{\"group_id\":1,\"key\":\"\"}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:51 GMT\r\ncontent-type: text/plain\r\ncontent-length: 463\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":670,"size_decoded":0,"mime_type":"text/plain","magic":"JSON text data","md5":"931d763efffd249da4f54d95a217fd61","sha1":"eb996de0885ea1bcb6d568e5bcf4d5100a2e8f08","sha256":"28c0b8d7a350e64913daba0232e24cdf59ba334f68c34e13ca530e7a975f08eb","sha512":"c944162a0697be4b6bea74527ab0f50d5d1913b14f264fc7b2c8402dc00ba539c39537a253ce4033a81782353d5ceaaaa7882103dfd1124f7ef741c679964cbb","ssdeep":"","tlshash":"7701f4a61a444f6a474557d6e11c640d941e2603c45db883eb8bcda0cd6c0dc6004722","first_seen":"2025-11-03T12:41:42.475628Z","last_seen":"2026-03-14T18:36:03.202777Z","times_seen":15,"resource_available":false,"data":null}},"time_used":272,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":272,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/static/statbar/new/market-d.png","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /static/statbar/new/market-d.png HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 04 Feb 2024 01:58:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65beef5c-39d3\"\r\nexpires: Sun, 29 Mar 2026 05:23:50 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14803,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 823 x 823, 8-bit/color RGBA, non-interlaced","md5":"29a40a77d0e2728d54a09eff08e586c7","sha1":"9d6800e8ae740b9414f705c0ba3e443f956131d3","sha256":"65f39723b4493e06f4b8b0f3fada984b259026841d0f81b4303ac811a380cee7","sha512":"eee4e1d74b2b814bcab6d8a56a06cb616da8b72c1f30b4f1d990a9613f7b0dc24af6f2f16cd42b47d6df1bc8a5660fdc7b2970d8ca218f1482ed0be73344ff97","ssdeep":"384:8hFvt8UkrRghwAIfsnJkTLvke8gQtD94lcASP:kUzXGJaLpGth4lVSP","tlshash":"e462d3803bff940394ea931ef9ab3369b4afbe9e52d052f034145216b54b318de4572e","first_seen":"2025-02-26T18:29:17.859051Z","last_seen":"2026-05-31T04:01:43.143129Z","times_seen":114,"resource_available":false,"data":null}},"time_used":1937,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1937,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/uni-popup-dialog.BOFpiNni.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/uni-popup-dialog.BOFpiNni.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-d7a\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3450,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (3401)","md5":"27cb0c1bb7cf364a794f0cd90bca7595","sha1":"aca0613bafd0121275c8d7b011e25ba620ef7578","sha256":"a8032afbadbaa514dca9291a21be1d850d1d3c274c45421f6e8bfcf4f5e870cf","sha512":"b82c26b9377e47d19d52365d808e969dfc6cbac4a03b0ff3ef47efa2b42aa48ba39ba37a4291a2058e52e6509ffb97794fca7b08ae2de1bcd711cc72e695e3f4","ssdeep":"","tlshash":"f8613fa17a6ef7378ece066042014901a1611efce9a43e7476b870da4f95cc1e2ed73d","first_seen":"2025-11-03T12:41:42.399722Z","last_seen":"2026-03-14T18:36:03.207938Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4029,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4029,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-27T05:23:37.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:38 GMT\r\ncontent-type: text/html\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-35c\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":860,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, CR, LF line terminators","md5":"8da61c5d78ec542eaff346d20f85c503","sha1":"de5480e858e077865c29001b2e9b8d4539e0355c","sha256":"3581a131d9158049e92304699a1e4016cd19ee792bf185fa57b444474e7454dd","sha512":"6c926a5547a1980c94078f3d0de68d74401ee9f6eb5f6c9e392be4e83b803a338ce8abc07b52ce0a01d3d8e6f85afa0806f324d5af56ba0a9f0952d70dd14b55","ssdeep":"","tlshash":"bf11124554e15d091230464534e5d82befb35a678b09ee6034dc627b4ff874acc9fc64","first_seen":"2025-11-03T12:41:42.473143Z","last_seen":"2026-03-14T18:36:03.201232Z","times_seen":20,"resource_available":false,"data":null}},"time_used":1361,"timings":{"blocked":559,"dns":66,"connect":242,"send":0,"wait":243,"receive":0,"ssl":248},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-button-I_hS5M3J.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-button-I_hS5M3J.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-ac3\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2755,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2754)","md5":"4a9af0ba2fe2eec96b1ad76d9bec3fb3","sha1":"e43bbf2fd22525a620391d33b93b9df141eaf86f","sha256":"cc6e1dc77dec9ef566f4fd5d066854f6ce3b081e999e49b1e9d046c1d96e4eb7","sha512":"ac657d341d188fe95afb66ec5103a421f8d92c18be72738ffc57f713195321a6dd3582745d542573e7a76995f64344cc7861fae6d53d0682b8aca72b3b4b965e","ssdeep":"","tlshash":"0151ddb9b5c4713dbe1be2b825d5efbc4638e6c18b020b6cb121f1918dd79d22346289","first_seen":"2025-06-08T13:31:29.658184Z","last_seen":"2026-05-31T04:01:43.289665Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3356,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3356,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-backdrop.F03BBGK3.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.254Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-backdrop.F03BBGK3.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 901\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-385\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":901,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (900)","md5":"04ea6e2b271475ab19b88d30345820ce","sha1":"45aaae1326fd2505dc720e44af8b9c15c89b78df","sha256":"fa0ec06243142c73b97d6be2ed5d7ac5999429416243d45ac5d8e090fe32fe66","sha512":"e326ea782645e08ad2afa9849c9af1371b4321bde843b06ba56eb0acd9061c8a8e80b03daa637130695ef07dd4262d49a1f1055588af482dab5fb8cf84f5ffe9","ssdeep":"","tlshash":"ab11e30e744ee4323aabe574e0240a50441c56ade66a3add45ea71f90b4fcac939eb04","first_seen":"2025-11-03T12:41:42.437765Z","last_seen":"2026-03-14T18:36:03.208894Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4028,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4028,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/currency.DdraAnJM.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.260Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/currency.DdraAnJM.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 552\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-228\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":552,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (551)","md5":"d791828b3bf11634b64e43ab258c295f","sha1":"3a40f67ff4a00458c8f037cfe6572f65bbe450a1","sha256":"c92b18a0d949a43ad14b27fe71bbd670619a06ccdb32cc96b7c092eea94fc72f","sha512":"1aad95966d16a1615cb27f67cce14404574a3628f592c724a18ec6d213c12a1a19b12892614cca520915131172d6eb13246e9c1bb9db3d245460892626925842","ssdeep":"","tlshash":"c0f090db94a2d4e2c1755b48751962140027bbb5341f9ae03b8d22c6b3dc087d032d7b","first_seen":"2025-11-03T12:41:42.45256Z","last_seen":"2026-03-14T18:36:03.191934Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4025,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4025,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/common/getCountry","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"OPTIONS /api/common/getCountry HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: accept-language,authorization,client-device,timetamp\r\nReferer: https://aihypeyp.one/\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: *\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T05:09:46.184258Z","times_seen":16166248,"resource_available":true,"data":null}},"time_used":1298,"timings":{"blocked":494,"dns":52,"connect":247,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/account/userinfo","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.235Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"OPTIONS /api/account/userinfo HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: accept-language,authorization,client-device,content-type,timetamp\r\nReferer: https://aihypeyp.one/\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: *\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T05:09:46.184258Z","times_seen":16166248,"resource_available":true,"data":null}},"time_used":1314,"timings":{"blocked":523,"dns":45,"connect":243,"send":0,"wait":248,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/uni-drawer-B5HqcKg4.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/uni-drawer-B5HqcKg4.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\ncontent-length: 801\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-321\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":801,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (800)","md5":"95ef79201a5d27b742711431faa55983","sha1":"7141f121bab38abacbf206318d94839956c94a84","sha256":"f757f4d40fbd5ce9d751573b0dc9783bd47bbd284ced2625ade21651b0aea6e1","sha512":"03de685734c4ddaf972f1a99828495aa276468c6c90c4f5b53d0e969429cc377f502877e8a8effeebb958cf2e23152dd69ed8532fad7b9e319596ea12b234d3b","ssdeep":"","tlshash":"ab012b10681c1c0215f7d203ddd0da1a427c5293d4b10acd7396742b1fff9ea288a753","first_seen":"2025-06-08T13:31:29.651723Z","last_seen":"2026-05-31T04:01:43.170253Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3353,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-backdrop-B_PWEsXl.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.192Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-backdrop-B_PWEsXl.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\ncontent-length: 356\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-164\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":356,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (355)","md5":"8f63c96b36fe2115b36426813cf0220e","sha1":"63bfaa84af2c8d1e14f598a1739df1977cbe796a","sha256":"e1a7d7585576b7f2cdf6875afce70637eb12b63ba45f015280457fa212531fe1","sha512":"30a608245fe6e21e0ee4737c864d48c751302019d07f1c7317430491d3201fd35a4fde49e824eb8dc2d952e402ea16ad7e7a28b65e34b0391e38329f6a635f9d","ssdeep":"","tlshash":"cce02045a18914142d7fe6f26420ef38407ef590d9531a9e064e17a4074fdcb9321588","first_seen":"2025-06-08T13:31:29.64158Z","last_seen":"2026-05-31T04:01:43.222986Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3348,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3348,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-bottom-popup-C0CpF_g1.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-bottom-popup-C0CpF_g1.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\ncontent-length: 653\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-28d\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":653,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (652)","md5":"a1f097a08102287bce4d97d7c1ca5adb","sha1":"2353244965e02e3e0fb1c47f7b195b22861cabbc","sha256":"08deed1983cde3122a87fe6417f829198c2905236127063b9eef4fcba7430dea","sha512":"fed95de62830192223d450ddf37d23d71804ba9aedff4076bdb555fb8e438bc6b875c3ede4151033157f0dabf15cdf556a72abbc8f76b699d6fc156c6cc90e0e","ssdeep":"","tlshash":"9af073243548395d593fd355e5d6feec8336d241ba9758cd53080a15044f7ca25396dc","first_seen":"2025-06-08T13:31:29.634312Z","last_seen":"2026-05-31T04:01:43.2801Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3348,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3348,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-icon.CosUZAIt.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-icon.CosUZAIt.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-f84\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3972,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (3645)","md5":"c762414f4f7d835d5565515f868d9cbf","sha1":"8509cbed8639c667a511d73cb08b508a3cff4874","sha256":"0ffc55afbee12bbb59fbecf7265dfec06c36b66d17b3586b99694acbe72aafa2","sha512":"433ce558c78eaa533680f34a3aac23c39dfa96d1e5016863d6b1ba233d096be88eca0d716d14da2a2faf7ef51bcdb2e0dc0359f6d05867e8144cff32fb1c40a1","ssdeep":"","tlshash":"0c81638e64f9ac2b6e8e7eca544c1203d0d19f58e9e0fc52ac9d09e5e57e950720df2c","first_seen":"2025-11-03T12:41:42.450395Z","last_seen":"2026-03-14T18:36:03.193486Z","times_seen":14,"resource_available":true,"data":null}},"time_used":3791,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3791,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-tabs.BiKlbrzG.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-tabs.BiKlbrzG.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-12e6\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4838,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4837)","md5":"7372dc7858fe87bec36f77ef8550238d","sha1":"dc2ee9b05dfbc79b569c52fd4b6981449eb8c259","sha256":"5131d999bc091840fb86da02f6d250e84aa9998b085280083b8c42b82c5fbcb9","sha512":"98d7924ba7e8321a07fbde65af6a0a1cc754c7cbee31c87fd84e19e4186bc043f0facc048bc2cb7b5208ea303fe84b5427bf9c211897ea49472348eafb827358","ssdeep":"48:dFL955ZggHqFbLJZAcHYaeXqH5QvbzEYpYbJQP7d4jfKwhOwFiOpTEecR71WPD6s:l55LHqFbLJZ94XWkY67dfEOfoo6X2V4x","tlshash":"bda17426378da0336ec7648a60205b95d5658b9cec247fedf3f1143cc706a1950ecb69","first_seen":"2025-11-03T12:41:42.410417Z","last_seen":"2026-03-14T18:36:03.196099Z","times_seen":14,"resource_available":true,"data":null}},"time_used":3791,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3791,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/index-C4RMy9IK.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:38.391Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/index-C4RMy9IK.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:38 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-36722\"\r\nexpires: Fri, 27 Feb 2026 17:23:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":223010,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65018), with no line terminators","md5":"66d29af98bfb0cc55a9a03354a0dd3c2","sha1":"611cce3f5cd5da01cad1315147fcf07e6832ce70","sha256":"09b71933bae48697c281f5b6972aea4ab69b80735e3352616450b143ec622e8f","sha512":"bc9e96a91ea314facffd7bc378570fa21621aecb50f6bc073e314b04d2811cdcb00ac981da9213f4eb5c6532c654ae544a69b98460563438a50209ce5701c139","ssdeep":"1536:40q7hLA41IyNBi3MFYaQj7FCwsBlDOFIxuVoxJPIKkca1Al5aIzeMVTVkIe:C7hzvNIClDsIxuVS9VYee","tlshash":"aa24b6a5e69091bcbf2bf275ab8b96dcf23cf560dd01caa4f10151580ec7bf5062361a","first_seen":"2025-06-08T13:31:29.653644Z","last_seen":"2026-03-14T18:36:03.212256Z","times_seen":90,"resource_available":false,"data":null}},"time_used":3187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3187,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/common/getServerTime","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.237Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"OPTIONS /api/common/getServerTime HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: accept-language,authorization,client-device,timetamp\r\nReferer: https://aihypeyp.one/\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: *\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T05:09:46.184258Z","times_seen":16166248,"resource_available":true,"data":null}},"time_used":1327,"timings":{"blocked":526,"dns":51,"connect":247,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-avatar.C8zWsw3k.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.240Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-avatar.C8zWsw3k.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-a51\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2641,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2640)","md5":"cccd9c0ab49f06df88c2147119f9ae63","sha1":"adedfabbb8a549301994fc0df5686a26576b3abb","sha256":"ebf3dd6d8b1e429975d42b763b80261f3b16d39ef790e3e776429beacd3939ac","sha512":"f1d3113626300e0a23a35b2ac2154ab79fec0affe8319e512078341557aed835f4402a15529e333cab732a9df7855f253e9210aa11c84e45c4b0caafd726876a","ssdeep":"","tlshash":"de511095712da82ba9c90cd724200b8460242fdcfb747a7efee175f186c7964725cf28","first_seen":"2025-11-03T12:41:42.418194Z","last_seen":"2026-03-14T18:36:03.194514Z","times_seen":14,"resource_available":true,"data":null}},"time_used":3792,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3792,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-nav-bar.B-WXcPYV.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.243Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-nav-bar.B-WXcPYV.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-a0e\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2574,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2573)","md5":"f7412b98c1f1c3a7b76e6a60422f3eb9","sha1":"e0484a115fd6cc2657381061f6f889256cddba6d","sha256":"0c8ad0a2a1ddb2ac70c2cb447429591cb87e3980474c46bb86565466617c65b5","sha512":"2dc35947221a13bb3bb54067f75cce0dc41cfe7ff97d138e2ed1f8535d7b694142deb75115c68291f6bea9b052c3f19f10ba35a1cbe7619ce9bd8490bca14cef","ssdeep":"","tlshash":"d9515211351c90322e49080ea0a15370a164aeadce317969fef5687543dfc5eb3ecf18","first_seen":"2025-11-03T12:41:42.432158Z","last_seen":"2026-03-14T18:36:03.197185Z","times_seen":14,"resource_available":true,"data":null}},"time_used":3791,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3791,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/alert.BOKVEe7A.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.251Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/alert.BOKVEe7A.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-556\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1366,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, Unicode text, UTF-8 text, with very long lines (1337)","md5":"567a38dfa45646fef0d226c48b0497fa","sha1":"051616dfd2e2049a69261c4f552bb22212fe0eed","sha256":"4db9d6381cb0924a34085db47a17e94f696eb11dc9a47fdfc76088572aa8f2ce","sha512":"148ba5bd57437f8aef5ca365b1c0a4575497a1c46acf3f36230f86e74963c71dd7127cbbeadf6e5e4365f0275e9035cea4925a12c03089058aca3a71592ffe93","ssdeep":"","tlshash":"7121205b7a0cac232fec4dc5a1511012890c2ace92dd5eb5b9f821e96b398c5f1de739","first_seen":"2025-11-03T12:41:42.434Z","last_seen":"2026-03-14T18:36:03.206986Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4029,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4029,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/ptb.Dg2TKeap.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/ptb.Dg2TKeap.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 51\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-33\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":51,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"0fd28d375442ff081b513da77b56c983","sha1":"314332f6d4308c497a2b1b7fe7824af8c8186708","sha256":"aa73d7b68402a26cf403b85d447e0f40471363a126f92be92a4d9f62257a714a","sha512":"c7e72b67aec1d0604e7b5dea752b4162dbd3ce1f8dc35929c7a37817ab731fd716d337957be98fbe9b0efa9c6033f6de0b43c2b5ad23abe3b1433bc62d6e6fc7","ssdeep":"","tlshash":"5d900211054004b501782588c727ca5494504129621742558514490aa953480561b820","first_seen":"2025-11-03T12:41:42.439607Z","last_seen":"2026-03-14T18:36:03.218198Z","times_seen":14,"resource_available":true,"data":null}},"time_used":4263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/HarmonyOS_Sans_Regular-BHHgWLDZ.ttf","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.274Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/HarmonyOS_Sans_Regular-BHHgWLDZ.ttf HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/assets/index-C4RMy9IK.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 146616\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-23cb8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":146616,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, digitally signed, 14 tables, 1st \"DSIG\", 21 names, Macintosh, Copyright 2021 Huawei Device Co., Ltd. All Rights Reserved.HarmonyOS SansRegularHarmonyOS Sans V","md5":"48d656ed53e13d664de5cfdc7d3c438a","sha1":"8bea06ce4d7b4196f5e5f60b5580bdb1519ff560","sha256":"4f00c7e80329238d0b6fc58e5c829c4086432ba9fa1a8c5ca3da9a0442ce0452","sha512":"4d3189ddd412c1018a1c102c7067b5983ed2ea46d26a0e7f5f8a0829b77557c35a6cdd41c3573c3fd0592e240f1dbf51133a73ad246f0f44dfbe37f5b1c1feff","ssdeep":"3072:2waXVb3/LizgXbAsJzu82vIm3r6yoj8Gf9g4I3ZgDl6iquMX3js2O0:GVb/Liz2Jzu8IIm3rE9g4I3ZgDlnJO3T","tlshash":"7ce34a07f3a3db5fea16adb9a632e22283cef434793e874ef5041567d49b8e1c884541","first_seen":"2023-04-07T05:22:56Z","last_seen":"2026-06-06T02:19:26.896731Z","times_seen":625,"resource_available":false,"data":null}},"time_used":6429,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4485,"receive":1944,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/newindex-C43rAjt1.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/newindex-C43rAjt1.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-6390\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25488,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (25487)","md5":"e032f9ec50cfa9aa026a43849b864e7e","sha1":"ba13063e407a86f2603fcb0b757767c4b94cfe4f","sha256":"7ef3a9d5f7766abfc2222486fe7c956baf868fed64150f91f622fb27fd8642a0","sha512":"0f3bddd8af61330cdd092cc574eef0a8b8748c5094b4a89cdb5f8a617583ffeb313c911aa374a7308895a67bcf525819c3579b09e1e90ddffa544613a2b49a8c","ssdeep":"384:nxntRKF0jR+GuZktIP7dQatORlMqUlqdOMIWoTD:no0jR+GXVIWoH","tlshash":"c4b2662d3174b618427bcf46bb682e8e2950bf5ddf86058ca5233f16498b5633871f8a","first_seen":"2025-11-03T12:41:42.472102Z","last_seen":"2026-03-14T18:36:03.202217Z","times_seen":14,"resource_available":false,"data":null}},"time_used":3588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/uni.f6aca0bd.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:38.388Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/uni.f6aca0bd.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:38 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-61ad\"\r\nexpires: Fri, 27 Feb 2026 17:23:38 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25005,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (25004)","md5":"3cc3de5b3802edc99e610e991843bc45","sha1":"5a510bd7d4140c3c7f1cdec6a97b6750619a7d0e","sha256":"f6aca0bdc12d22f8eaf57b3039f622ca78f167854fb67d528f6b3063378bf3d9","sha512":"02785752df00f96eec83ad11e7ede65caa6343b99d713487986249ba71207a4500ff3f7dbc25d4d87e98ba373011a8aaa7a1d5d9710b294f637a9d3e9edfce84","ssdeep":"384:UXpmLWLAHc8aux2iei+XHeVcy/iatZrwv:U8Suzei+XH7atZa","tlshash":"5ab29531aa002629f427ce2965d1db4f22318173e9531b2dfb79712ccfae9c9197b784","first_seen":"2025-03-06T21:41:52.717493Z","last_seen":"2026-03-14T18:36:03.19557Z","times_seen":94,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-tabs-D_VIZz2j.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-tabs-D_VIZz2j.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-b25\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2853,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2852)","md5":"e986b36d7ba5a986c6ba68f4e4582902","sha1":"8eabf4f7fc6a99d67f93605a8be0096adbc4d0e1","sha256":"8ab95e5a1ed24b603039bc4542b5abe98b505834c2b07c88ab1ab974774995b5","sha512":"c15bad67b877d2c709db1564ba98b9abdc3c1f8cad85ce22bae90369378994726e5bf699202a2038c2989d162b210f81942f0fb699322e40d92c28949bf85eb3","ssdeep":"","tlshash":"7551bd75f2dd203e547bf22974f4bb9c8468e2428217a36ea431372b48d7ad305b278d","first_seen":"2025-06-08T13:31:29.622121Z","last_seen":"2026-05-31T04:01:43.278341Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3353,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/uni-popup-dialog-1Os_aRzI.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/uni-popup-dialog-1Os_aRzI.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-507\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1287,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1286)","md5":"bf7148d24ecf17c233bd1cf9f5d8d25c","sha1":"db9ebe29a6820d792e7cee548fec2df728cbb2a2","sha256":"1f1c5505658adb82ce9800e3d55fb3df103059b799c78bc10b0e1db7959e44f2","sha512":"1557548182bd2f975cf6528eec0ee1ecd725c80b5183d7a4138feed87d21734c5f340d0d7e36d75e72cbb80dd4667bbd98101fa6354cc7e321bfff72dcf3d038","ssdeep":"","tlshash":"5e215c36710d351518afc85a7844eac7d384a37e91668358a92dbd340cce7d23f1228c","first_seen":"2025-06-08T13:31:29.661624Z","last_seen":"2026-05-31T04:01:43.121507Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3351,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3351,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-button.Cs337qol.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-button.Cs337qol.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-1955\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6485,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (6484)","md5":"bc91ca954920f2c3f50c883d23140dbf","sha1":"05eedc09de792c3d0de24936eba4a13ca9e2a1f9","sha256":"f639e14a8899307f1a145e67d8b989b79fd11c2b2598fe8eff1d95deb552f4af","sha512":"e5f0f0b943e0b7d7aa58d7ff2364e3a2ab3a221f2350e00f740b190a94cd8826e1253ce5fa410365855328a71e8987aa74c6da4b66e0850eada2e85c6b0c052c","ssdeep":"192:FDuk4LqPOCDTRtYLRh9eBiugS7wpkSQVefhFbkjZP:154GuRu8Qcfu","tlshash":"3cd18441315c253b7fcf865c70b50f82c217a9889861af3ebfb4b1b99b4a845359ef24","first_seen":"2025-11-03T12:41:42.444501Z","last_seen":"2026-03-14T18:36:03.190794Z","times_seen":14,"resource_available":true,"data":null}},"time_used":3791,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3791,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-nav-bar-DtMoUqYo.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-nav-bar-DtMoUqYo.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-566\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1382,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1381)","md5":"1f7fccda3479539399a8985b467724f8","sha1":"5bdf164c239aa656c8e63e794d77f1e4fd1339d2","sha256":"cf13be34efa7db518f939fa0905307c685ebadd2e3fb547229b09b3f072489e8","sha512":"89f56ad0edccfb059b2a13d485701a096dcde7486abcf8a455a95271be09fbd27e54760eba834c81478c3840f74c0fc45737d527b3f3e24f9e2f2777744cd30b","ssdeep":"","tlshash":"8421dc3572d85068be2be9225cd79f3d5010f31382a7424ca9e51b1c0fcf683766a9ee","first_seen":"2025-06-08T13:31:29.65651Z","last_seen":"2026-05-31T04:01:43.204326Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3123,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3123,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/pages-newindex-newindex.CpR1XibN.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/pages-newindex-newindex.CpR1XibN.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-91b2\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":37298,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (37131)","md5":"3e8297fc779f46d5e85c590ddd47f384","sha1":"f1e3db78f6f0bc97be601970d9d17e6e976f5a3c","sha256":"d5ca016f39833b8d0b6aa4c00bb9dc25552a517e875b5187e2060e41eec891c3","sha512":"0106f31f1deade8e7ab14e78366e42645d20d54212cf6cfcc501d553c83cb50856c4ae9e35fba8db9ec5d695cdc0479b5d40da67f9b9509baae287a272c876ff","ssdeep":"768:tl3A/lD8UyMrhNgV/fPFnksM5Mhzn0WrGI9eXQbTBTMDKY:f3CeMFNafdnksM5Mhzn0uGI9eXQ/NMD3","tlshash":"e0f25202ba1cf6649da3125cf0998001b07aaccec1043a5fb5f42c6f52d7ca959edb7e","first_seen":"2025-11-03T12:41:42.426747Z","last_seen":"2026-03-14T18:36:03.192914Z","times_seen":14,"resource_available":true,"data":null}},"time_used":3792,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3792,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/uni-app.es.d_vLI1bg.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.242Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/uni-app.es.d_vLI1bg.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 84\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-54\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text","md5":"6b66c5e8ec007c309842caa5d15df880","sha1":"31792ad204aa6e3cc25b3f6e53b7cf2b950d35d8","sha256":"eb004fa1e81b674bbd9d3ab61a87d6d1bbbff407c1b41e91043edff23493b3cb","sha512":"d6e8cf99e6c0312cdb41693e9a0a96edb79178e6b4f4ca7dd2ab3c0cfce9c39f4db2d6f7e02132afcb3485f38ca2c91b573d56bd17e9e8e53e01f9ab540db8cd","ssdeep":"","tlshash":"d7a01287644120122822048010555907a17611d6458d862081c103244afc4a4d128909","first_seen":"2025-11-03T12:41:42.468412Z","last_seen":"2026-03-14T18:36:03.198241Z","times_seen":14,"resource_available":true,"data":null}},"time_used":3791,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3791,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/common/getCountry","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:51.119Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"GET /api/common/getCountry HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: zh_CN\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: Bearer\r\nClient-Device: 0\r\nTimetamp: 1772169830\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:51 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 98\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"f414d36bcd063b1a89291eb67cf7a6c5","sha1":"cc90032a6a85881b8b020b181514a7f64119af08","sha256":"5930407e8b2543da536afa156a493980e55c5264796eacd05dcfce1a357f5699","sha512":"00deef7d41e9e7e26e166dc27d236e02368274ca3e730df50deb1f0ad18fc20b20151e0507ebb52b5a08f779d001b4eae9809beb28af93300d554b9e065c5ad1","ssdeep":"","tlshash":"dda012101c105a65fd5201623117340006e421518150540d544c162c864c09a200292b","first_seen":"2025-06-08T13:31:29.657292Z","last_seen":"2026-05-31T04:01:43.250565Z","times_seen":80,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/fui-avatar-CGsx0hv-.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/fui-avatar-CGsx0hv-.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\ncontent-length: 1007\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-3ef\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1007,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1006)","md5":"cdca596f9aa03121bd4c19f5afe2a1ed","sha1":"5c1adcc295e466b24f54ac80e0de60e15cb3c80d","sha256":"9b3f5edd7f12c7f0e91a5031092df83aeb9561ddd6ac2df9fdadd555aabfa08c","sha512":"9f54bd175384c46e8f5cdd860de7ece4a559260f3c2a9c03c62198e040deb4e2d5e92a6389ce0fc39322ba046e5a021fae1f68a9aa37c0f05b774dcc07ea3bc6","ssdeep":"","tlshash":"c211b697ba8f3124e03b85206448efae59bbd1918332482edd876f798bc66e3751344c","first_seen":"2025-06-08T13:31:29.616237Z","last_seen":"2026-05-31T04:01:43.169063Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3125,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3125,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/uni-popup-DP4YL--h.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.187Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/uni-popup-DP4YL--h.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\ncontent-length: 484\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-1e4\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":484,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (483)","md5":"5a077e1673191c5a510712e37308aa11","sha1":"c2d967b145d3ffbda5b6bbc6d3330f6cb0812814","sha256":"bb38ff23a83deeb9b3137058bfaa8603f045f00dc9fa9b21c03b349ecad11e1a","sha512":"71bb1daa9967326763d3ca23afbde83aa8f67f8e79e74a4f65f55b30870815b7a078723e358b141c25986d92f722ed3947e7b74e382d86454486bc853ea130ae","ssdeep":"","tlshash":"aef0f4b63cb834c5c5afe3c6d1d147804124a576e507195e83a8344a19ab5d3b74d8fd","first_seen":"2024-08-19T17:10:12.78357Z","last_seen":"2026-05-31T04:01:43.230521Z","times_seen":86,"resource_available":false,"data":null}},"time_used":3352,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3352,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/_plugin-vue_export-helper.BCo6x5W8.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/_plugin-vue_export-helper.BCo6x5W8.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 91\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-5b\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":91,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"41bf66d156aac38dbf7a45b53cb4db18","sha1":"4aa693a2afcc34b6a577e1bfc4be3ef5a458dce0","sha256":"a7dbb0eaed9de79041d555c4563be4bb0514099b8d169a2b548ab2d07102cb55","sha512":"64e1a5c2939052c93692338bf78b66723ae6673121d2915a9fb0848449e4b2657c1a31c8940bc7c9ec77554fd4c04ffae1b787297f0fba23983a987e85caee15","ssdeep":"","tlshash":"40b012e500824138432175c796f444649e08005c394756d144480d52c143080541bc3c","first_seen":"2023-03-26T04:51:44Z","last_seen":"2026-06-06T05:29:47.157464Z","times_seen":1547,"resource_available":true,"data":null}},"time_used":3792,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3792,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"ws.hypeaabbb.shop/?token=17721698300865489654$contract\u0026sub=contract","fqdn":"ws.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:54.758Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ws.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:39:47 GMT","end":"Thu, 09 Apr 2026 16:39:46 GMT"},"fingerprint":{"sha1":"BB:14:B1:67:65:53:95:6F:1F:F8:69:BC:4F:21:0F:F1:69:2A:35:2F","sha256":"45:4A:A2:BE:2E:C2:7D:09:25:B6:C2:5B:94:A0:7A:70:13:B9:29:48:CF:DD:FA:B6:C0:2F:61:35:4E:D1:B2:78"}}},"request":{"raw":"GET /?token=17721698300865489654$contract\u0026sub=contract HTTP/1.1\r\nHost: ws.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://aihypeyp.one\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: zQEQCqH04o5VKuzJGAN2EQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx\r\nDate: Fri, 27 Feb 2026 05:23:55 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-Websocket-Accept: tBdvNUcSSyd1hS0qW+Mw/5yZB8E=\r\nSec-Websocket-Version: 13\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T05:09:46.184258Z","times_seen":16166248,"resource_available":true,"data":null}},"time_used":739,"timings":{"blocked":0,"dns":1,"connect":242,"send":0,"wait":245,"receive":0,"ssl":251},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/common/getServerTime","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:51.117Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"GET /api/common/getServerTime HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: zh_CN\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: Bearer\r\nClient-Device: 0\r\nTimetamp: 1772169830\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:51 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 102\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":86,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"94121fc5e11b940357e447bc4f1971de","sha1":"f1c2ceb8519b73a7cccb223a5eea02ef1aa5568b","sha256":"e0a8fdd4e40f298799043cf6b63a12d2978243b34de0633e91bf24310cce1e18","sha512":"c7180ef6080fd579b2866bb2ba8a7660198c80a7b8f1df6011ba82353d2a00fdb1a23594e050920b1f85c35edf39c990e6295dee0c8a5f64c6c6a42bbbe706fc","ssdeep":"","tlshash":"71a012411e00596ae942a15130556500157860e189d1c409844c1298c5442272002b27","first_seen":"2025-06-08T13:31:29.652713Z","last_seen":"2026-05-31T04:01:43.247565Z","times_seen":81,"resource_available":false,"data":null}},"time_used":249,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":249,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/common/config","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.229Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"OPTIONS /api/common/config HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: accept-language,authorization,client-device,content-type,timetamp\r\nReferer: https://aihypeyp.one/\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: *\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T05:09:46.184258Z","times_seen":16166248,"resource_available":true,"data":null}},"time_used":1314,"timings":{"blocked":529,"dns":41,"connect":243,"send":0,"wait":247,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/static/statbar/new/trade-d.png","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /static/statbar/new/trade-d.png HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 04 Feb 2024 01:58:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65beef5c-5ea9\"\r\nexpires: Sun, 29 Mar 2026 05:23:50 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24233,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 823 x 823, 8-bit/color RGBA, non-interlaced","md5":"ba45d17afadaddeccbea26376cf72b25","sha1":"b9f51ae6e4751a2956f5ac6c14fa4eb61851bce0","sha256":"f45f07ba5587e2e580b33d45c837c119791e6f9c629c7f0cae15567dac19d170","sha512":"dce51c6e425b5003c1ef25be5316f6012f441912cc72db72d29ba97ef4fd088f856af2fc053c4eab9cf38e5ab56411041e0fd2517a1ea9a539076c7001beb8e7","ssdeep":"384:RV1jbdD30WS0EZ13u+6zxZXccAaFbUkXoKUK9Qft5fX4CORBSCNmrUmEnJHeWsx7:RVPDkdFn+puSdTOftuCORBSTFQ5etx7","tlshash":"a6b2d0dd35fb82850d07daa7f8539d75f06e3e84a5e80af3c1b60e025c8b481c626759","first_seen":"2025-02-26T18:29:17.861589Z","last_seen":"2026-05-31T04:01:43.157112Z","times_seen":112,"resource_available":false,"data":null}},"time_used":2418,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2418,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/alert-0KFWn11L.css","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/alert-0KFWn11L.css HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: text/css\r\ncontent-length: 653\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\netag: \"68caae3f-28d\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":653,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (652)","md5":"ae9989620799ddc07614a731228f51f8","sha1":"ab7dd94419d0ce3c0914e0c25d5892b73fb8314f","sha256":"c0ac28cbff5d6bf02fa173b76348bb789d3a57edfd83badd9b194980003926be","sha512":"b63c39e275ce8986082abb91a13c3bb7a556829c96442ba4a8f7a33c1b1278f36f7c5eeacb921a9a74aa4e41f87ff248782435e85111e77cb3b3d6d6a21ac277","ssdeep":"","tlshash":"2af0a2db147d4e19a2abd1f803cdec649186bd72d5521be6bfadb0500ccb5f03b265a0","first_seen":"2025-06-08T13:31:29.658988Z","last_seen":"2026-05-31T04:01:43.146095Z","times_seen":76,"resource_available":false,"data":null}},"time_used":3351,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3351,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/uni-drawer.C9G2LKdp.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/uni-drawer.C9G2LKdp.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://aihypeyp.one/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-8d4\"\r\nexpires: Fri, 27 Feb 2026 17:23:50 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2260,"size_decoded":0,"mime_type":"application/javascript","magic":"Java source, ASCII text, with very long lines (2259)","md5":"3180d6cb2cb361a87b2a411c442145de","sha1":"49a99f863f4203b3b9b91da0eee68db355af9424","sha256":"fafcb78f8a3daab297a86eaa08241a11ca8f4ecba5ece7f9d67d3debb383a324","sha512":"1b7ae80fe889e364def4a8fc6845700f6568daf8ec1917c70820952eb0ce0f3e74379733537d85e187302b017276af4c9495af63335ee04cbaae1062f47d3137","ssdeep":"","tlshash":"674165dab80e69320df24152503965445b047bf8d7b175cab2df28fd030c8c5528df38","first_seen":"2025-11-03T12:41:42.384871Z","last_seen":"2026-03-14T18:36:03.198798Z","times_seen":14,"resource_available":true,"data":null}},"time_used":3790,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3790,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"wss","addr":"ws.hypeaabbb.shop/?token=17721698300865489654$trade\u0026sub=trade","fqdn":"ws.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:53.232Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ws.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:39:47 GMT","end":"Thu, 09 Apr 2026 16:39:46 GMT"},"fingerprint":{"sha1":"BB:14:B1:67:65:53:95:6F:1F:F8:69:BC:4F:21:0F:F1:69:2A:35:2F","sha256":"45:4A:A2:BE:2E:C2:7D:09:25:B6:C2:5B:94:A0:7A:70:13:B9:29:48:CF:DD:FA:B6:C0:2F:61:35:4E:D1:B2:78"}}},"request":{"raw":"GET /?token=17721698300865489654$trade\u0026sub=trade HTTP/1.1\r\nHost: ws.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://aihypeyp.one\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: nmpm69B4H92TUZhrXwjUPQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nServer: nginx\r\nDate: Fri, 27 Feb 2026 05:23:54 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-Websocket-Accept: YDny+jkPNnRYgKymXcY356ctL70=\r\nSec-Websocket-Version: 13\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T05:09:46.184258Z","times_seen":16166248,"resource_available":true,"data":null}},"time_used":2229,"timings":{"blocked":0,"dns":744,"connect":987,"send":0,"wait":246,"receive":0,"ssl":994},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/assets/pages-newindex-newindex.CpR1XibN.js","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:53.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /assets/pages-newindex-newindex.CpR1XibN.js HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/assets/index-No8yArsk.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:53 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 17 Sep 2025 12:49:03 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68caae3f-91b2\"\r\nexpires: Fri, 27 Feb 2026 17:23:53 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":37298,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (37131)","md5":"3e8297fc779f46d5e85c590ddd47f384","sha1":"f1e3db78f6f0bc97be601970d9d17e6e976f5a3c","sha256":"d5ca016f39833b8d0b6aa4c00bb9dc25552a517e875b5187e2060e41eec891c3","sha512":"0106f31f1deade8e7ab14e78366e42645d20d54212cf6cfcc501d553c83cb50856c4ae9e35fba8db9ec5d695cdc0479b5d40da67f9b9509baae287a272c876ff","ssdeep":"768:tl3A/lD8UyMrhNgV/fPFnksM5Mhzn0WrGI9eXQbTBTMDKY:f3CeMFNafdnksM5Mhzn0uGI9eXQ/NMD3","tlshash":"e0f25202ba1cf6649da3125cf0998001b07aaccec1043a5fb5f42c6f52d7ca959edb7e","first_seen":"2025-11-03T12:41:42.426747Z","last_seen":"2026-03-14T18:36:03.192914Z","times_seen":14,"resource_available":true,"data":null}},"time_used":2417,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2417,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/static/statbar/new/home-s.png","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /static/statbar/new/home-s.png HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 04 Feb 2024 01:58:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65beef5c-96dc\"\r\nexpires: Sun, 29 Mar 2026 05:23:50 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":38620,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 823 x 823, 8-bit/color RGBA, non-interlaced","md5":"9646a5cbddd16f0023ca20436560c2a6","sha1":"6790d84fedbf68bcd6db80c7ec0c460a453613ff","sha256":"7fedef0caa777dfc78a1e618daeeabd1dd5fa01b80cb13149040759b661225da","sha512":"f2664158cc9e10b2fb66fa9826bfcbf9eab6bcdb7a40dee4b8c2c66fa03b0b2c272065312eb51790671da061e91e7cd9a948ac986a748a491a887ac5362c1759","ssdeep":"768:ttnJaWvVOkGa8y4KtZ0DG0nYJglTUZ9Uu8OaE6:jJaMTN4w0qq7lTUZ2Hr","tlshash":"9203e0112316c64bc2b3170431ac799f29e616701cbe56b2e85e6dc7e835bbd0ec73a5","first_seen":"2025-02-26T18:29:17.850328Z","last_seen":"2026-05-31T04:01:43.262381Z","times_seen":116,"resource_available":false,"data":null}},"time_used":730,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":730,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/account/userinfo","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:51.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"POST /api/account/userinfo HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: zh_CN\r\nAccept-Encoding: gzip, deflate, br\r\nAuthorization: Bearer\r\nClient-Device: 0\r\nTimetamp: 1772169830\r\nContent-Type: application/json\r\nContent-Length: 2\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:51 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 118\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: accept-language,authorization,lang,uid,token,Keep-Alive,User-Agent,Cache-Control,Content-Type\r\ncontent-encoding: gzip\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":95,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"c56d2a956125f8601fa426b1cbd64576","sha1":"41694919db9711a5446c20496c1e3e613c3fec29","sha256":"5296af1a52ebf64f7cd2dbac3438a2bfa085737f6d539e2b891738653dc1fb79","sha512":"863d551645fafe1bc506d6e613e93e19be456eca8c48356961c39eaadb102d5382b511b395134e3bccf59c4990b5f0f036325651c191cec8c70977b7f31a38e6","ssdeep":"","tlshash":"c2b012131305bcd8511a21845444180034920455555029d1ca2eccbf8680881b44b3d9","first_seen":"2025-06-08T13:31:29.612026Z","last_seen":"2026-05-31T04:01:43.287887Z","times_seen":81,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.hypeaabbb.shop/api/common/getCurrencyFee","fqdn":"api.hypeaabbb.shop","domain":"hypeaabbb.shop","tld":"shop"},"ip":{"addr":"118.107.15.211","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:51.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.hypeaabbb.shop","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 09 Jan 2026 16:37:50 GMT","end":"Thu, 09 Apr 2026 16:37:49 GMT"},"fingerprint":{"sha1":"2D:38:76:26:05:44:93:47:0F:59:94:BD:75:59:8A:C0:62:84:42:CB","sha256":"E2:34:C6:C7:A9:0F:FC:3B:06:B2:31:6A:AA:0C:B8:AB:6C:99:A2:5C:73:87:EB:F7:DA:C1:51:B3:36:0B:52:94"}}},"request":{"raw":"OPTIONS /api/common/getCurrencyFee HTTP/1.1\r\nHost: api.hypeaabbb.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: accept-language,authorization,client-device,content-type,timetamp\r\nReferer: https://aihypeyp.one/\r\nOrigin: https://aihypeyp.one\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:51 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: *\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-06T05:09:46.184258Z","times_seen":16166248,"resource_available":true,"data":null}},"time_used":245,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":245,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/static/statbar/new/asset-d.png","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.152Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /static/statbar/new/asset-d.png HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 04 Feb 2024 01:58:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65beef5c-4b78\"\r\nexpires: Sun, 29 Mar 2026 05:23:50 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19320,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 823 x 823, 8-bit/color RGBA, non-interlaced","md5":"a2c1965acf454ca4d24168abedb613c6","sha1":"b8e2b6330b3d7b2287d1e29d133078cd096ca560","sha256":"cb0cdb3d3be3c15cfff62688d753026ac2eff5619c93102b774fe32f6dba669d","sha512":"11efa710a57529b598150a4dab919aeac65d4038d66312aef671d39a5809a22c38fc1a9b6ff38bb24e3d5b38f072751656b3b258b8dd0046d8000c1ac23193e0","ssdeep":"384:IjVEw1F5vwrxF3rD2Ff2WlGvEn38Jpz8OPrRgsXi8:ilw1FD2FeWlf6pTuA","tlshash":"21826cd82ff7c21b44a6e32da5ea6235b2afebd806c106f164481543b11e31dde2137e","first_seen":"2025-02-26T18:29:17.852722Z","last_seen":"2026-05-31T04:01:43.251796Z","times_seen":110,"resource_available":false,"data":null}},"time_used":3143,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3143,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aihypeyp.one/static/statbar/new/contract-d.png","fqdn":"aihypeyp.one","domain":"aihypeyp.one","tld":"one"},"ip":{"addr":"118.107.15.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aihypeyp.one/","date":"2026-02-27T05:23:50.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aihypeyp.one","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 03 Feb 2026 09:49:50 GMT","end":"Mon, 04 May 2026 09:49:49 GMT"},"fingerprint":{"sha1":"30:30:2B:43:84:19:A2:72:45:A5:CE:59:4D:71:49:B1:8F:BE:D8:E1","sha256":"54:B0:B3:8D:46:1F:BF:C7:F0:D4:2C:52:EB:1A:71:D4:8E:6A:F1:EF:2C:81:62:22:C6:F5:98:DB:28:0C:64:5C"}}},"request":{"raw":"GET /static/statbar/new/contract-d.png HTTP/1.1\r\nHost: aihypeyp.one\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aihypeyp.one/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 27 Feb 2026 05:23:50 GMT\r\ncontent-type: image/png\r\nlast-modified: Sun, 04 Feb 2024 01:58:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"65beef5c-3c20\"\r\nexpires: Sun, 29 Mar 2026 05:23:50 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15392,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 823 x 823, 8-bit/color RGBA, non-interlaced","md5":"8f80c649cf90911ffbab4cf72209cc11","sha1":"90a7c47dd804cf9f5bf99fcb34c7421a4b60b4a7","sha256":"ca39d8e792f165b95feb92b64d17cdd074e8c4fa68ad2591ab6df88c1b1ce2f0","sha512":"c779e9fbeed306c39833187e05f7bf5f2195be76b932c48404318bbdd097f84bc4c0c66bda232988ddcb5aeca85d8172f31c66646d93eb89b865c14ffc0c3a1d","ssdeep":"384:nME0d/Tg1fuRew674TSw/3SKpaa2CnxikhnTLI02:MBc1t4TS2uCxZhTLI02","tlshash":"19625cc0abe6841765ba970ee9a3623db1eef99b17c553f515410b02b50b30cda2073e","first_seen":"2025-02-26T18:29:17.86707Z","last_seen":"2026-05-31T04:01:43.167697Z","times_seen":109,"resource_available":false,"data":null}},"time_used":2901,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2901,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-27","alert":"Sinkholed","trigger":"aihypeyp.one","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}