{"report_id":"27b6e774-7b00-43a5-a0e2-8a3163f87eef","version":6,"status":"done","tags":[],"date":"2024-09-05T04:26:20Z","url":{"schema":"http","addr":"drnghx.blogspot.com/?m=1","fqdn":"drnghx.blogspot.com","domain":"drnghx.blogspot.com","tld":"blogspot.com"},"ip":{"addr":"142.250.74.65","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"fore-mining.top/payouts/","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"title":"Bitcoin Mining"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-28T22:32:21Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"images.unsplash.com","ip":{"addr":"151.101.2.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2013-05-29","domain_rank":4519,"first_seen":"2015-08-06 08:03:25","last_seen":"2024-09-04 19:03:08","alert_count":0,"request_count":5,"received_data":77917,"sent_data":2680,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-09-04 18:12:06","alert_count":0,"request_count":6,"received_data":5324,"sent_data":1962,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r11.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-07 07:43:57","last_seen":"2024-09-04 18:12:09","alert_count":0,"request_count":3,"received_data":2661,"sent_data":981,"comment":"","tags":null,"fingerprints":null},{"fqdn":"redlinkbits.top","ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"domain_registered":"2023-12-10","domain_rank":0,"first_seen":"2023-12-16 16:44:23","last_seen":"2024-04-12 23:36:02","alert_count":1,"request_count":1,"received_data":781,"sent_data":521,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fore-mining.top","ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"domain_registered":"2024-02-26","domain_rank":0,"first_seen":"2024-02-26 09:59:27","last_seen":"2024-02-26 22:45:42","alert_count":27,"request_count":27,"received_data":3925109,"sent_data":16626,"comment":"","tags":null,"fingerprints":null},{"fqdn":"api.coingecko.com","ip":{"addr":"172.67.12.83","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2014-03-26","domain_rank":17782,"first_seen":"2018-05-18 14:16:11","last_seen":"2024-09-04 20:06:24","alert_count":0,"request_count":2,"received_data":4172,"sent_data":1298,"comment":"","tags":null,"fingerprints":null},{"fqdn":"o.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":0,"first_seen":"2024-04-24 13:44:57","last_seen":"2024-09-04 18:12:03","alert_count":0,"request_count":2,"received_data":1398,"sent_data":650,"comment":"","tags":null,"fingerprints":null},{"fqdn":"drnghx.blogspot.com","ip":{"addr":"142.250.74.65","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":16062,"sent_data":478,"comment":"","tags":null,"fingerprints":null},{"fqdn":"spin0ff.xyz","ip":{"addr":"91.195.13.3","port":443,"asn":61251,"as":"Host4Biz sp. z o.o.","country":"Poland","country_code":"PL"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":630,"sent_data":1064,"comment":"","tags":null,"fingerprints":null},{"fqdn":"plus.unsplash.com","ip":{"addr":"151.101.194.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2013-05-29","domain_rank":0,"first_seen":"2022-07-20 16:55:10","last_seen":"2024-09-04 15:17:32","alert_count":0,"request_count":1,"received_data":14554,"sent_data":542,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"redlinkbits.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/visit.4c68a206.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"introduction_type":"importedModule","is_inline":false,"md5":"c7e3cb2df48145483231af7036ac2511","sha1":"557fa64be798741b3966edc1395ce6a08ae91186","sha256":"aa520d0866b7b49b642e4c85b6915e695a087f963e120cba2e91041de4a54010","sha512":"1b896694f8b2eb8f9ddcb802841bccc05238f5da1f087476194165a80c249d01dc34c26f57ae277a2bf9165332f082d2489f2bdc8864524b6f05ad17eac6e129","ssdeep":"","tlshash":"52f0e25150a47f3d84dde191217006f9873054f40b3347583979fed7e010883a538812","size":421,"data":"","first_seen":"2023-03-14T09:48:37Z","last_seen":"2026-05-02T11:16:19.884601Z","times_seen":14250,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/client-only.11dfce23.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"introduction_type":"importedModule","is_inline":false,"md5":"1b9370aaf1247adec1abae0a54fa2ec9","sha1":"992735adce31717f721d0570f206e24c2f8d6e6e","sha256":"8b9669ebd8a376e53af6be534e039dc797ac566c71b960f45f3f61726f568129","sha512":"50633109642c74bcd2aef7577fbe7f659a2e09433e558fd1b4cf7680eda31ae708ca23570317fe0373e4a1f865b2bc86e13965dd71d546b8431577664335a611","ssdeep":"","tlshash":"86f02edc7456e6b1a7a1da8582368e12497c1741280f55a1908ed7022247ca1c73d75c","size":468,"data":"","first_seen":"2023-03-14T09:48:37Z","last_seen":"2026-05-02T11:16:19.85069Z","times_seen":14182,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/index.b71f6f30.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"9eeeb4d4e651c91eca7a19503b465212","sha1":"24c5e02592c21f6f7181d1b3abb998ded5b61b56","sha256":"134b62d8677d19e752b03e19f80ea2bd0c4eea35badc7244139813cdf1379427","sha512":"fe070e34293f19e1e5bbbc8906c6606ac3faf9e544f70ab85f33f4a4276140bc88e6cf445ca0fca7e9c18746d22015990cc851208e63042c7a2546fd5d1316cc","ssdeep":"768:/3jfHKMx+EMGswuFDynTNdM5j7qjWo5N+B0B2Bgye+j9i:7fHtMGsnFGNSQ1SRi","tlshash":"98d23b2eb29097789af78854bcad7551b50c5f9ec213c0a7b9fcc92817e5c3c1b29368","size":29627,"data":"","first_seen":"2023-11-26T20:21:49Z","last_seen":"2026-05-02T11:16:19.852444Z","times_seen":13869,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/payouts/","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"239e20937c9b83519f188ec6b226ab2c","sha1":"06872a63571e104dab4a94fd87278515c6028c62","sha256":"247ab81ca503d580d97a436a1bf015f6202d4b85a3f2e9c744534c9cd44f3d54","sha512":"e2f462ac1b6b0a4103c402a2e9ab4e702afbceffdfe3cc04fa116afd11c39a54e73197b885aca55e5afea5853d3d774e4e75f49bda3ec35cb7f06f2ab6492006","ssdeep":"","tlshash":"18316d8b553ab5390051eca00b3e8f6513b87642a870443b3bcebcaf379344dda24b19","size":1668,"data":"","first_seen":"2024-01-13T10:19:49Z","last_seen":"2025-03-02T02:24:41.156857Z","times_seen":663,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/entry.4e713294.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"9f216b45554f9370cd00c5ea972125b4","sha1":"df8032566516debcb188a5986c3c2bc0cf5f90a7","sha256":"0c87cbcdbec33073dcbc00a43b06068ad538d7e187e3d723497fd10844b4805b","sha512":"3500e3e637ab0585d2e2fb18227ed83f476b57d71837887e7646e431db3584d35b8564214c4f5f76c8fb9fc39ac279aa94b11ad6a25dde33c3479801b963cbda","ssdeep":"49152:p4ibcQBIiYwBIiJ2XP0VTuQxTmfRmfznlnaeARMRuQhuHm6LdNsom3IaYxkPX:pHBjai/","tlshash":"1ef55ca459e62d3d47fc02dab4fb188c475c061eb006a449fdeb98de361c26b3097a7d","size":3594295,"data":"","first_seen":"2023-10-15T15:56:27Z","last_seen":"2025-11-01T02:44:48.682933Z","times_seen":670,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/OnlineUsers.13b0b975.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"introduction_type":"importedModule","is_inline":false,"md5":"318bb3d9407c5219c0d10faf3efb2fb3","sha1":"562dc2cdcd8754204be0ae7d4fc820a1dbc583a1","sha256":"1a21637c07b53055a9627efbe546551eada3aca036aa7b825204ae296e4aa9bb","sha512":"5bcbce71cb4d7528196d47178efe30664c3a970f4ed36f52eb4761824ce1b34f5a9cc9703be75fc64ad98b2334bfdb4a6ec1978e595f5f21d5cf355102f79d8b","ssdeep":"","tlshash":"7801238c3ba1c7f5b1d654233eea34510804b2375523844de208ca63ba87c6cfd08b28","size":638,"data":"","first_seen":"2023-03-14T09:48:37Z","last_seen":"2026-05-02T11:16:19.883752Z","times_seen":14252,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:52.173014778Z","timestamp":1725510352173,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"ED538EA400323F4C987F91C0B0AFC79A8526B62F7AA317DD62BD107CB37850A2\"\r\nLast-Modified: Tue, 03 Sep 2024 09:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4906\r\nExpires: Thu, 05 Sep 2024 05:47:38 GMT\r\nDate: Thu, 05 Sep 2024 04:25:52 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"8d2e6150f7d0845dc26f5bd5cd6f28dd","sha1":"6aad5091620585a5f76065c1888456ee70b88257","sha256":"ed538ea400323f4c987f91c0b0afc79a8526b62f7aa317dd62bd107cb37850a2","sha512":"dd2b8ba0eb764244c92b404bd053d75174a13127c61027fff0a538fa2d3375f480ee774bb73c01010e728b0f9ad66bc3dc9c6a1357e24ef34d10fb84b89bc9a1","ssdeep":"","tlshash":"31f0c0ba27ad7511adf1612025b4e83c2b546cfb74405aa874949041ed10ff8298241c","first_seen":"2024-09-03T15:32:51Z","last_seen":"2024-09-19T22:57:09.758778Z","times_seen":28107,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:52.247429194Z","timestamp":1725510352247,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"41C00088AFC20571F6A0C6998324D9517346256AC33696DC706192EC606FE7A7\"\r\nLast-Modified: Mon, 02 Sep 2024 12:20:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3651\r\nExpires: Thu, 05 Sep 2024 05:26:43 GMT\r\nDate: Thu, 05 Sep 2024 04:25:52 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"66fbf7f95cb55f388373a20d4b1a736e","sha1":"afc34259758a563362367848629ff7639982e1fb","sha256":"41c00088afc20571f6a0c6998324d9517346256ac33696dc706192ec606fe7a7","sha512":"80f0c1a3f29e795722e05ea6260e1ec92780f3f554ace63e7a0e4ad5d030be18b0cde8397bffc652a92306b23ba802aa8a0db463bac3a6827e645816bd5759a0","ssdeep":"","tlshash":"02f00e7956f2e6c3faf8112314a6ed606c227aab780021a279800ac239c67f6678545c","first_seen":"2024-09-02T19:20:57Z","last_seen":"2024-09-19T23:09:36.632755Z","times_seen":35846,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:52.550334864Z","timestamp":1725510352550,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"2EFF28E3E6829BF2CFCBC417FD76313D5B5E8BA8A3F0F0DE6A5B5CDC2888E7E5\"\r\nLast-Modified: Mon, 02 Sep 2024 14:34:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=11660\r\nExpires: Thu, 05 Sep 2024 07:40:12 GMT\r\nDate: Thu, 05 Sep 2024 04:25:52 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"1f0091b166a0138433eabf08a4530e4a","sha1":"769d1eeaefb4987198c821ea98e06ea8ba0de215","sha256":"2eff28e3e6829bf2cfcbc417fd76313d5b5e8ba8a3f0f0de6a5b5cdc2888e7e5","sha512":"364d524de90207f10545b2179829782e69bd266bbf207919deaadeb860795d7eb3208b252cf11c3a0012563ee5c90123a384f0a98780a90e6bbe017936f2cf5b","ssdeep":"","tlshash":"c7f00eba34e2a622b7f402a11978d43b6e30dfbcb82552f6a5c043e66c017b80540c4c","first_seen":"2024-09-03T06:12:03Z","last_seen":"2024-09-19T23:01:55.712232Z","times_seen":17078,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:52.695162695Z","timestamp":1725510352695,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 05 Sep 2024 04:25:52 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"1839e9fe507f4796d021b9479142d1c8","sha1":"b5e6392ee1cf5c31a8412746b79f1a37ff798513","sha256":"913460ae8972c69c7858124187bc3208e92e782b440a433aa6c25c847899e6ce","sha512":"fac6bb6e1ef731a374c91779ea917cdffe2e576b2379c484d3f681612863b8adf2b9bc7b71f5cad6356d7fb6aa7f2bfb917ee31fd2617a84351e2e6c91dc0095","ssdeep":"","tlshash":"c6f023e07bf43db0cf21aa876db8c65930106af910592a912136d1dd776b3f60f0c368","first_seen":"2024-09-04T20:30:30Z","last_seen":"2024-09-19T22:39:09.409234Z","times_seen":148,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:52.721674137Z","timestamp":1725510352721,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"2B2A41201A3881BD029AB7161BE291B23128D5952E5959092607B98C951FA18C\"\r\nLast-Modified: Mon, 02 Sep 2024 14:33:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13537\r\nExpires: Thu, 05 Sep 2024 08:11:29 GMT\r\nDate: Thu, 05 Sep 2024 04:25:52 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cabaaa7c3e6a621cc5836be05eee4924","sha1":"c4bc6288aed0597ff7ae2dbc5aea340b6c9636b8","sha256":"2b2a41201a3881bd029ab7161be291b23128d5952e5959092607b98c951fa18c","sha512":"7da36317a8c4f485281c503bcc03813f77f4339dd43124bdba3345414625f7dbb71911cd5eb19e1d4afb482b9ce0ffb5678bd41d4d5e6e77f56069bd2f99817d","ssdeep":"","tlshash":"a0f00efb12f33260dbf59d293989f23a0610ad9ebc2198e624c5d1cb9442fec408890c","first_seen":"2024-09-02T19:36:30Z","last_seen":"2024-09-19T23:09:22.854855Z","times_seen":22244,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"drnghx.blogspot.com/?m=1","fqdn":"drnghx.blogspot.com","domain":"drnghx.blogspot.com","tld":"blogspot.com"},"ip":{"addr":"142.250.74.65","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:52.985072271Z","timestamp":1725510352985,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /?m=1 HTTP/1.1\r\nHost: drnghx.blogspot.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\nexpires: Thu, 05 Sep 2024 04:25:52 GMT\r\ndate: Thu, 05 Sep 2024 04:25:52 GMT\r\ncache-control: private, max-age=0\r\nlast-modified: Wed, 04 Sep 2024 16:11:59 GMT\r\netag: W/\"c38363e37e05cfab55f8e55e3b1e4d52b298adfe999914c7f383a9e6122fe949\"\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 15570\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":15570,"size_decoded":74388,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (7912)","md5":"bd75f057e7b87123ce8c223367d33289","sha1":"f3b1dae6773f4883c7c319649089f85e3767b125","sha256":"ee50e590986d2babb672a9140b0651826c1533829320e55961ab850ead851670","sha512":"ab1de86fc84951880abae438dda02af3e66d18756d129365380b1a138a77995301ac8c03398d6b89215875bb945755f4580fa7d8cc25d3f47fb8a30352fc5f7b","ssdeep":"768:VU8VKl0VuwDUjKS2RaQUEtwXgwEpRNv+f5AfpUxnHeob4f1u0eJwO0H+UJFNUcFr:VUI6ntWK4D","tlshash":"cd73f97355623e0c92334c19b4d9ba8c3b18c463c1079aeeedbd662dc3cb9c65272769","first_seen":"2024-09-19T22:32:24.018662Z","last_seen":"2024-09-19T22:32:24.018662Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:53.168929467Z","timestamp":1725510353168,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 05 Sep 2024 04:25:53 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"1839e9fe507f4796d021b9479142d1c8","sha1":"b5e6392ee1cf5c31a8412746b79f1a37ff798513","sha256":"913460ae8972c69c7858124187bc3208e92e782b440a433aa6c25c847899e6ce","sha512":"fac6bb6e1ef731a374c91779ea917cdffe2e576b2379c484d3f681612863b8adf2b9bc7b71f5cad6356d7fb6aa7f2bfb917ee31fd2617a84351e2e6c91dc0095","ssdeep":"","tlshash":"c6f023e07bf43db0cf21aa876db8c65930106af910592a912136d1dd776b3f60f0c368","first_seen":"2024-09-04T20:30:30Z","last_seen":"2024-09-19T22:39:09.409234Z","times_seen":148,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:53.421376792Z","timestamp":1725510353421,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"C8C1D221DF1A6384E1C879574D34385CD5E3C11959F077A00816971B5AE12DCC\"\r\nLast-Modified: Mon, 02 Sep 2024 18:55:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3504\r\nExpires: Thu, 05 Sep 2024 05:24:17 GMT\r\nDate: Thu, 05 Sep 2024 04:25:53 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"9e39f3ea70683f852b169f0038a1df23","sha1":"05f9dca3eb4a4b7526b194dabd7f395d249ad539","sha256":"c8c1d221df1a6384e1c879574d34385cd5e3c11959f077a00816971b5ae12dcc","sha512":"350a5b8125e8feb3053e4003be13217d7d4fb03973119601a43476a1acc392e154fc514b0883b86fdd532df3c2542a114caf5211d2dba4d75f460ff4e5464bc4","ssdeep":"","tlshash":"55f095b916f75d105ef74d688c95e4731d383de83c5c92e14a4055aa755279c430844d","first_seen":"2024-09-03T00:48:42Z","last_seen":"2024-09-19T23:04:15.638103Z","times_seen":14,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"spin0ff.xyz/123/qq","fqdn":"spin0ff.xyz","domain":"spin0ff.xyz","tld":"xyz"},"ip":{"addr":"91.195.13.3","port":443,"asn":61251,"as":"Host4Biz sp. z o.o.","country":"Poland","country_code":"PL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-09-05T04:25:53.265Z","timestamp":1725510353265,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"spin0ff.xyz","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Thu, 22 Aug 2024 19:12:22 GMT","end":"Wed, 20 Nov 2024 19:12:21 GMT"},"fingerprint":{"sha1":"8D:C9:02:EE:00:0B:6D:35:0A:96:C0:11:AA:99:A2:05:86:DC:E1:02","sha256":"A3:2E:C5:CF:56:54:32:B0:ED:37:00:3B:C1:47:66:71:57:E3:CE:CE:61:41:A1:54:F9:8E:71:9F:C5:97:D9:FC"}}},"request":{"raw":"GET /123/qq HTTP/1.1\r\nHost: spin0ff.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://drnghx.blogspot.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Thu, 05 Sep 2024 04:25:53 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 0\r\naccess-control-allow-origin: *\r\nset-cookie: qwerty_123=0; expires=Fri, 06-Sep-2024 04:25:53 GMT; Max-Age=86400; path=/\r\nlocation: https://spin0ff.xyz/redirect.php\r\nx-cache-status: BYPASS\r\nx-powered-by: PHP/7.4.33, PleskLin\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-14T05:48:33.701861Z","times_seen":15152152,"resource_available":true,"data":null}},"time_used":544,"timings":{"blocked":158,"dns":83,"connect":27,"send":0,"wait":227,"receive":0,"ssl":46},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"spin0ff.xyz/redirect.php","fqdn":"spin0ff.xyz","domain":"spin0ff.xyz","tld":"xyz"},"ip":{"addr":"91.195.13.3","port":443,"asn":61251,"as":"Host4Biz sp. z o.o.","country":"Poland","country_code":"PL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-09-05T04:25:53.654Z","timestamp":1725510353654,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"spin0ff.xyz","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Thu, 22 Aug 2024 19:12:22 GMT","end":"Wed, 20 Nov 2024 19:12:21 GMT"},"fingerprint":{"sha1":"8D:C9:02:EE:00:0B:6D:35:0A:96:C0:11:AA:99:A2:05:86:DC:E1:02","sha256":"A3:2E:C5:CF:56:54:32:B0:ED:37:00:3B:C1:47:66:71:57:E3:CE:CE:61:41:A1:54:F9:8E:71:9F:C5:97:D9:FC"}}},"request":{"raw":"GET /redirect.php HTTP/1.1\r\nHost: spin0ff.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://drnghx.blogspot.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: qwerty_123=0\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Thu, 05 Sep 2024 04:25:53 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 0\r\nlocation: https://redlinkbits.top/go/5364y2/y2\r\nx-cache-status: BYPASS\r\nx-powered-by: PHP/7.4.33, PleskLin\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-14T05:48:33.701861Z","times_seen":15152152,"resource_available":true,"data":null}},"time_used":303,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":303,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:54.45025531Z","timestamp":1725510354450,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"D9F49B6D67BF402859AB76A7DDCE75EFA9BD95A5A386F1B01111D9B6CA1B838C\"\r\nLast-Modified: Wed, 04 Sep 2024 00:26:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3458\r\nExpires: Thu, 05 Sep 2024 05:23:32 GMT\r\nDate: Thu, 05 Sep 2024 04:25:54 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"f326f8db0383d91798c526ea906d96af","sha1":"045d7098148cefa16756179bfb890c316d26b494","sha256":"d9f49b6d67bf402859ab76a7ddce75efa9bd95a5a386f1b01111d9b6ca1b838c","sha512":"0304c6199b43f9a1710535f06945f1cc2e749fe28a236d2678318b86f5eb46b79fac33c2bb1b5e53461a3f28894bd1dc7277961aed693adc4ddad5b42f3636d3","ssdeep":"","tlshash":"1cf0d45f1e9d7d625b20183b99fee21819502a7e34cd1af091d441967910ff98f0ce0e","first_seen":"2024-09-04T08:37:58Z","last_seen":"2024-09-19T22:46:57.669425Z","times_seen":17,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"redlinkbits.top/go/5364y2/y2","fqdn":"redlinkbits.top","domain":"redlinkbits.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-09-05T04:25:53.963Z","timestamp":1725510353963,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"redlinkbits.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Tue, 27 Aug 2024 10:42:49 GMT","end":"Mon, 25 Nov 2024 10:42:48 GMT"},"fingerprint":{"sha1":"F5:90:F0:B6:BB:49:B7:3E:CB:B9:D8:7B:CB:28:C5:DA:FE:21:8C:F9","sha256":"93:DE:3C:48:78:4F:01:95:74:01:AB:F3:31:9F:1B:9F:5E:EB:70:A3:BB:72:95:3E:C3:68:5B:1A:C1:F4:0F:B4"}}},"request":{"raw":"GET /go/5364y2/y2 HTTP/1.1\r\nHost: redlinkbits.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://drnghx.blogspot.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:54 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Sun, 01 Jan 2014 00:00:00 GMT\r\nPragma: no-cache\r\nSet-Cookie: PHPSESSID=avj1pbapshit15lo93v711sabt; expires=Thu, 05-Nov-2043 04:25:54 GMT; Max-Age=604800000; path=/; domain=redlinkbits.top\nofr_1=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D; expires=Sun, 06-Oct-2024 04:25:54 GMT; Max-Age=2678400; path=/; domain=redlinkbits.top\r\nLocation: https://fore-mining.top/payouts/?b=YTo0OntzOjU6ImxhYmVsIjtzOjA6IiI7czozOiJ1c3IiO2k6ODA0O3M6NDoibm9wZCI7czoxNToicmVkbGlua2JpdHMudG9wIjtzOjE6Im8iO2k6MTt9\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-14T05:48:33.701861Z","times_seen":15152152,"resource_available":true,"data":null}},"time_used":1061,"timings":{"blocked":488,"dns":348,"connect":63,"send":0,"wait":84,"receive":1,"ssl":74},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"redlinkbits.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:54.651051207Z","timestamp":1725510354651,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"DD8F73D55D492AD4E3FC3915C05ECFC6883F124C050DDED51F4E43292E6B8C2A\"\r\nLast-Modified: Mon, 02 Sep 2024 14:38:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=7479\r\nExpires: Thu, 05 Sep 2024 06:30:33 GMT\r\nDate: Thu, 05 Sep 2024 04:25:54 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c96a4972e341191f93e963880196f8e1","sha1":"8318aa6dcbdababe8728023ec9ef3aaac10917a9","sha256":"dd8f73d55d492ad4e3fc3915c05ecfc6883f124c050dded51f4e43292e6b8c2a","sha512":"421ac0df88874013ca3d60effb579ccd6e51ef8474cd8656e2632446e6706ce125bd3044bf5ed5826ba1bc65a9b4464617a17758a343c993914c3b07368940cb","ssdeep":"","tlshash":"16f00eb326717a418cf84c21d8cac02e0e28777d058341670a169af36aa17fe150040c","first_seen":"2024-09-02T19:32:31Z","last_seen":"2024-09-19T23:09:22.857014Z","times_seen":21388,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:54.652727037Z","timestamp":1725510354652,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"DD8F73D55D492AD4E3FC3915C05ECFC6883F124C050DDED51F4E43292E6B8C2A\"\r\nLast-Modified: Mon, 02 Sep 2024 14:38:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=7479\r\nExpires: Thu, 05 Sep 2024 06:30:33 GMT\r\nDate: Thu, 05 Sep 2024 04:25:54 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c96a4972e341191f93e963880196f8e1","sha1":"8318aa6dcbdababe8728023ec9ef3aaac10917a9","sha256":"dd8f73d55d492ad4e3fc3915c05ecfc6883f124c050dded51f4e43292e6b8c2a","sha512":"421ac0df88874013ca3d60effb579ccd6e51ef8474cd8656e2632446e6706ce125bd3044bf5ed5826ba1bc65a9b4464617a17758a343c993914c3b07368940cb","ssdeep":"","tlshash":"16f00eb326717a418cf84c21d8cac02e0e28777d058341670a169af36aa17fe150040c","first_seen":"2024-09-02T19:32:31Z","last_seen":"2024-09-19T23:09:22.857014Z","times_seen":21388,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-05T04:25:54.701384251Z","timestamp":1725510354701,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"3811CF506890FDD82B606620A7E2364727BB8B0A6CC6283CA80AE82A8DA92DB3\"\r\nLast-Modified: Wed, 04 Sep 2024 12:20:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3466\r\nExpires: Thu, 05 Sep 2024 05:23:40 GMT\r\nDate: Thu, 05 Sep 2024 04:25:54 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"21c28dcc8a8afcbe07aefd13702082f9","sha1":"76d9d922169bc19ec566e9b48517198a78208f52","sha256":"3811cf506890fdd82b606620a7e2364727bb8b0a6cc6283ca80ae82a8da92db3","sha512":"49525f196fe25381420a5dded6e086338018434d85699ca58f73514e6da4518941ea27648c843b8fa554afadd7bf6ccf203c73294c631ff833ff95dd7f0a2a90","ssdeep":"","tlshash":"98f00ebb15f5bf20e2b229027df8dd382c10abdd7c004990529060a1bf1b7f8e54498c","first_seen":"2024-09-05T01:24:28Z","last_seen":"2024-09-19T22:35:37.758136Z","times_seen":8,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/payouts/?b=YTo0OntzOjU6ImxhYmVsIjtzOjA6IiI7czozOiJ1c3IiO2k6ODA0O3M6NDoibm9wZCI7czoxNToicmVkbGlua2JpdHMudG9wIjtzOjE6Im8iO2k6MTt9","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-09-05T04:25:54.541Z","timestamp":1725510354541,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /payouts/?b=YTo0OntzOjU6ImxhYmVsIjtzOjA6IiI7czozOiJ1c3IiO2k6ODA0O3M6NDoibm9wZCI7czoxNToicmVkbGlua2JpdHMudG9wIjtzOjE6Im8iO2k6MTt9 HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://drnghx.blogspot.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:54 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 0\r\nConnection: keep-alive\r\nSet-Cookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D; expires=Sun, 06-Oct-2024 04:25:54 GMT; Max-Age=2678400; path=/; domain=fore-mining.top\r\nLocation: http://fore-mining.top/payouts/\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-14T05:48:33.701861Z","times_seen":15152152,"resource_available":true,"data":null}},"time_used":391,"timings":{"blocked":161,"dns":3,"connect":67,"send":0,"wait":70,"receive":0,"ssl":86},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/payouts/","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-09-05T04:25:54.899Z","timestamp":1725510354899,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /payouts/ HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:54 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLocation: https://fore-mining.top:443/payouts/\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":169,"size_decoded":169,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"84855c13836b389d5ec7cfd4c9266173","sha1":"1cf3056ff23c4176fd7ca9816a000ed461d6d323","sha256":"502083c916ae481cdd413b8d93315300653df5fb3dcc5770c01991de19977eae","sha512":"2479112004884d42d4ffe1174dc358c5d1b0fa2b41641d32f2fb67539c4f834d63cfbbf7e98c63b9a64e49b26390c410bb7e50f1ad4a755f32d081367af05fcb","ssdeep":"","tlshash":"ffc012a9ab022ca8a8a73b3860c3a0a0e2ec906022d9491101a0060bb18b1979ec2391","first_seen":"2023-04-05T04:42:14Z","last_seen":"2025-03-02T02:24:41.12819Z","times_seen":4478,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":72,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/payouts/","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-09-05T04:25:54.899Z","timestamp":1725510354899,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /payouts/ HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:54 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":776,"size_decoded":2344,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (425)","md5":"5a69b2aa81a99c305237e568ccc9719f","sha1":"8fd4b9b80a0056f3e8bd1835fe52c903c5f8cf60","sha256":"4e7a65ebfa5cce2b4e62d1fd531ac5172a3806e2c670ddb8cefc499240ca5213","sha512":"2b3abe7d1a0af2833ee76d0444121b92d03cffb57b294be0eee3bce413e6343ada211f131421c6c8015a0271048be6532fc71afee34261da7b7cccf3e0085793","ssdeep":"","tlshash":"5e41ac491439b53d0010b5240f7eab19137d7a939c7868763bce7aaa5f8b54ecc30f09","first_seen":"2024-01-13T10:19:49Z","last_seen":"2025-03-02T02:24:41.128773Z","times_seen":669,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":72,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/entry.816a5a0f.css","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:55.209Z","timestamp":1725510355209,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /_nuxt/entry.816a5a0f.css HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:55 GMT\r\nContent-Type: text/css\r\nContent-Length: 49997\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-c34d\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":49997,"size_decoded":49997,"mime_type":"text/css","magic":"ASCII text, with very long lines (49996)","md5":"a3ec7f83dfc6f1a0b43babe4e72d86ab","sha1":"b759686938891eebffcfa01b2a49914bded151cd","sha256":"816a5a0f5b2b5e79d25af268686381bfd7f2d7db7e04c59adc55731d13b67812","sha512":"5242dfb5c7e34efc85c339462575bd1de4b638620ada3d3c7e7ad4c2bb1f2367f3bc98d9f253c7f89e0f854a94edc3c46daf0a333b6cf5ba9ced311923600791","ssdeep":"384:ck7EOqwt5RcEqBkPEp3Nlaj6IEdMLhU0GT4P4mJFiRMaBh0qdX:4wR9qB5QUWJFiRMaBTd","tlshash":"b423722eea65003f6c2795e6c6e8b9aca11ab1c0de3b16e7bd4321118fd53f60c67524","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-02T11:16:19.871838Z","times_seen":15456,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":127,"receive":64,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/entry.4e713294.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:55.211Z","timestamp":1725510355211,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /_nuxt/entry.4e713294.js HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:55 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 3594295\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-36d837\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3594295,"size_decoded":3594295,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"9f216b45554f9370cd00c5ea972125b4","sha1":"df8032566516debcb188a5986c3c2bc0cf5f90a7","sha256":"0c87cbcdbec33073dcbc00a43b06068ad538d7e187e3d723497fd10844b4805b","sha512":"3500e3e637ab0585d2e2fb18227ed83f476b57d71837887e7646e431db3584d35b8564214c4f5f76c8fb9fc39ac279aa94b11ad6a25dde33c3479801b963cbda","ssdeep":"49152:p4ibcQBIiYwBIiJ2XP0VTuQxTmfRmfznlnaeARMRuQhuHm6LdNsom3IaYxkPX:pHBjai/","tlshash":"1ef55ca459e62d3d47fc02dab4fb188c475c061eb006a449fdeb98de361c26b3097a7d","first_seen":"2023-10-15T15:56:27Z","last_seen":"2025-11-01T02:44:48.682933Z","times_seen":670,"resource_available":true,"data":null}},"time_used":946,"timings":{"blocked":124,"dns":1,"connect":58,"send":0,"wait":116,"receive":579,"ssl":64},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/index.b71f6f30.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.429Z","timestamp":1725510356429,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /_nuxt/index.b71f6f30.js HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/_nuxt/entry.4e713294.js\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:56 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 29627\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-73bb\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":29627,"size_decoded":29627,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (29624)","md5":"9eeeb4d4e651c91eca7a19503b465212","sha1":"24c5e02592c21f6f7181d1b3abb998ded5b61b56","sha256":"134b62d8677d19e752b03e19f80ea2bd0c4eea35badc7244139813cdf1379427","sha512":"fe070e34293f19e1e5bbbc8906c6606ac3faf9e544f70ab85f33f4a4276140bc88e6cf445ca0fca7e9c18746d22015990cc851208e63042c7a2546fd5d1316cc","ssdeep":"768:/3jfHKMx+EMGswuFDynTNdM5j7qjWo5N+B0B2Bgye+j9i:7fHtMGsnFGNSQ1SRi","tlshash":"98d23b2eb29097789af78854bcad7551b50c5f9ec213c0a7b9fcc92817e5c3c1b29368","first_seen":"2023-11-26T20:21:49Z","last_seen":"2026-05-02T11:16:19.852444Z","times_seen":13869,"resource_available":true,"data":null}},"time_used":122,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":61,"receive":61,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/favicon.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.530Z","timestamp":1725510356530,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 1169\r\nLast-Modified: Fri, 02 Aug 2024 05:19:32 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c64-491\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1169,"size_decoded":1169,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit colormap, non-interlaced","md5":"d0ab0fb79e2687c9773cfa4018595dbd","sha1":"d79836a5df12dae77b9cfb0c34e382b6257bdd94","sha256":"f1cacb91db22e156f7f11cf755ab73bcaf30c058efe51b398cb425482113f411","sha512":"1283b86a01b8121f9f86f15d6bcc19fbef8c3670d992aee3915d0be7b215eaaac2b9527df1f6675e4ea3a2f417b6c73661814e0cc71320dd0baf39420f5cab83","ssdeep":"","tlshash":"9921a7a771a9a718a9885066b3a3b645a379c02642847c8ffd4b80368965d8a9401adb","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-02T11:16:19.86867Z","times_seen":15657,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":22,"dns":0,"connect":0,"send":0,"wait":64,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/OnlineUsers.13b0b975.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.561Z","timestamp":1725510356561,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /_nuxt/OnlineUsers.13b0b975.js HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/_nuxt/index.b71f6f30.js\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:56 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 638\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-27e\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":638,"size_decoded":638,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (637)","md5":"318bb3d9407c5219c0d10faf3efb2fb3","sha1":"562dc2cdcd8754204be0ae7d4fc820a1dbc583a1","sha256":"1a21637c07b53055a9627efbe546551eada3aca036aa7b825204ae296e4aa9bb","sha512":"5bcbce71cb4d7528196d47178efe30664c3a970f4ed36f52eb4761824ce1b34f5a9cc9703be75fc64ad98b2334bfdb4a6ec1978e595f5f21d5cf355102f79d8b","ssdeep":"","tlshash":"7801238c3ba1c7f5b1d654233eea34510804b2375523844de208ca63ba87c6cfd08b28","first_seen":"2023-03-14T09:48:37Z","last_seen":"2026-05-02T11:16:19.883752Z","times_seen":14252,"resource_available":true,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":61,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/visit.4c68a206.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.564Z","timestamp":1725510356564,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /_nuxt/visit.4c68a206.js HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/_nuxt/index.b71f6f30.js\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:56 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 421\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-1a5\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":421,"size_decoded":421,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (420)","md5":"c7e3cb2df48145483231af7036ac2511","sha1":"557fa64be798741b3966edc1395ce6a08ae91186","sha256":"aa520d0866b7b49b642e4c85b6915e695a087f963e120cba2e91041de4a54010","sha512":"1b896694f8b2eb8f9ddcb802841bccc05238f5da1f087476194165a80c249d01dc34c26f57ae277a2bf9165332f082d2489f2bdc8864524b6f05ad17eac6e129","ssdeep":"","tlshash":"52f0e25150a47f3d84dde191217006f9873054f40b3347583979fed7e010883a538812","first_seen":"2023-03-14T09:48:37Z","last_seen":"2026-05-02T11:16:19.884601Z","times_seen":14250,"resource_available":true,"data":null}},"time_used":115,"timings":{"blocked":52,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/client-only.11dfce23.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.566Z","timestamp":1725510356566,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /_nuxt/client-only.11dfce23.js HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/_nuxt/index.b71f6f30.js\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:56 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 468\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-1d4\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":468,"size_decoded":468,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (467)","md5":"1b9370aaf1247adec1abae0a54fa2ec9","sha1":"992735adce31717f721d0570f206e24c2f8d6e6e","sha256":"8b9669ebd8a376e53af6be534e039dc797ac566c71b960f45f3f61726f568129","sha512":"50633109642c74bcd2aef7577fbe7f659a2e09433e558fd1b4cf7680eda31ae708ca23570317fe0373e4a1f865b2bc86e13965dd71d546b8431577664335a611","ssdeep":"","tlshash":"86f02edc7456e6b1a7a1da8582368e12497c1741280f55a1908ed7022247ca1c73d75c","first_seen":"2023-03-14T09:48:37Z","last_seen":"2026-05-02T11:16:19.85069Z","times_seen":14182,"resource_available":true,"data":null}},"time_used":114,"timings":{"blocked":56,"dns":0,"connect":0,"send":0,"wait":58,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/payouts/img/bonus.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.751Z","timestamp":1725510356751,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /payouts/img/bonus.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 179335\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-2bc87\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":179335,"size_decoded":179335,"mime_type":"image/png","magic":"PNG image data, 453 x 452, 8-bit/color RGBA, non-interlaced","md5":"cdaa7a9b79f2a5c45b869e02449e7a3b","sha1":"2162a1a083ed2e39d7095e74e5fa6af4c5118d5d","sha256":"9b63e525a10bf17284925abba402aa3fd935d24a063f1fd332a95dc925d76968","sha512":"a47d527da6b881b5064d107469f962ccd3602ecceadbd132a280ee564ab230a81ae49e6ddcaf00469722a244ef6a7666ab8c8eea2adee7f75aa811ddc9ce2378","ssdeep":"3072:CZCxvEPVVwKUKLHZzMUoNJOPExDtQBPPq316QQ2+9NBy4/lYBPWKsIQGooAIHen:CZcvYVHUUSA4BUsEQfU/lYBPrAHoAI6","tlshash":"fe0423e1e68c21e0cc39fc2f5421ed699b29d455a4b4afc41a54bdd722c8cceadd43d0","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-02T11:16:19.826572Z","times_seen":14308,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":60,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"images.unsplash.com/photo-1672456465401-7ba2598de4c2?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80","fqdn":"images.unsplash.com","domain":"unsplash.com","tld":"com"},"ip":{"addr":"151.101.2.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.779Z","timestamp":1725510356779,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"images.unsplash.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q4","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 07 Dec 2023 01:14:14 GMT","end":"Tue, 07 Jan 2025 01:14:13 GMT"},"fingerprint":{"sha1":"BF:67:10:BA:79:03:BE:CD:51:C3:B7:BF:E5:3B:98:79:82:3C:B9:99","sha256":"8A:0D:48:C2:70:CA:08:9C:55:D7:33:4D:EB:CA:E5:A3:5B:11:2D:C5:CB:6F:1E:C1:BA:7D:35:A8:1A:E9:99:72"}}},"request":{"raw":"GET /photo-1672456465401-7ba2598de4c2?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80 HTTP/1.1\r\nHost: images.unsplash.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-imgix-id: 6cff5d18150d7876b876bd0608f43e2f23bc16f4\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sat, 27 Jul 2024 08:06:19 GMT\r\nserver: imgix\r\ndate: Thu, 05 Sep 2024 04:25:56 GMT\r\nage: 3442776\r\naccept-ranges: bytes\r\ncontent-type: image/avif\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nx-served-by: cache-sjc1000110-SJC, cache-fra-etou8220062-FRA, cache-hel1410029-HEL\r\nx-cache: HIT, HIT, HIT\r\nvary: Accept, User-Agent\r\ncontent-length: 19973\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19973,"size_decoded":19973,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"549e7547da0fafbd2e03b9b2ca862c2b","sha1":"c94c728ace0f424caae9d0804bcf40fe7e73f36e","sha256":"de22661a5aad51215203bd79e07e1da3527726339e7a4fa504c8775f38de49ad","sha512":"d4114eed473a8df65f1c9f1578049bd7a6b3b77de5e316c505a142d4665eb2d7457bdac73399485d95102f2ebb07a012f8250565aa89172df1d946019b7a9b96","ssdeep":"384:aYNg7/I2UpKfKG2m+8UIu5BkoJeTmNwTJtuONtzyEBK2Ped+:aYyM4fp2VVJeaN6ZrWuPed+","tlshash":"2592d05c896f9293cab4d67cf4e007bcb107ab0c83a3b1539a452e5d217b6921a0d0ab","first_seen":"2024-04-04T21:29:50Z","last_seen":"2025-11-22T18:49:43.084888Z","times_seen":13639,"resource_available":false,"data":null}},"time_used":277,"timings":{"blocked":127,"dns":43,"connect":13,"send":0,"wait":14,"receive":6,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images.unsplash.com/photo-1674490364497-ee1f32e4cb4c?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80","fqdn":"images.unsplash.com","domain":"unsplash.com","tld":"com"},"ip":{"addr":"151.101.2.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.781Z","timestamp":1725510356781,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"images.unsplash.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q4","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 07 Dec 2023 01:14:14 GMT","end":"Tue, 07 Jan 2025 01:14:13 GMT"},"fingerprint":{"sha1":"BF:67:10:BA:79:03:BE:CD:51:C3:B7:BF:E5:3B:98:79:82:3C:B9:99","sha256":"8A:0D:48:C2:70:CA:08:9C:55:D7:33:4D:EB:CA:E5:A3:5B:11:2D:C5:CB:6F:1E:C1:BA:7D:35:A8:1A:E9:99:72"}}},"request":{"raw":"GET /photo-1674490364497-ee1f32e4cb4c?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80 HTTP/1.1\r\nHost: images.unsplash.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-imgix-id: 8f8552b8e13694a6949e2c2a38b69f47498f7638\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 03 Jul 2024 17:32:52 GMT\r\nserver: imgix\r\ndate: Thu, 05 Sep 2024 04:25:56 GMT\r\nage: 5482385\r\naccept-ranges: bytes\r\ncontent-type: image/avif\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nx-served-by: cache-sjc1000133-SJC, cache-fra-eddf8230047-FRA, cache-hel1410029-HEL\r\nx-cache: HIT, HIT, HIT\r\nvary: Accept, User-Agent\r\ncontent-length: 8273\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8273,"size_decoded":8273,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"ec4b073614a51c1f725fce8e8d604212","sha1":"78d92252aaebc3a81cb72ccb56358299531fe464","sha256":"412a29cbc2ed4ffab295396c8fe411672785968ef9d514191d493b6b388953ae","sha512":"b07b78f1a70b1dc497c65e3d067e40f05bdb95c6012a509b194975c7a257c845151bd969db09eae5cbdd6a24d89fec2a0ff878e2418a19a9bf48b212dcdefb1b","ssdeep":"192:+0AsoYNMtKw/TK24y33AGgw0PieUWUIpWYk0:kYNg7/TRLnTg9PdUWZH","tlshash":"38029ebd9716e420d6e9923919e54b99b2d3b03cf312d35f2184ef25098d0d64f8f546","first_seen":"2024-04-08T09:09:15Z","last_seen":"2025-11-28T14:59:04.433004Z","times_seen":13642,"resource_available":false,"data":null}},"time_used":279,"timings":{"blocked":125,"dns":42,"connect":19,"send":0,"wait":20,"receive":6,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images.unsplash.com/photo-1674502374937-391815503667?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80","fqdn":"images.unsplash.com","domain":"unsplash.com","tld":"com"},"ip":{"addr":"151.101.2.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.783Z","timestamp":1725510356783,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"images.unsplash.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q4","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 07 Dec 2023 01:14:14 GMT","end":"Tue, 07 Jan 2025 01:14:13 GMT"},"fingerprint":{"sha1":"BF:67:10:BA:79:03:BE:CD:51:C3:B7:BF:E5:3B:98:79:82:3C:B9:99","sha256":"8A:0D:48:C2:70:CA:08:9C:55:D7:33:4D:EB:CA:E5:A3:5B:11:2D:C5:CB:6F:1E:C1:BA:7D:35:A8:1A:E9:99:72"}}},"request":{"raw":"GET /photo-1674502374937-391815503667?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80 HTTP/1.1\r\nHost: images.unsplash.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-imgix-id: 3014bf6deb7c939ec5b873a872cf775dc3f4505a\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 28 Jul 2024 07:57:18 GMT\r\nserver: imgix\r\ndate: Thu, 05 Sep 2024 04:25:56 GMT\r\nage: 3356920\r\naccept-ranges: bytes\r\ncontent-type: image/avif\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nx-served-by: cache-sjc1000114-SJC, cache-chi-kigq8000118-CHI, cache-fra-eddf8230024-FRA, cache-hel1410029-HEL\r\nx-cache: HIT, HIT, HIT, HIT\r\nvary: Accept, User-Agent\r\ncontent-length: 16746\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16746,"size_decoded":16746,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"e81b4d123b08935a977e36b977d98169","sha1":"7586f14e4fc906f4ac17ad40d00c5c6de51495b0","sha256":"26d169ff03a742dfb99ace5e3bb48972aea95438c8cb3f8eb25feb9700cb1f34","sha512":"5421490985d20b280785091e94d4c65e7697cc287449b72bd822fc34de06ffb24317187ed86d464b60a0782018e7d2d315c307fb49479625c4a266679b46cb5c","ssdeep":"384:+YNg7/Fj7ajAV1HUZ6FR0KR6EYZVdFPtkaxahxgcCbS4f:+Yy5j7d1eGR0KfYXSaKgcx4f","tlshash":"0b72d0397aa5edb6fa6ad3fe14f2b66fd7d0a52bc311f4467860230103401a12e4e92d","first_seen":"2024-03-28T08:15:30Z","last_seen":"2025-11-16T14:58:51.202986Z","times_seen":13641,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":129,"dns":41,"connect":30,"send":0,"wait":21,"receive":3,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images.unsplash.com/photo-1599566150163-29194dcaad36?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80","fqdn":"images.unsplash.com","domain":"unsplash.com","tld":"com"},"ip":{"addr":"151.101.2.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.784Z","timestamp":1725510356784,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"images.unsplash.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q4","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 07 Dec 2023 01:14:14 GMT","end":"Tue, 07 Jan 2025 01:14:13 GMT"},"fingerprint":{"sha1":"BF:67:10:BA:79:03:BE:CD:51:C3:B7:BF:E5:3B:98:79:82:3C:B9:99","sha256":"8A:0D:48:C2:70:CA:08:9C:55:D7:33:4D:EB:CA:E5:A3:5B:11:2D:C5:CB:6F:1E:C1:BA:7D:35:A8:1A:E9:99:72"}}},"request":{"raw":"GET /photo-1599566150163-29194dcaad36?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80 HTTP/1.1\r\nHost: images.unsplash.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-imgix-id: 5eb8452a7abd2a17edbe6a610616d55f81fc8fb0\r\ncache-control: public, max-age=31536000\r\nlast-modified: Fri, 16 Aug 2024 19:10:14 GMT\r\nserver: imgix\r\ndate: Thu, 05 Sep 2024 04:25:56 GMT\r\nage: 1674943\r\naccept-ranges: bytes\r\ncontent-type: image/avif\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nx-served-by: cache-chi-klot8100167-CHI, cache-fra-etou8220055-FRA, cache-hel1410029-HEL\r\nx-cache: HIT, HIT, HIT\r\nvary: Accept, User-Agent\r\ncontent-length: 14484\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14484,"size_decoded":14484,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"634f7a129d0a02122009c07b0fdb53d8","sha1":"96e16ce42223c6448b6f988059f61526270b4745","sha256":"a6b313b884672d146deabf2d311f04b513fcaa73a537fdc3441ea05eb3d012e9","sha512":"54979747094cc786ecef794d479947413ed00231aa4544079da63d3bf04a45fa64fb68d4304c1536998222ee908b2111dd677bdc868161b135a2e03d95eba55f","ssdeep":"384:UYNg7/HQ+OFbCS1AiK1ov6kxXQ/yBEs5H:UYy76uWjK1KjBQ/yv5H","tlshash":"1452bfbafd09e1a2ddaac8f075e27f7565927218e37366a23451aa3806005d62e094cf","first_seen":"2024-04-04T21:29:50Z","last_seen":"2025-12-09T18:57:44.645593Z","times_seen":13642,"resource_available":false,"data":null}},"time_used":295,"timings":{"blocked":133,"dns":38,"connect":30,"send":0,"wait":19,"receive":6,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/payouts/img/bitcoin.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.875Z","timestamp":1725510356875,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /payouts/img/bitcoin.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 25437\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-635d\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25437,"size_decoded":25437,"mime_type":"image/png","magic":"PNG image data, 126 x 127, 8-bit/color RGBA, non-interlaced","md5":"dd81b4a670bf3c3dd0034b0c0a03234d","sha1":"6eccd5f254ab4988ffd2f4f89289b16041d61f22","sha256":"d77369aa7567af2889718639538e0140ce999433bca0a41a6ea291a985490f97","sha512":"b2596b0621ecce3fdd1e4123bce61bcc9ba7fa135f63e0d085a399e857b5a484d0dc95d29c864cacec842767375fad4d2c27c73a92332e374a00a07fcaa69126","ssdeep":"384:1mFF8KbOIVRNW8+7u8dTAh9wWWXVGKtWfpBVlx7eLEvdnuomWF8xPZSY+cFZWWfN:1mrxDRNW8+y8ZKmVmfpXHZuolF8hRRZv","tlshash":"12b2e12b61ead8863a923dcee551a5d3d141df0f411b38032ef66dc5b1406de2dd65cc","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-02T11:16:19.842911Z","times_seen":14383,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":65,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"plus.unsplash.com/premium_photo-1673507503135-79a58e3ece0d?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80","fqdn":"plus.unsplash.com","domain":"unsplash.com","tld":"com"},"ip":{"addr":"151.101.194.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.771Z","timestamp":1725510356771,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"plus.unsplash.com","organization":""},"issuer":{"commonName":"Certainly Intermediate R1","organization":"Certainly"},"validity":{"start":"Wed, 04 Sep 2024 06:57:40 GMT","end":"Fri, 04 Oct 2024 06:57:39 GMT"},"fingerprint":{"sha1":"80:16:36:76:90:59:7C:00:3A:C5:A4:47:BE:7A:0B:14:63:DD:DE:71","sha256":"41:F6:25:86:16:56:94:E7:6E:CF:4D:64:40:98:C5:7C:E7:19:FF:98:42:1F:BA:9B:6C:24:48:24:2A:EA:A6:5C"}}},"request":{"raw":"GET /premium_photo-1673507503135-79a58e3ece0d?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80 HTTP/1.1\r\nHost: plus.unsplash.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-imgix-id: cfd267a1c137131a3aa01306a2d41e6aa28e2acc\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 12 Aug 2024 19:48:04 GMT\r\nserver: imgix\r\ndate: Thu, 05 Sep 2024 04:25:56 GMT\r\nage: 2018273\r\naccept-ranges: bytes\r\ncontent-type: image/avif\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nx-served-by: cache-chi-kigq8000047-CHI, cache-fra-eddf8230096-FRA, cache-hel1410028-HEL\r\nx-cache: HIT, HIT, HIT\r\nvary: Accept, User-Agent\r\ncontent-length: 13969\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13969,"size_decoded":13969,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"6f133c5e20165d7c03980d9e2c2b7d99","sha1":"d28a5e873c6361e930418f81bba0df3313c21053","sha256":"1911e537ed595e53afb3c4c7eac2259633b92db5ff47c0fd58dcdf1509ffa3f4","sha512":"180ac8897d6e25b27f524c979c6a6fb93ef20a36e8af9c04a44f9e73aff75ed3c9f2ae9ff0d9481d4ecd78de20376399da23ebe1c5a80ba0f559a87556f6277f","ssdeep":"384:HYNg7/qQ13tq3HH21YS0gsvKVFoUT2hIPYDJuGX/VY:HYy+Q1dq3HHS2i3veIPYDJ19Y","tlshash":"4252c038b7e7ca63ea6cc43425f0bb4623e3f224b36075d61055be5b8a82649778e5c1","first_seen":"2024-05-10T09:27:40Z","last_seen":"2025-02-06T09:09:43.066698Z","times_seen":824,"resource_available":false,"data":null}},"time_used":336,"timings":{"blocked":152,"dns":48,"connect":31,"send":0,"wait":27,"receive":4,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images.unsplash.com/photo-1671116807928-2963fe1e75c1?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80","fqdn":"images.unsplash.com","domain":"unsplash.com","tld":"com"},"ip":{"addr":"151.101.2.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.778Z","timestamp":1725510356778,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"images.unsplash.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q4","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 07 Dec 2023 01:14:14 GMT","end":"Tue, 07 Jan 2025 01:14:13 GMT"},"fingerprint":{"sha1":"BF:67:10:BA:79:03:BE:CD:51:C3:B7:BF:E5:3B:98:79:82:3C:B9:99","sha256":"8A:0D:48:C2:70:CA:08:9C:55:D7:33:4D:EB:CA:E5:A3:5B:11:2D:C5:CB:6F:1E:C1:BA:7D:35:A8:1A:E9:99:72"}}},"request":{"raw":"GET /photo-1671116807928-2963fe1e75c1?b=rb-1.2.1\u0026ixid=eyJhcHBfaWQiOjEyMDd9\u0026auto=format\u0026fit=facearea\u0026facepad=2\u0026w=256\u0026h=256\u0026q=80 HTTP/1.1\r\nHost: images.unsplash.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-imgix-id: 03fa0d9c2e1079958050dd6b23fbf3d526f07b1e\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 29 Jul 2024 09:33:47 GMT\r\nserver: imgix\r\ndate: Thu, 05 Sep 2024 04:25:56 GMT\r\nage: 3264729\r\naccept-ranges: bytes\r\ncontent-type: image/avif\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nx-served-by: cache-sjc10023-SJC, cache-chi-kigq8000061-CHI, cache-fra-eddf8230043-FRA, cache-hel1410029-HEL\r\nx-cache: HIT, HIT, HIT, HIT\r\nvary: Accept, User-Agent\r\ncontent-length: 15475\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15475,"size_decoded":15475,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"679ab0612d02491c2296a53972cce1e5","sha1":"d5c4f9ae3968089c3494d7769e67d0796df8c438","sha256":"c0b3f5105965db98eb23c42e4cc52ed4629c49e19f7785915449efe5c39da268","sha512":"acb8eb9f5027995cc82871fa4f2067c21547a54f1456e4df6ce8a5d92866d47975fd270eda61712796ea11bd43730a23e80231e8cba44548d3b9b0155bcc297a","ssdeep":"384:3YNg7/apF7VSl+pIO5aQEPPF5NJR3MEw6PFBeBnOa1:3Yywe+pF5GXF/U5snM","tlshash":"4362c07e9aabd7a3e8a8d13c01901f3dd4e3f296d7a1035b71042a20499c5b1f6cd1c9","first_seen":"2024-04-08T09:09:15Z","last_seen":"2025-11-28T14:59:04.440501Z","times_seen":13641,"resource_available":false,"data":null}},"time_used":356,"timings":{"blocked":169,"dns":45,"connect":30,"send":0,"wait":14,"receive":1,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/bg/circuit.svg","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.895Z","timestamp":1725510356895,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/bg/circuit.svg HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/_nuxt/entry.816a5a0f.css\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:56 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 5273\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-1499\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5273,"size_decoded":5273,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"dffdfc8a90f7ff767f72a1d6216fcea6","sha1":"7f8d3b7b7ea288aed96e1a5b326d3f8571b0ebe6","sha256":"759172998df26a3de2a6c715de7bea7e1ade68a5596833e8dc1425c1a504cce0","sha512":"ee804ff65d81062b1e7de6f2a20e15e0b7a530c02ca8c7e7437920b97809b9d27dba0d4b0c91100d1b418ddf4f7aa365315a890fe19c3c2670eecf0c538686d1","ssdeep":"96:QxVr5ff4IV0ZOY6DTHkyzOyrebJJ6SOtGTwCDn9D:QFfgS0L6D5OhbSHtmDn9D","tlshash":"2fb17620576cb5ec2652ea8cd79f8da1138ed2f4b6b8403d8c2f9af22907576e5774c0","first_seen":"2023-05-21T15:30:09Z","last_seen":"2026-05-02T11:16:19.860003Z","times_seen":14023,"resource_available":false,"data":null}},"time_used":71,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":64,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/url.0b90d914.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.110Z","timestamp":1725510357110,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /_nuxt/url.0b90d914.js HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 366\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-16e\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":366,"size_decoded":366,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (365)","md5":"64b3327f89702a18d2440973fd274662","sha1":"f460a828cb4566abcf4ba8e295bd2ea33eb5e294","sha256":"66a2fa73c10cf8e22e709ac61a1585b8b3535d9f0e0c5fe2ae08abc88611c22a","sha512":"85ba0c9e1b663f2684641e247d994a807eae6f8511a65fed438e23239a2c2b051889046753fcad7152bec079b26588248f197aa3d94c786a37778448ab7b32ae","ssdeep":"","tlshash":"a7e0200c35cb313d73b5099c31610616a2991f543375f5e7751447a205a9c9ed17c77d","first_seen":"2023-07-17T08:46:47Z","last_seen":"2026-05-02T11:16:19.840174Z","times_seen":13775,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":58,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/_nuxt/error-component.e8645654.js","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.111Z","timestamp":1725510357111,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /_nuxt/error-component.e8645654.js HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Moz: prefetch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nContent-Length: 1182\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-49e\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1182,"size_decoded":1182,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (719)","md5":"88b31d9279571188e305fd1b5392108d","sha1":"360bfd5ae1bbbf5cb9c1d9c1f55bae4989bdf7f5","sha256":"7c20920a025aaf7b9c4b24cfd7405b9b90053dbf4c32c2ca67057fd5bd281ca7","sha512":"aabfe142dfc73e602eeb7d5f2531d24069e730db7215723f652869d65a2679499fc5efe8e725f4c29f76aac3a4ee2b79accf5150255cbab281debdbcc60b89c3","ssdeep":"","tlshash":"fe2144e9f4272e6909a419703a113030cdd50ec147f7d0f7812c1bb5a69b4c9fc4664b","first_seen":"2023-07-17T08:46:47Z","last_seen":"2026-05-02T11:16:19.864662Z","times_seen":13784,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/bitcoin.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.353Z","timestamp":1725510357353,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/bitcoin.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 2691\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-a83\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2691,"size_decoded":2691,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"2edf1ef8b333c40979976d1a49bc234c","sha1":"d75ac12795b4a9575c874e1b190712cd62a87afc","sha256":"50a1901684f223bf26594dd3415b1e50f184820a16daa810cc5452911e9117a9","sha512":"f697a1fa0786316fc01003f72621920932e2657e4acf5a471e35d02717c42c9db5a12df311895a776a563dcae9b8fc0b6721833529a054b9dbfff4c52fc564d3","ssdeep":"","tlshash":"2b515ee60252267980d32438616db1e178beabb2c3021ded6c1444954acc4b62555cfa","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-05-13T22:39:26.765249Z","times_seen":21432,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/bch.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.365Z","timestamp":1725510357365,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/bch.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 2694\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-a86\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2694,"size_decoded":2694,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"6ad5509616a5fca9f389801052bea3fe","sha1":"5b53d204b7e6066409067fba9fce5202ff20e9d6","sha256":"6becc3abea448b67731610708852a70c3ceb99059b2dee98da3711dc0620218a","sha512":"18729e5d7521224c032a2a7f18c154b1d02905dda6a06dc3a1af5d876bc5f651b78699589772cd6158bc1bfa75aead83b084bca2b06539a3e4cc9b4a6d476ded","ssdeep":"","tlshash":"ed512be6a252222ac78335be8a25f1dbdf560afb123220858088c13aa40f750c98a573","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-05-13T22:39:26.744902Z","times_seen":18646,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/ethereum.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.373Z","timestamp":1725510357373,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/ethereum.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 2780\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-adc\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2780,"size_decoded":2780,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"856bfdb63dc0d6fad6b92fc6a29719e1","sha1":"2fed2e3409ce1bbbfb37f6da4abeecc30cefc021","sha256":"eebe29898b8b7de5c9e47daab474152be8095e3ab42d768b84b085c5a12b95c6","sha512":"a61c0a108d63c89ae62a2b03108480b5c08bda0e80049089a2a84cd7973bd9e94dcd2902e166b92e1d7ad5b7356357c9b181cb1b6051dd25913e82d2420154f0","ssdeep":"","tlshash":"51518cc7a707f33a9c866161bed44509f244d80a8160b31c0f33a7572c8a83ea4f324f","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-05-13T22:39:26.817848Z","times_seen":21181,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/litecoin.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.377Z","timestamp":1725510357377,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/litecoin.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 2456\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-998\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2456,"size_decoded":2456,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"bdaeb947a2eb31bae0a170559df9013c","sha1":"7fc8496c9bf51eea98dc9060262f87a792a24a43","sha256":"3225172adc122cc7f8f09fbcc94757061330651a485f17091f41726767f7ea3f","sha512":"710a1ac11f6fdb3915479bf6b9eccf34f4dedd8f30e6bed5275f52d1ec634a754b252e385eb9cd388a5a69c64aaf5818c13cb783090ae68a8696af067cb67341","ssdeep":"","tlshash":"9e512b90d3f3d98a7d930935f8b27a34cfda87da97098523ea834854e279442cd24943","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-05-14T02:24:09.866162Z","times_seen":18162,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/doge.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.380Z","timestamp":1725510357380,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/doge.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 4251\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-109b\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4251,"size_decoded":4251,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"ae64499c8825452f6262177ee6dd525b","sha1":"92a35e0817cefb5befbb18422fb4c9d220f6754c","sha256":"47fb417f6b72c4edc08dfb90a376b2c88b3b51992bf3c83dd14e011edba2f339","sha512":"1a776374f3c20d16bf0c84dbb28a6ca3d0a110ca928aa87f56d79d09b898091b84f4d3ea164a6c79db0c9fedeb66167bd83b854267c2870394f70dc536117441","ssdeep":"96:IqQDUBKTuBVrN2Dc4tR/HAwaHEIkVZdBrc2nPatF:IL4cTIB8c4n/HbIegdF","tlshash":"00918ede37594349986e152b32ca7f282c32b7db00753e35ad4946c327b4063e5d6714","first_seen":"2023-05-04T14:40:12Z","last_seen":"2026-05-13T22:39:26.800469Z","times_seen":13538,"resource_available":false,"data":null}},"time_used":90,"timings":{"blocked":31,"dns":0,"connect":0,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/xrp.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.385Z","timestamp":1725510357385,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/xrp.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 2330\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-91a\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2330,"size_decoded":2330,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"39edd8e5c80256300562f68afb1ab525","sha1":"506e80486e2b9e90f7344334cd95e93ac8fa0338","sha256":"cf4c3c2ec18de3d4dcd49151ffe00cb299f86fc98467cf806b9c447467935479","sha512":"029abf77a53608d0e0a92ca7764bbed17cf0960e540fee5f8eb0a9cb1bbbb490e730ec22e8dc186b07b784cd87410f5667207c22478773346d725579673e5e2c","ssdeep":"","tlshash":"a3410ad884a0624d2924177332a3193dfc6d3f949a066dffc81d563c84a1e8271b5d64","first_seen":"2023-05-04T14:58:57Z","last_seen":"2026-05-14T02:24:09.866692Z","times_seen":15979,"resource_available":false,"data":null}},"time_used":102,"timings":{"blocked":39,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/usdt.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.390Z","timestamp":1725510357390,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/usdt.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 923\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-39b\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":923,"size_decoded":923,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"ae9f6b15ca809b5d92a8f305d954682b","sha1":"e6350b10f296d88e48c32ae6ad41b95488d2fc56","sha256":"e8b7dc15525de712cb597b4c4daa6b11dce462e6dd10913e41720f59b2608117","sha512":"22891476b0f89f10d1c5114d7b13a11e96fb5e01fa722864c76315d5933393406804da609965c55aca0574fde0f1bf94df4a999a0f5e7f67d3e80772d31e3644","ssdeep":"","tlshash":"d5118463b64badb6ffc5a0be4d52304f0b6205bb6ec56b8741b7916d2722085e00d64b","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-02T11:16:19.833191Z","times_seen":12706,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":38,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/solana.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.392Z","timestamp":1725510357392,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/solana.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 1568\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-620\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1568,"size_decoded":1568,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"0e21c0532ba33810e3d7e30192a0dbb0","sha1":"5820cba622518979f538410e6f50445a7c5bdd60","sha256":"7e81a3a266d2d77f67c4491589ecc39712c078ce89cb37e360e8a7c88c68ef82","sha512":"e0edd8a1787bf1543adf34af9d070ee7f63ab1bb6b40455b4629ff83c8329120867bf6e944de234b03ea620c958d94321e90196730bf212a809004a518289d84","ssdeep":"","tlshash":"7031ea17c3f415a2c7decd7f80621b78973352546b04e6485b8e91829bd560735070ec","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-02T11:16:19.86346Z","times_seen":12758,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":39,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/bnb.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.399Z","timestamp":1725510357399,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/bnb.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 1387\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-56b\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1387,"size_decoded":1387,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"aef8727bea8367cd9fd252c025b45887","sha1":"c2ab9d909455bff35181dfd92bcc7baba930867f","sha256":"ce5a07d36768bcb5524044a9e92a606ae6effe1cb0913dfa418703461db62fe3","sha512":"5f97e368e23aa5e501e57917aea9426704ac3c4068b34d803f44944663bab45131170fec2872fb868a5faceb6856ce4d9f8870053aba7e8d08455989a731984d","ssdeep":"","tlshash":"5321085f5b644577dda94dbede05a54b29e30d208d978bc2c404ec1534598a643608ad","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-13T22:39:26.861324Z","times_seen":14380,"resource_available":false,"data":null}},"time_used":135,"timings":{"blocked":72,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/ada.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.402Z","timestamp":1725510357402,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/ada.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 2790\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-ae6\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2790,"size_decoded":2790,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"2b4047ef139810f5403fe2987bd2dc9e","sha1":"529276c43a521743eb53df1cfe8bc8ffff220dfa","sha256":"38c163ecba73c000df0abfe2ad5c4f941164909f8078e8a304dba4db696bc709","sha512":"d1e527d489bc5db742681f87a0eff100b8126baee0b9765e5bccd9360a917ed4ee870abd79e417693e36e600d4cbadc11e30cb73a630c3ce11a51be4a2dc86c8","ssdeep":"","tlshash":"27514a428049d490ffa2e705d715816ac940f88cfce6a3858ec4d52a60be3a494b77c0","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-14T02:24:09.882436Z","times_seen":13174,"resource_available":false,"data":null}},"time_used":149,"timings":{"blocked":86,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/matic.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.394Z","timestamp":1725510357394,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/matic.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 2668\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-a6c\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2668,"size_decoded":2668,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"e52d4c5303ae23b87eafcba68fec13f0","sha1":"d62532d0d8b480481e825e43dad042bba1b34905","sha256":"6b6a7ed2702dc19ede76fa573dcadbf7cd0680eeb320a1650b2ee0061135ba93","sha512":"65516050a3940a5b072c2e6f86f939624b879f12661eb7174ef25c6e86051067faeae334b5be14e9e3b4e21d00a7e43c3ba0e4a73edc16480bff8deea1314993","ssdeep":"","tlshash":"98515bf9f4cba96be90d13446362186c2d32a4f616ca9d2a138564bb73d9e1f013c826","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-01T13:44:52.725573Z","times_seen":12187,"resource_available":false,"data":null}},"time_used":295,"timings":{"blocked":109,"dns":0,"connect":59,"send":0,"wait":59,"receive":0,"ssl":65},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fore-mining.top/img/coins/dot.png","fqdn":"fore-mining.top","domain":"fore-mining.top","tld":"top"},"ip":{"addr":"91.212.166.23","port":443,"asn":198953,"as":"Proton66 OOO","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:57.397Z","timestamp":1725510357397,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fore-mining.top","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Jul 2024 09:08:17 GMT","end":"Sat, 26 Oct 2024 09:08:16 GMT"},"fingerprint":{"sha1":"69:CE:BA:E3:D2:78:09:49:0B:7D:17:55:3E:7C:C3:E8:41:D8:1A:52","sha256":"25:55:0A:BF:F6:FA:3B:27:0D:24:73:DB:B9:B6:38:0C:41:97:93:81:C4:F8:14:15:A7:57:CD:4F:7B:4F:E1:35"}}},"request":{"raw":"GET /img/coins/dot.png HTTP/1.1\r\nHost: fore-mining.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fore-mining.top/payouts/\r\nCookie: ofr=a%3A4%3A%7Bs%3A5%3A%22label%22%3Bs%3A0%3A%22%22%3Bs%3A3%3A%22usr%22%3Bi%3A804%3Bs%3A4%3A%22nopd%22%3Bs%3A15%3A%22redlinkbits.top%22%3Bs%3A1%3A%22o%22%3Bi%3A1%3B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0\r\nDate: Thu, 05 Sep 2024 04:25:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 2613\r\nLast-Modified: Fri, 02 Aug 2024 05:19:31 GMT\r\nConnection: keep-alive\r\nETag: \"66ac6c63-a35\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2613,"size_decoded":2613,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"ab2bbbdbe07a46e0e047850c62301f0b","sha1":"01c54ef9fe29c5ca43e457c5cb4cae52ffccda40","sha256":"3418e6d1452040dfb46794119972418cdae99ff6535915c79714fda227b0e677","sha512":"b7e65306fb371792e30b2c0f926915c6bfd468ae73e3ba50955eede7b5b920d5c0390f3f4da7ede137e5bc60b9df806681f9455c6c270a7f771007c7715e0d08","ssdeep":"","tlshash":"01513ca73155c533f65c58be2a2ca5ec44b65a9c030d741c8cc17a8928ac9cb7dcc9cb","first_seen":"2023-05-06T05:54:57Z","last_seen":"2026-05-14T02:24:09.888503Z","times_seen":12929,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":121,"dns":0,"connect":0,"send":0,"wait":68,"receive":0,"ssl":76},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-04","alert":"Sinkholed","trigger":"fore-mining.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.coingecko.com/api/v3/simple/price?ids=bitcoin%2Cethereum%2Ccardano%2Cbitcoin-cash%2Clitecoin%2Cdogecoin%2Cripple%2Cmatic-network%2Cpolkadot%2Cbinancecoin%2Ctether%2Csolana\u0026vs_currencies=usd\u0026include_24hr_change=true\u0026precision=2\u00261725510356793","fqdn":"api.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.12.83","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:25:56.797Z","timestamp":1725510356797,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coingecko.com","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Wed, 28 Aug 2024 21:54:05 GMT","end":"Tue, 26 Nov 2024 21:54:04 GMT"},"fingerprint":{"sha1":"9F:48:FF:F1:7A:D8:CE:A4:91:91:27:22:01:10:04:A6:00:A2:AD:F6","sha256":"A6:90:E1:A2:6A:29:D9:BB:08:D2:CE:32:32:81:54:DC:8E:AC:50:6E:96:B8:D1:6F:DE:17:75:24:32:E9:65:6F"}}},"request":{"raw":"GET /api/v3/simple/price?ids=bitcoin%2Cethereum%2Ccardano%2Cbitcoin-cash%2Clitecoin%2Cdogecoin%2Cripple%2Cmatic-network%2Cpolkadot%2Cbinancecoin%2Ctether%2Csolana\u0026vs_currencies=usd\u0026include_24hr_change=true\u0026precision=2\u00261725510356793 HTTP/1.1\r\nHost: api.coingecko.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://fore-mining.top/\r\nOrigin: https://fore-mining.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Sep 2024 04:25:57 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS\r\naccess-control-expose-headers: link, per-page, total\r\naccess-control-max-age: 7200\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nx-download-options: noopen\r\nx-permitted-cross-domain-policies: none\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncache-control: max-age=30, public, must-revalidate, s-maxage=60\r\naccess-control-request-method: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization\r\nvary: Accept-Encoding, Origin\r\ncontent-encoding: gzip\r\netag: W/\"a54e74d7fb42e70d673657a65e1141cb\"\r\nx-request-id: 0148b718-cc4d-40ba-a0a8-33ed987220e3\r\nx-runtime: 0.003805\r\nalternate-protocol: 443:npn-spdy/2\r\nstrict-transport-security: max-age=15724800; includeSubdomains\r\ncf-cache-status: MISS\r\nset-cookie: __cf_bm=ywKg9IANRrUGSKpUQlOlALD3QktHdi73PLDq1khG6_s-1725510357-1.0.1.1-fBS2ttbGfYfYJ9jh07Y_Yqg69xPXJrpBASeC8ABEA1eT8hlP_lcrtVqMmy9RcYw6u7RJkBtsQ544QztbvYS2hA; path=/; expires=Thu, 05-Sep-24 04:55:57 GMT; domain=.api.coingecko.com; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\ncf-ray: 8be375529bc0b511-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":742,"size_decoded":742,"mime_type":"application/json; charset=utf-8","magic":"troff or preprocessor input, ASCII text, with very long lines (814), with no line terminators","md5":"429804f50d01166cd73b685b16f8f5de","sha1":"b68085c30f195242fdb6c9579f2496076f627e55","sha256":"11b5220f8f5e98ed11c4c502231c22d8903a247ee0c77103431c359a9365e1f1","sha512":"b2b5162d94d0382f7b9eb70f47462a391caa393b44cdf698cd710798a50a2b0529ee86641d3ea608fb1da7be77b6fd762fadf77879ab74e5e1e4f83f9126a302","ssdeep":"","tlshash":"a20184175934d146f9e04dab1edd1b2afa4b2cf6ccac91aa567f0dd6d05144aa308c0f","first_seen":"2024-09-19T22:32:24.058903Z","last_seen":"2024-09-19T22:32:24.058903Z","times_seen":1,"resource_available":false,"data":null}},"time_used":520,"timings":{"blocked":0,"dns":29,"connect":1,"send":0,"wait":419,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.coingecko.com/api/v3/simple/price?ids=bitcoin%2Cethereum%2Ccardano%2Cbitcoin-cash%2Clitecoin%2Cdogecoin%2Cripple%2Cmatic-network%2Cpolkadot%2Cbinancecoin%2Ctether%2Csolana\u0026vs_currencies=usd\u0026include_24hr_change=true\u0026precision=2\u00261725510372344","fqdn":"api.coingecko.com","domain":"coingecko.com","tld":"com"},"ip":{"addr":"172.67.12.83","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://fore-mining.top/payouts/","date":"2024-09-05T04:26:12.350Z","timestamp":1725510372350,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.coingecko.com","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Wed, 28 Aug 2024 21:54:05 GMT","end":"Tue, 26 Nov 2024 21:54:04 GMT"},"fingerprint":{"sha1":"9F:48:FF:F1:7A:D8:CE:A4:91:91:27:22:01:10:04:A6:00:A2:AD:F6","sha256":"A6:90:E1:A2:6A:29:D9:BB:08:D2:CE:32:32:81:54:DC:8E:AC:50:6E:96:B8:D1:6F:DE:17:75:24:32:E9:65:6F"}}},"request":{"raw":"GET /api/v3/simple/price?ids=bitcoin%2Cethereum%2Ccardano%2Cbitcoin-cash%2Clitecoin%2Cdogecoin%2Cripple%2Cmatic-network%2Cpolkadot%2Cbinancecoin%2Ctether%2Csolana\u0026vs_currencies=usd\u0026include_24hr_change=true\u0026precision=2\u00261725510372344 HTTP/1.1\r\nHost: api.coingecko.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://fore-mining.top/\r\nOrigin: https://fore-mining.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 05 Sep 2024 04:26:12 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS\r\naccess-control-expose-headers: link, per-page, total\r\naccess-control-max-age: 7200\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nx-download-options: noopen\r\nx-permitted-cross-domain-policies: none\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncache-control: max-age=30, public, must-revalidate, s-maxage=60\r\naccess-control-request-method: *\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization\r\nvary: Accept-Encoding, Origin\r\ncontent-encoding: gzip\r\netag: W/\"99e76a6d4b045b83cf540228f89998ea\"\r\nx-request-id: 8b1320df-c335-48ba-8ccd-84662187bc8a\r\nx-runtime: 0.003909\r\nalternate-protocol: 443:npn-spdy/2\r\nstrict-transport-security: max-age=15724800; includeSubdomains\r\ncf-cache-status: MISS\r\nset-cookie: __cf_bm=VAUEqF_F0pIkxCh0SEi4QvBdn2yt81nZpKnxTDT6BMw-1725510372-1.0.1.1-UGzGTjhJzsHfoc6WBsRq0QZ.UwKzZnKPizsxwFOvKuPEUg5sfgohPVm6N1Au4uiB.vqqzh4WZDSL.95E5HBPAQ; path=/; expires=Thu, 05-Sep-24 04:56:12 GMT; domain=.api.coingecko.com; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\ncf-ray: 8be375b33a88b511-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":740,"size_decoded":740,"mime_type":"application/json; charset=utf-8","magic":"troff or preprocessor input, ASCII text, with very long lines (812), with no line terminators","md5":"83be4017cff04c49e1cfed27735ef844","sha1":"b233c7b147cc1e01cfe4fd17fc1ab106dfdd7eef","sha256":"e7f3fdd75fd6ca4fa8408377aa30e41eb626b59abe7903280502fdda0dae6b48","sha512":"a95ed9a18ffb61e4a301a4ae9f1bc5a3722db681baf577f7ed1e9b638a67c8f2aff6bbd0e8ca2e6c5ba86f47fc4a20728e87cfcf626d7ff4dca04fc3c0ae13d6","ssdeep":"","tlshash":"3201a147a9348156f9e00dab1ec81f2afa4b3cf6cced84ed02bf59c1815194aa609c0f","first_seen":"2024-09-19T22:32:24.059823Z","last_seen":"2024-09-19T22:32:24.059823Z","times_seen":1,"resource_available":false,"data":null}},"time_used":533,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}