Domain xflo.ai
United States
AMAZON-02
Software information

Vercel

tcp/443 tcp/80

  • MacOS file listing through .DS_Store file
    IP: 216.150.1.1
    Domain: xflo.ai
    Port: 443
    URL: https://xflo.ai
    First seen 2025-10-25 13:44
    Last seen 2025-12-27 08:01
    Open for 62 days
    Create report

  • Open service 216.150.1.1:443 · xflo.ai

    2026-01-09 20:19 

    HTTP/1.1 200 OK
Age: 0
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://vercel.live https://www.googletagmanager.com https://www.google-analytics.com https://consent.cookiebot.com https://consentcdn.cookiebot.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: https: blob: https://www.googletagmanager.com https://www.google-analytics.com; media-src 'self' https: blob:; font-src 'self' data:; connect-src 'self' https: wss: https://www.googletagmanager.com https://www.google-analytics.com; frame-src 'self' https://www.youtube.com https://player.vimeo.com https://staging-api.xflo.ai https://api.xflo.ai https://www.googletagmanager.com https://consentcdn.cookiebot.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self' https://xflocms.vercel.app;
Content-Type: text/html; charset=utf-8
Date: Fri, 09 Jan 2026 20:19:15 GMT
Link: </_next/static/media/f7aa21714c1c53f8-s.p.e3544bb0.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", </_next/static/chunks/d553bf6c06c93dbe.css?dpl=dpl_BHmHheokQ7BKDqeeP3YxbBgbkEkw>; rel=preload; as="style"
Permissions-Policy: camera=(), microphone=(), geolocation=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
X-Frame-Options: SAMEORIGIN
X-Matched-Path: /
X-Powered-By: Next.js
X-Vercel-Cache: MISS
X-Vercel-Id: fra1::iad1::htpsq-1767989955583-ca0f2d71d82a
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 216.150.1.1:443 · xflo.ai

    2026-01-02 23:20 

    HTTP/1.1 200 OK
Age: 0
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://vercel.live https://www.googletagmanager.com https://www.google-analytics.com https://consent.cookiebot.com https://consentcdn.cookiebot.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: https: blob: https://www.googletagmanager.com https://www.google-analytics.com; media-src 'self' https: blob:; font-src 'self' data:; connect-src 'self' https: wss: https://www.googletagmanager.com https://www.google-analytics.com; frame-src 'self' https://www.youtube.com https://player.vimeo.com https://staging-api.xflo.ai https://api.xflo.ai https://www.googletagmanager.com https://consentcdn.cookiebot.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self' https://xflocms.vercel.app;
Content-Type: text/html; charset=utf-8
Date: Fri, 02 Jan 2026 23:20:22 GMT
Link: </_next/static/media/f7aa21714c1c53f8-s.p.e3544bb0.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", </_next/static/chunks/d553bf6c06c93dbe.css?dpl=dpl_BHmHheokQ7BKDqeeP3YxbBgbkEkw>; rel=preload; as="style"
Permissions-Policy: camera=(), microphone=(), geolocation=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
X-Frame-Options: SAMEORIGIN
X-Matched-Path: /
X-Powered-By: Next.js
X-Vercel-Cache: MISS
X-Vercel-Id: lhr1::iad1::m9lkv-1767396022589-b13255606d33
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 66.33.60.66:443 · staging.xflo.ai

    2026-01-02 05:13 

    HTTP/1.1 307 Temporary Redirect
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, Authorization, X-CSRF-Token, X-Requested-With
Access-Control-Allow-Methods: GET,OPTIONS,PATCH,DELETE,POST,PUT
Access-Control-Allow-Origin: https://xflo.ai
Cache-Control: public, max-age=0, must-revalidate
Content-Type: text/plain
Date: Fri, 02 Jan 2026 05:13:46 GMT
Location: /auth/signin?from=%2F
Permissions-Policy: camera=(), microphone=(), geolocation=()
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vercel-Id: sfo1::d6mbp-1767330826045-8f95a85f6b83
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked


Redirecting...
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 76.76.21.142:80 · staging.xflo.ai

    2026-01-02 05:13 

    HTTP/1.0 308 Permanent Redirect
Content-Type: text/plain
Location: https://staging.xflo.ai/
Refresh: 0;url=https://staging.xflo.ai/
server: Vercel


Redirecting...
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 76.76.21.142:443 · staging.xflo.ai

    2026-01-02 05:13 

    HTTP/1.1 307 Temporary Redirect
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, Authorization, X-CSRF-Token, X-Requested-With
Access-Control-Allow-Methods: GET,OPTIONS,PATCH,DELETE,POST,PUT
Access-Control-Allow-Origin: https://xflo.ai
Cache-Control: public, max-age=0, must-revalidate
Content-Type: text/plain
Date: Fri, 02 Jan 2026 05:13:46 GMT
Location: /auth/signin?from=%2F
Permissions-Policy: camera=(), microphone=(), geolocation=()
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vercel-Id: lhr1::gcvp7-1767330826137-49f0ad6a565a
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked


Redirecting...
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 66.33.60.66:80 · staging.xflo.ai

    2026-01-02 05:13 

    HTTP/1.0 308 Permanent Redirect
Content-Type: text/plain
Location: https://staging.xflo.ai/
Refresh: 0;url=https://staging.xflo.ai/
server: Vercel


Redirecting...
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 216.150.1.1:443 · xflo.ai

    2025-12-23 07:56 

    HTTP/1.1 200 OK
Age: 0
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://vercel.live https://www.googletagmanager.com https://www.google-analytics.com https://consent.cookiebot.com https://consentcdn.cookiebot.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: https: blob: https://www.googletagmanager.com https://www.google-analytics.com; media-src 'self' https: blob:; font-src 'self' data:; connect-src 'self' https: wss: https://www.googletagmanager.com https://www.google-analytics.com; frame-src 'self' https://www.youtube.com https://player.vimeo.com https://staging-api.xflo.ai https://api.xflo.ai https://www.googletagmanager.com https://consentcdn.cookiebot.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self' https://xflocms.vercel.app;
Content-Type: text/html; charset=utf-8
Date: Tue, 23 Dec 2025 07:56:13 GMT
Link: </_next/static/media/f7aa21714c1c53f8-s.p.e3544bb0.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", </_next/static/chunks/405889fa4f26f369.css?dpl=dpl_7x2fTUU5pi95FFqR918UK8stKwRA>; rel=preload; as="style"
Permissions-Policy: camera=(), microphone=(), geolocation=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
X-Frame-Options: SAMEORIGIN
X-Matched-Path: /
X-Powered-By: Next.js
X-Vercel-Cache: MISS
X-Vercel-Id: sin1::iad1::qsbsj-1766476573323-5b09d0d25fa8
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked
    Found 2025-12-23 by HttpPlugin
    Create report

  • Open service 216.150.1.1:443 · xflo.ai

    2025-12-20 21:10 

    HTTP/1.1 200 OK
Age: 0
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://vercel.live https://www.googletagmanager.com https://www.google-analytics.com https://consent.cookiebot.com https://consentcdn.cookiebot.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: https: blob: https://www.googletagmanager.com https://www.google-analytics.com; media-src 'self' https: blob:; font-src 'self' data:; connect-src 'self' https: wss: https://www.googletagmanager.com https://www.google-analytics.com; frame-src 'self' https://www.youtube.com https://player.vimeo.com https://staging-api.xflo.ai https://api.xflo.ai https://www.googletagmanager.com https://consentcdn.cookiebot.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self' https://xflocms.vercel.app;
Content-Type: text/html; charset=utf-8
Date: Sat, 20 Dec 2025 21:10:05 GMT
Link: </_next/static/media/f7aa21714c1c53f8-s.p.e3544bb0.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", </_next/static/chunks/405889fa4f26f369.css?dpl=dpl_7x2fTUU5pi95FFqR918UK8stKwRA>; rel=preload; as="style"
Permissions-Policy: camera=(), microphone=(), geolocation=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
Referrer-Policy: strict-origin-when-cross-origin
Server: Vercel
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
X-Frame-Options: SAMEORIGIN
X-Matched-Path: /
X-Powered-By: Next.js
X-Vercel-Cache: MISS
X-Vercel-Id: fra1::iad1::mqvlt-1766265005281-cf587df95a40
X-Xss-Protection: 1; mode=block
Connection: close
Transfer-Encoding: chunked
    Found 2025-12-20 by HttpPlugin
    Create report
xflo.ai
Fingerprint:
2e84eb712b42059b1e7dd9732584bd16f0d6c3be57e33d789f0899619b6feb12
CN:
xflo.ai
Key:
RSA-2048
Issuer:
R13
Not before:
2025-12-25 15:54
Not after:
2026-03-25 15:54
staging.xflo.ai
Fingerprint:
929e59b9fc90c915c188dbb27345f32be9a9a86d85d1247ff005f5e0405d460d
CN:
staging.xflo.ai
Key:
RSA-2048
Issuer:
R12
Not before:
2025-11-02 09:28
Not after:
2026-01-31 09:28
xflo.ai
Fingerprint:
e3614bfe2b4cfd2d4064deea4dc300f37e31a064282138352f27585f7ddc13eb
CN:
xflo.ai
Key:
RSA-2048
Issuer:
R13
Not before:
2025-10-25 12:45
Not after:
2026-01-23 12:45
Domain summary

xflo.ai 4 staging.xflo.ai 3

2 recorded
IP summary

216.150.1.1 2 66.33.60.66 1 76.76.21.142 1

3 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice