Report - wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2

Report Overview

Submitted URL
wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2
IP
159.203.27.34
ASN
#14061 DIGITALOCEAN-ASN
Submitted
2024-05-07 07:54:13
Access
public
Website Title
Litecoins mining on Ubuntu with an Nvidia Card
Final URL
wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
images.unsplash.com	4519	2013-05-29	2015-08-06	2024-05-06	541 B	112 kB	151.101.194.208
www.gravatar.com	4072	2004-07-15	2012-05-21	2024-05-07	465 B	16 kB	192.0.73.2
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	479 B	19 kB	142.250.74.74
code.jquery.com	634	2005-12-10	2012-05-21	2024-05-06	409 B	34 kB	151.101.66.137
wimantis.ninja	unknown	2014-10-10	2018-02-17	2024-02-24	7.4 kB	683 kB	159.203.27.34
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-07	2.2 kB	139 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed
2024-05-07	medium	wimantis.ninja	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	wimantis.ninja/assets/js/index.js?v=56f6cbb142	1.7 kB	2023-03-12	2024-05-07
Pretty URL wimantis.ninja/assets/js/index.js?v=56f6cbb142 IP 159.203.27.34 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:49:41 Last Seen2024-05-07 09:54:13 Times Seen6 Hash 783f91c6803c203b713603ecb8edb0a2 3c2380eb0c4dbfb1c49e79572cebe4743c2620cc c269f7dc3518777a8f61e9c9638fff8a76f17dd522c4d0ae8189bf7e34986b5f Loading...

	wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/sandbox%20eval%20code	128 B	2023-05-06	2024-05-19
Pretty URL wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-06 01:21:43 Last Seen2024-05-19 17:18:14 Times Seen21664 Hash 23c336606ee3a6d444b305153fa0e2e2 473a2111970ae2a94b373e656d20c4bd4184d703 305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60 Loading...

	wimantis.ninja/assets/js/prism.js?v=56f6cbb142	16 kB	2023-03-12	2024-05-07
Pretty URL wimantis.ninja/assets/js/prism.js?v=56f6cbb142 IP 159.203.27.34 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:49:40 Last Seen2024-05-07 09:54:14 Times Seen10 Hash dcf643ab297e00be984b1496d8551275 7048cdc8e7cf23059eacea49590c775b70bc5de4 928b462bc85ec8b5520f5da02788298deb3dd1af6bfab23ae70b6dbb57764e38 Loading...

	wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/	77 B	2023-03-12	2024-05-07
Pretty URL wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/ IP 159.203.27.34 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 23:49:41 Last Seen2024-05-07 09:54:13 Times Seen6 Hash fd9796eb46e13fefb5d9485ff9d764a4 ac9ec2a1900939bcf77e61ee96242e673074850b 0737bb0a7a64df8a7e7b069fcadfeedef046960573097a78aa9d732ab680b4f3 Loading...

	wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/	390 B	2023-03-12	2024-05-07
Pretty URL wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/ IP 159.203.27.34 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 23:49:40 Last Seen2024-05-07 09:54:13 Times Seen6 Hash 29536a54449d84daa592e5898163809e 3a9a01ac0f5a663d4227580e7d686cb6a8ed825e 90f660c874d4633b090808f47a32b866aa348f711507b7e920f52f74cc9cd170 Loading...

	wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/	341 B	2023-03-12	2024-05-07
Pretty URL wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/ IP 159.203.27.34 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 23:49:41 Last Seen2024-05-07 09:54:13 Times Seen6 Hash ec303bb09b22790f658d6c4cfe7ab377 493ca31a8bd54a2de541fdb629bf46fa70ff9681 84c075562eb19042b11ac7093a2ccfde5393d0c3360ce29aa9a3fa862ee20b41 Loading...

	moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/lib/shim_messaging_helper.js	1.7 kB	2023-05-05	2024-05-19
Pretty URL moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-05-19 18:01:40 Times Seen46277 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	wimantis.ninja/public/ghost-sdk.min.js?v=56f6cbb142	750 B	2023-03-12	2024-05-07
Pretty URL wimantis.ninja/public/ghost-sdk.min.js?v=56f6cbb142 IP 159.203.27.34 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:49:41 Last Seen2024-05-07 09:54:13 Times Seen6 Hash 9e6055fe46c34a3a9fcc374a209866a3 e7c78fea5e7de3269057a6dfddef38a30dbe9a1c 0340280e927663164c3faf56d343da40471677176f1ba09d5bd62c0fe0375cb1 Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	1.6 kB	2023-05-06	2024-05-19
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:21:43 Last Seen2024-05-19 17:18:14 Times Seen21521 Hash 2e9e391ad98fbe1b2de0b7b4fa9ca904 21d7771223e8286a06ad878af425094a40de32b5 1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69 Loading...

	wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/	56 B	2023-03-10	2024-05-15
Pretty URL wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/ IP 159.203.27.34 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 16:41:54 Last Seen2024-05-15 19:14:24 Times Seen16 Hash 6acb0228d13334758cf22419311a39d3 7603fb0bbef4f2dde72515c776cb03230ed0bc53 c729bd1aebc07b23759f4839958506618a7d765bd35fef89cca3e8af37d61b9f Loading...

	wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/sandbox%20eval%20code	147 B	2023-04-11	2024-05-19
Pretty URL wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-19 18:41:40 Times Seen350771 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-19
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-19 18:41:40 Times Seen350255 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/	72 B	2023-03-10	2024-05-07
Pretty URL wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/ IP 159.203.27.34 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 16:32:02 Last Seen2024-05-07 09:54:14 Times Seen16 Hash 6f0ac1fe175c7d2e596db9fe0eeeeae8 85eb83e0e999de94b2b88356dedd8bc66b54c293 49d6c29bb507cd5b80aa5fe8bd6da46803bc18d745270a710423f0b108c1b54a Loading...

	code.jquery.com/jquery-1.12.0.min.js	97 kB	2023-03-07	2024-05-19
Pretty URL code.jquery.com/jquery-1.12.0.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:02 Last Seen2024-05-19 16:32:37 Times Seen5062 Hash cbb11b58473b2d672f4ed53abbb67336 66f47b885d587aa9a6c453ae3f2c9a382e5c7ec7 5f1ab65fe2ad6b381a1ae036716475bf78c9b2e309528cf22170c1ddeefddcbf Loading...

	wimantis.ninja/assets/js/jquery.fitvids.js?v=56f6cbb142	2.7 kB	2023-03-07	2024-05-15
Pretty URL wimantis.ninja/assets/js/jquery.fitvids.js?v=56f6cbb142 IP 159.203.27.34 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:18 Last Seen2024-05-15 11:26:44 Times Seen149 Hash 3d3a8c0cfb6264d7790fa45022d273a8 39ef717c6d2f9616e30ab3d04b9efb54426cbcb1 cf53667dcf4c290c42b652154f2880981ccd9de593d5d1841cc027783408d101 Loading...

	connect.facebook.net/fr_CA/sdk.js#xfbml=1&version=v2.7&appId=536679333200042	17 kB	2023-05-05	2024-05-19
Pretty URL connect.facebook.net/fr_CA/sdk.js#xfbml=1&version=v2.7&appId=536679333200042 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-05-19 18:01:40 Times Seen45727 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

HTTP Transactions (23)

URL IP Response Size

code.jquery.com/jquery-1.12.0.min.js

151.101.66.137

200 OK

34 kB

URL GET HTTP/2
code.jquery.com/jquery-1.12.0.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32060)
Size
34 kB (33820 bytes)
Hash
cbb11b58473b2d672f4ed53abbb67336
66f47b885d587aa9a6c453ae3f2c9a382e5c7ec7
5f1ab65fe2ad6b381a1ae036716475bf78c9b2e309528cf22170c1ddeefddcbf

HTTP Headers

GET /jquery-1.12.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wimantis.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-17c52"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 07:53:46 GMT
age: 15798534
x-served-by: cache-lga21956-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 4, 9898
x-timer: S1715068426.303654,VS0,VE0
vary: Accept-Encoding
content-length: 33820
X-Firefox-Spdy: h2

wimantis.ninja/assets/t-shirt.jpg

159.203.27.34

200 OK

22 kB

URL GET HTTP/2
wimantis.ninja/assets/t-shirt.jpg
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=GIMP 2.10.18, datetime=2021:07:26 11:41:31], progressive, precision 8, 300x300, components 3
Size
22 kB (22009 bytes)
Hash
42eb27f38dcb45d92204099795db0a6e
676cb950122edda5d06af35344264e4315942f89
6d984caf97b963022230dce0735732b5863e3b5c52112a5523f5aaf5dc7675fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/t-shirt.jpg HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: image/jpeg
content-length: 22009
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Mon, 26 Jul 2021 15:50:58 GMT
etag: W/"55f9-17ae3831dd4"
X-Firefox-Spdy: h2

wimantis.ninja/public/ghost-sdk.min.js?v=56f6cbb142

159.203.27.34

200 OK

942 B

URL GET HTTP/2
wimantis.ninja/public/ghost-sdk.min.js?v=56f6cbb142
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
gzip compressed data, from Unix
Size
942 B (942 bytes)
Hash
d1814bdf276227cef05137cdaad22b2e
4cd8eb5e5b08ccb654e696d8b0196f2c5249a6b1
679db4c398628c3052150d743b39fcb3491fab0698a35a4a1c0464acd1e2178e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/ghost-sdk.min.js?v=56f6cbb142 HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: application/javascript
x-powered-by: Express
etag: W/"9e6055fe46c34a3a9fcc374a209866a3"
cache-control: public, max-age=31536000
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

wimantis.ninja/assets/solitaire.jpg

159.203.27.34

200 OK

23 kB

URL GET HTTP/2
wimantis.ninja/assets/solitaire.jpg
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=GIMP 2.10.18, datetime=2021:07:26 11:40:27], progressive, precision 8, 300x300, components 3
Size
23 kB (22665 bytes)
Hash
12410e944a6eb6d109f31a48b57489bf
c87d8c3ce7ff095ea2d298007baadc87e873d989
a1b473d2f7e0c17ee9915f353d6f0a606691f5daf6eb75e38a1c127e90ec5dd7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/solitaire.jpg HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: image/jpeg
content-length: 22665
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Mon, 26 Jul 2021 15:50:58 GMT
etag: W/"5889-17ae3831dd4"
X-Firefox-Spdy: h2

wimantis.ninja/assets/stock-photos.jpg

159.203.27.34

200 OK

47 kB

URL GET HTTP/2
wimantis.ninja/assets/stock-photos.jpg
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 300x300, components 3
Size
47 kB (47122 bytes)
Hash
67719745e7ae488c4d4aac274b4c1d39
e04a0f423c48ff80d03056af14d7bf2b7577b2ef
7d137b84d8ca7977f37f5755994f6b171a2b082ac779e08f495f37aba2651507

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/stock-photos.jpg HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: image/jpeg
content-length: 47122
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Mon, 26 Jul 2021 15:50:58 GMT
etag: W/"b812-17ae3831dd4"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2

216.58.207.227

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19752, version 1.0
Size
20 kB (19752 bytes)
Hash
d62145d4db9cd1736127dbac7665f41b
2687b5ba8ddbafc800abd1208069edcefc0ca8f2
c8356c413b566272ba50c98d4ce0546e1fce6177ceb6cf8c2a7efe0a65e085a1

HTTP Headers

GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wimantis.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:48:02 GMT
expires: Fri, 02 May 2025 02:48:02 GMT
cache-control: public, max-age=31536000
age: 450344
last-modified: Tue, 26 Apr 2022 15:46:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wimantis.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 451126
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wimantis.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 451126
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

wimantis.ninja/assets/fonts/casper-icons.woff?v=1

159.203.27.34

200 OK

2.6 kB

URL GET HTTP/2
wimantis.ninja/assets/fonts/casper-icons.woff?v=1
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
Web Open Font Format, TrueType, length 2580, version 1.0
Size
2.6 kB (2580 bytes)
Hash
54ded7e167f750384d5aac1f8408d8de
e1840b48e9666005b0d552a22bcc5265caa064d8
138fc8fedc8827517dcb2ce40dca9eb1af88f5044169494ade61682077bdd48d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/fonts/casper-icons.woff?v=1 HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://wimantis.ninja/assets/css/screen.css?v=56f6cbb142
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: application/font-woff
content-length: 2580
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 08 Aug 2018 15:45:43 GMT
etag: W/"a14-1651a371be5"
X-Firefox-Spdy: h2

wimantis.ninja/content/images/2017/11/ubuntu-17.10-nowifi.jpg

159.203.27.34

200 OK

105 kB

URL GET HTTP/2
wimantis.ninja/content/images/2017/11/ubuntu-17.10-nowifi.jpg
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x720, components 3
Size
105 kB (104702 bytes)
Hash
5f8eafa7a4ccec803edc0f6cd512d897
6ca2ccf948955eb708b3734140a5426748317275
061ff3323bad2cf245455eb26d9af06fbe6accfc138df257a53356494ee2e69b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /content/images/2017/11/ubuntu-17.10-nowifi.jpg HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: image/jpeg
content-length: 104702
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2017 02:14:36 GMT
etag: W/"198fe-15f755be231"
X-Firefox-Spdy: h2

images.unsplash.com/photo-1520520688967-7bdc16e77dc2?ixlib=rb-1.2.1&q=80&fm=jpg&crop=entropy&cs=tinysrgb&w=1080&fit=max&ixid=eyJhcHBfaWQiOjExNzczfQ

151.101.194.208

200 OK

112 kB

URL GET HTTP/2
images.unsplash.com/photo-1520520688967-7bdc16e77dc2?ixlib=rb-1.2.1&q=80&fm=jpg&crop=entropy&cs=tinysrgb&w=1080&fit=max&ixid=eyJhcHBfaWQiOjExNzczfQ
IP
151.101.194.208:443
ASN
#54113 FASTLY

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerGlobalSign nv-sa
Subjectimages.unsplash.com
FingerprintBF:67:10:BA:79:03:BE:CD:51:C3:B7:BF:E5:3B:98:79:82:3C:B9:99
ValidityThu, 07 Dec 2023 01:14:14 GMT - Tue, 07 Jan 2025 01:14:13 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1080x720, components 3
Size
112 kB (111886 bytes)
Hash
c925ee87cf51e00e7eaec69498a87d23
74511d8243a8d4624a3de109d8b39fb64bc3d01b
7be98b6120ded584d97068758ca01dab26ffe79e55f5b050ecc11910411ac86a

HTTP Headers

GET /photo-1520520688967-7bdc16e77dc2?ixlib=rb-1.2.1&q=80&fm=jpg&crop=entropy&cs=tinysrgb&w=1080&fit=max&ixid=eyJhcHBfaWQiOjExNzczfQ HTTP/1.1
Host: images.unsplash.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wimantis.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-imgix-id: 61af58245badc0e323ed5e6844e6a264cd76b01c
cache-control: public, max-age=31536000
last-modified: Wed, 24 Apr 2024 09:52:14 GMT
server: Google Frontend
date: Tue, 07 May 2024 07:53:46 GMT
age: 1116092
accept-ranges: bytes
content-type: image/jpeg
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc1000107-SJC, cache-hel1410024-HEL
x-cache: HIT, MISS
content-length: 111886
X-Firefox-Spdy: h2

fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff4jvw.woff2

216.58.207.227

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff4jvw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19720, version 1.0
Size
20 kB (19720 bytes)
Hash
08476bf46dff0e875683be6002075581
a289f83a7bc00cd332175ffa4ad96034acfd3116
75ca7c01eaa8136d970bde6ea6ae0896d2fe30febf82e7679257df6e1f8a7496

HTTP Headers

GET /s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff4jvw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wimantis.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:14:13 GMT
expires: Fri, 02 May 2025 02:14:13 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:47:57 GMT
content-type: font/woff2
age: 452373
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

wimantis.ninja/content/images/2017/12/CookieClicker-1.jpg

159.203.27.34

200 OK

345 kB

URL GET HTTP/2
wimantis.ninja/content/images/2017/12/CookieClicker-1.jpg
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Created with GIMP", progressive, precision 8, 1280x546, components 3
Size
345 kB (344567 bytes)
Hash
a63b0615fd9aba375fd9f82f9a7119a0
bdeacdffbbb7d563ecf486c4db797481096885ea
f2daa337b6b98e0dbfc19b16dde985aa6709691fa527d120bdef0c26975dbad6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /content/images/2017/12/CookieClicker-1.jpg HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: image/jpeg
content-length: 344567
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Thu, 28 Dec 2017 03:08:41 GMT
etag: W/"541f7-1609b17e165"
X-Firefox-Spdy: h2

www.gravatar.com/avatar/6ad1c2406c0f28d0874476cebb26093a?s=250&d=mm&r=x

192.0.73.2

200 OK

15 kB

URL GET HTTP/2
www.gravatar.com/avatar/6ad1c2406c0f28d0874476cebb26093a?s=250&d=mm&r=x
IP
192.0.73.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerSectigo Limited
Subject*.gravatar.com
Fingerprint28:34:17:4E:69:95:4B:B9:70:DF:D4:0F:AA:2C:8D:60:F2:45:E7:D0
ValidityTue, 05 Dec 2023 00:00:00 GMT - Sat, 04 Jan 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3
Size
15 kB (15294 bytes)
Hash
527b5f7901a7fe0ba249a3a01233625f
b76d9760986c0df12693ea0effd625e150dc4165
ff5935606fbb5250c19200ff97ebab7230858c1b69b127dcfa8b091055cf5120

HTTP Headers

GET /avatar/6ad1c2406c0f28d0874476cebb26093a?s=250&d=mm&r=x HTTP/1.1
Host: www.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wimantis.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 07:53:46 GMT
content-type: image/jpeg
content-length: 15294
last-modified: Wed, 11 Aug 2021 18:53:54 GMT
link: <https://gravatar.com/avatar/6ad1c2406c0f28d0874476cebb26093a?s=250&d=mm&r=x>; rel="canonical"
content-disposition: inline; filename="6ad1c2406c0f28d0874476cebb26093a.jpeg"
access-control-allow-origin: *
expires: Tue, 07 May 2024 07:58:46 GMT
cache-control: max-age=300
x-nc: HIT arn 1
alt-svc: h3=":443"; ma=86400
accept-ranges: bytes
X-Firefox-Spdy: h2

wimantis.ninja/assets/js/jquery.fitvids.js?v=56f6cbb142

159.203.27.34

200 OK

2.7 kB

URL GET HTTP/2
wimantis.ninja/assets/js/jquery.fitvids.js?v=56f6cbb142
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
JavaScript source, ASCII text, with very long lines (2787), with no line terminators
Size
2.7 kB (2698 bytes)
Hash
116c4684a9e571983fd6aa405480dad2
9ad146880d0e4be1f7c15ab99b9796193200497b
6c7f7ba14017571b0faebd1f72fa1a0407c1f754efb76d19dc7543318f438aa6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/jquery.fitvids.js?v=56f6cbb142 HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 08 Aug 2018 15:45:43 GMT
etag: W/"a8a-1651a371be5"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/

159.203.27.34

200 OK

16 kB

URL User Request GET HTTP/2
wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type

Size
16 kB (16366 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /litecoins-mining-on-ubuntu-with-an-nvidia-card-2/ HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:45 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
cache-control: public, max-age=0
etag: W/"3fee-a2tMu6M3IJ8vlQMye51KCeFHfTA"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

wimantis.ninja/assets/css/screen.css?v=56f6cbb142

159.203.27.34

200 OK

44 kB

URL GET HTTP/2
wimantis.ninja/assets/css/screen.css?v=56f6cbb142
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
Nim source code, ASCII text
Size
44 kB (43682 bytes)
Hash
ee90ac2cabd95eb2de30f816d0ef814d
9ca0a51c9fe83354a9620a95c7660e62d83515a8
02e81e8e209d54e0da4d6a7cb6fbd277872838e79eff021f9fd5385d64babfc5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/screen.css?v=56f6cbb142 HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Mon, 26 Jul 2021 15:50:58 GMT
etag: W/"aaa2-17ae3831dd4"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

wimantis.ninja/assets/css/prism.css?v=56f6cbb142

159.203.27.34

200 OK

1.9 kB

URL GET HTTP/2
wimantis.ninja/assets/css/prism.css?v=56f6cbb142
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
ASCII text, with very long lines (2044), with no line terminators
Size
1.9 kB (1871 bytes)
Hash
585b13608871d0e5af7a3c56fe9dd545
e3b6ceaa0e888be4e06ce650489cb295969467fa
4ab0f6e0787cbb0b329530ce1f7c0c8bd3a512523f4a7ff7089614e65b2834d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/prism.css?v=56f6cbb142 HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: text/css; charset=UTF-8
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 08 Aug 2018 15:45:43 GMT
etag: W/"74f-1651a371be1"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

wimantis.ninja/assets/js/prism.js?v=56f6cbb142

159.203.27.34

200 OK

16 kB

URL GET HTTP/2
wimantis.ninja/assets/js/prism.js?v=56f6cbb142
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
JavaScript source, ASCII text, with very long lines (5913)
Size
16 kB (16247 bytes)
Hash
dcf643ab297e00be984b1496d8551275
7048cdc8e7cf23059eacea49590c775b70bc5de4
928b462bc85ec8b5520f5da02788298deb3dd1af6bfab23ae70b6dbb57764e38

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/prism.js?v=56f6cbb142 HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 08 Aug 2018 15:45:43 GMT
etag: W/"3f77-1651a371be5"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

wimantis.ninja/assets/js/index.js?v=56f6cbb142

159.203.27.34

200 OK

1.7 kB

URL GET HTTP/2
wimantis.ninja/assets/js/index.js?v=56f6cbb142
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
JavaScript source, ASCII text, with very long lines (1775), with no line terminators
Size
1.7 kB (1705 bytes)
Hash
71b3635b184c439011d87637dcdbc782
1b2658710491aed05de0107292041a9d88a1b0ab
d93d1dab5a56c6cbe52df0548b7267afadc5c6773700597805d4c740a9cf8f55

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/index.js?v=56f6cbb142 HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Wed, 08 Aug 2018 15:45:43 GMT
etag: W/"6a9-1651a371be5"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

wimantis.ninja/favicon.ico

159.203.27.34

200 OK

34 kB

URL GET HTTP/2
wimantis.ninja/favicon.ico
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
Size
34 kB (34494 bytes)
Hash
2b60cd6176520671794178d87da8048c
f25582846d7bc164c3f156acf1bc6a733063db80
5ad259298eb25e2c8a0d0ec8ffb30ac529e77aa048443deba4c296ff0a87ec37

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:46 GMT
content-type: image/x-icon
x-powered-by: Express
etag: "2b60cd6176520671794178d87da8048c"
cache-control: public, max-age=86400
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2

159.203.27.34

301 Moved Permanently

16 kB

URL User Request GET HTTP/2
wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2
IP
159.203.27.34:443
ASN
#14061 DIGITALOCEAN-ASN

Certificate
IssuerLet's Encrypt
Subjectwimantis.ninja
FingerprintE4:62:78:2F:47:A4:32:8A:6A:BD:F8:1E:57:16:E8:E9:3B:B3:24:12
ValidityThu, 11 Apr 2024 12:00:48 GMT - Wed, 10 Jul 2024 12:00:47 GMT

File type

Size
16 kB (16366 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /litecoins-mining-on-ubuntu-with-an-nvidia-card-2 HTTP/1.1
Host: wimantis.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: nginx/1.10.3 (Ubuntu)
date: Tue, 07 May 2024 07:53:45 GMT
x-powered-by: Express
cache-control: public, max-age=31536000
location: /litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Merriweather:300,700,700italic,300italic|Open+Sans:700,400

142.250.74.74

200 OK

18 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Merriweather:300,700,700italic,300italic|Open+Sans:700,400
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://wimantis.ninja/litecoins-mining-on-ubuntu-with-an-nvidia-card-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1572)
Size
18 kB (18320 bytes)
Hash
92fa5ef8025a9691fbb0def31de6b867
1d9c5b7cb3aa2f83236b48d74a5d5bb7f9534bf8
03220880db779d675a0d93f3645f858124bef1a15eff14e73969cda36777ae52

HTTP Headers

GET /css?family=Merriweather:300,700,700italic,300italic|Open+Sans:700,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wimantis.ninja/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 07:53:46 GMT
date: Tue, 07 May 2024 07:53:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML