firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HKkwlUyDpX9lfDN_86tEdsb-hPX54WkVbJfynLSfdLneN5DvWI5V7g==
Age: 100152
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2312
Expires: Thu, 06 Oct 2022 20:15:02 GMT
Date: Thu, 06 Oct 2022 19:36:30 GMT
Connection: keep-alive
optimum-mining.com/
68.66.226.108301 Moved Permanently 235 B IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1fc699769d9c3b22fb67f949202c2c68
03a0b07a9f8bad25387ff3fe35861cee66eff110
77a9e2a39d6bb38d5c2a44639700576e66e3674151e82f8218383c7f1c65a91f
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 06 Oct 2022 19:36:30 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Location: https://optimum-mining.com/
Content-Length: 235
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2733
Expires: Thu, 06 Oct 2022 20:22:04 GMT
Date: Thu, 06 Oct 2022 19:36:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6sXfMo2DyhfGRozPmqop3wUATgXl0RWEHdgsvDRBQxtzitFYwM6vfRfO7zzHnPqFrOfba5uRB5DC5NY6eAHslw==
x-amz-request-id: 3QTSWJ6V76TY99S9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 19:30:54 GMT
age: 337
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 19:36:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 19:29:41 GMT
Expires: Thu, 06 Oct 2022 20:07:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4kvDF-W3dzvtuEYWHu1qxvTOxUpsi8VSz1WCN8f--bQRxbBa2rLSHA==
Age: 410
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5221
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:31 GMT
Last-Modified: Thu, 06 Oct 2022 18:09:30 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.89.20.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.20.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nV2rat8WzWD0b+w/PrR5pw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: R43gdYUKQ/U0y3xrLk74xFDNDh4=
optimum-mining.com/
68.66.226.108200 OK 6.0 kB IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 321c64a9ddbba1428120bb1b9cacbee2
ede6c6707941e747b18fa3957100516c76cb3b18
86f29e3d9b74cd4202f99d5e1bd4bb282c90fef545263893f9a7ab4c46422305
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:30 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; expires=Thu, 06-Oct-2022 21:36:31 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D; expires=Thu, 06-Oct-2022 21:36:31 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6034
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
optimum-mining.com/temp/lib/bootstrap/css/bootstrap.min.css
68.66.226.108200 OK 23 kB URL HTTP/1.1 optimum-mining.com/temp/lib/bootstrap/css/bootstrap.min.css
IP 68.66.226.108:0
File type ASCII text, with very long lines (65324)
Hash dbf99aa91d2b43366e57d0a2932435c9
f6b45eb419984780bdcc0b887a32f58c6f0c71c0
5723392e142df73541042f71518fbdb1fe5b0e7da21fc31316920dfcb18ab150
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:31 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 22981
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/lib/animate/animate.min.css
68.66.226.108200 OK 2.6 kB URL HTTP/1.1 optimum-mining.com/temp/lib/animate/animate.min.css
IP 68.66.226.108:0
File type ASCII text, with very long lines (16755), with CRLF line terminators
Hash b3e7a99e68384d1ec67285d0c5327166
56ada37d072fddc0835b1cd826a55096b6595823
7bb7877c319f3735f2650ad528156633475e8ccae0e1fafb338d9d4a2b5d850b
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/animate/animate.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 2628
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/lib/font-awesome/css/font-awesome.min.css
68.66.226.108200 OK 7.1 kB URL HTTP/1.1 optimum-mining.com/temp/lib/font-awesome/css/font-awesome.min.css
IP 68.66.226.108:0
File type ASCII text, with very long lines (30837)
Hash 52f1a8a2ce85fa8432308b33bc1a2e79
fd80917af5371c8ecad0198592a1e7cce4b77b0e
07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 7053
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/lib/boxicons/css/boxicons.min.css
68.66.226.108200 OK 11 kB URL HTTP/1.1 optimum-mining.com/temp/lib/boxicons/css/boxicons.min.css
IP 68.66.226.108:0
File type ASCII text, with very long lines (61773), with no line terminators
Hash 1825657fa7ed2be2d779d8e783cfc54e
cae37fe90c939d95fe54f409a0cf51cdb83fde83
57bf319435b30889a562749ac9ce624311f090dfe66f0f66b2cbca3b7cedb9c9
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/boxicons/css/boxicons.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 11194
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/lib/ionicons/css/ionicons.min.css
68.66.226.108200 OK 8.3 kB URL HTTP/1.1 optimum-mining.com/temp/lib/ionicons/css/ionicons.min.css
IP 68.66.226.108:0
File type Unicode text, UTF-8 text, with very long lines (50806)
Hash 3f1e436685a4599a3c5a4ad1d4742aae
f5c604e83a72202d2e0d4fb4fa3413df611bfc9b
d3dc8d7385a9b9ae0ad8879206762d0fc12d18adb604e4262f08aa48d81262bd
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/ionicons/css/ionicons.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 8284
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/lib/owl.carousel/assets/owl.carousel.min.css
68.66.226.108200 OK 1.1 kB URL HTTP/1.1 optimum-mining.com/temp/lib/owl.carousel/assets/owl.carousel.min.css
IP 68.66.226.108:0
File type ASCII text, with very long lines (3184)
Hash 8864ff6a1198eecf45821c602593ff9a
c6097cea47ac44fcec94781f2af0110cb677ab0a
19eaae3fdfe574cd1b1cfd78d30633a4527bde9711dde88b467fe43ca854cda5
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/owl.carousel/assets/owl.carousel.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 1068
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/lib/aos/aos.css
68.66.226.108200 OK 2.2 kB URL HTTP/1.1 optimum-mining.com/temp/lib/aos/aos.css
IP 68.66.226.108:0
File type ASCII text, with very long lines (26053), with no line terminators
Hash 53455c53714302b8153f86daf9d8ca3d
a72d3065fea222f72ec0fa70a1850c100b91a2ec
646441ad0693bd17e3e61b35b2c5a22a709b160dbb77e5cc24b65e95910d19e9
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/aos/aos.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 2236
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/lib/venobox/venobox.css
68.66.226.108200 OK 3.1 kB URL HTTP/1.1 optimum-mining.com/temp/lib/venobox/venobox.css
IP 68.66.226.108:0
File type ASCII text, with very long lines (15397)
Hash b27c97f92b4d5491fc3ae698ca71df1e
e7c930467d51fa8b291e5f161dd1da37de99fb2f
83d6b703d4594acf31b309d9a8095c63f915943fab0091f5eed8c84744b37388
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/venobox/venobox.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 3089
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/lib/icofont/icofont.min.css
68.66.226.108200 OK 17 kB URL HTTP/1.1 optimum-mining.com/temp/lib/icofont/icofont.min.css
IP 68.66.226.108:0
File type ASCII text, with very long lines (65364)
Hash ab5ef21fd6601049acb9ae3b2ed65f2c
77488841e767144654491c99e623d565cdc121e4
4b94b8d5a14535eff92d44d0d00fe1a30a92b503334ae65ac6bec9f991d591b5
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/icofont/icofont.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 16852
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/css/frontend_style_blue.css?v=1.4
68.66.226.108200 OK 5.6 kB URL HTTP/1.1 optimum-mining.com/temp/css/frontend_style_blue.css?v=1.4
IP 68.66.226.108:0
Hash 773a5d89179335394d1af2a0998bf8b7
0e86cc87005d278c74e02ddb670f6676c53275de
d6255d1a85c0d2cf1c222620ac0344159fded6fa78cade73fdb695ee1d49d82f
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/css/frontend_style_blue.css?v=1.4 HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 01:48:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 5587
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/css
optimum-mining.com/temp/lib/jquery/magnific-popup.css
68.66.226.108404 Not Found 597 B URL HTTP/1.1 optimum-mining.com/temp/lib/jquery/magnific-popup.css
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash b13dd6d924e9b88144f5bba078ae8833
487b3c059283323ac48bb0eebbe3a5d4e17635cd
f86deee84ea7bf4d39b1041274251f03f51b176a63ddeb487f558c126c7ff471
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/lib/jquery/magnific-popup.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 597
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46200 OK 27 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
Hash 64a6a5d088acc2ce487fab8187e39775
3f5f6fa23a549f4354d5469e3d03bb7dca1fe359
a7c516e9c1f0a0ddc0640eece49d3937eeca8fcade465b873d4ff2db7023780c
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 19:36:32 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+881; expires=Sat, 05-Oct-2024 19:36:32 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:48:50 GMT
expires: Thu, 05 Oct 2023 21:48:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 78463
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
optimum-mining.com/temp/lib/jquery.easing/jquery.easing.min.js
68.66.226.108200 OK 817 B URL HTTP/1.1 optimum-mining.com/temp/lib/jquery.easing/jquery.easing.min.js
IP 68.66.226.108:0
File type ASCII text, with very long lines (2532), with no line terminators
Hash d1a8f2ab3b6408f68a4f01d31ac90bc1
42b49a5c362f0cc5ca31dab43a8b98d499cdbf78
17368cc18bda01725115cb1ea484fe4059f425c73ec69fdbc3708fb4a597d1a3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/jquery.easing/jquery.easing.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 817
Keep-Alive: timeout=3, max=496
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:30:59 GMT
expires: Thu, 05 Oct 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 86734
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
optimum-mining.com/temp/lib/jquery/jquery.min.js
68.66.226.108200 OK 31 kB URL HTTP/1.1 optimum-mining.com/temp/lib/jquery/jquery.min.js
IP 68.66.226.108:0
File type ASCII text, with very long lines (65451)
Hash 888c5fa4504182a0224b264a1fda0e73
65f058a7dead59a8063362241865526eb0148f16
7d757e510b1f0c4d44fd98cc0121da8ca4f44793f8583debdef300fb1dbd3715
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/jquery/jquery.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 30910
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: application/javascript
optimum-mining.com/temp/lib/waypoints/jquery.waypoints.min.js
68.66.226.108200 OK 2.8 kB URL HTTP/1.1 optimum-mining.com/temp/lib/waypoints/jquery.waypoints.min.js
IP 68.66.226.108:0
File type Unicode text, UTF-8 text, with very long lines (8863)
Hash fb1c91e72b022567c85bc02b5c7976ef
ac47fdab02602cd76bc9e48810555632ae22f49e
38fd030c8515c2a733309592e3e58db3554429c3654570e9912205484e69584b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/waypoints/jquery.waypoints.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 2753
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.195200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:31:00 GMT
expires: Thu, 05 Oct 2023 19:31:00 GMT
cache-control: public, max-age=31536000
age: 86733
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive
optimum-mining.com/temp/lib/counterup/counterup.min.js
68.66.226.108200 OK 1.0 kB URL HTTP/1.1 optimum-mining.com/temp/lib/counterup/counterup.min.js
IP 68.66.226.108:0
File type ASCII text, with very long lines (2182)
Hash 7555c4922e3a0d434df2d272a1d3324b
27d91b5562ecca724c910267bc9b962f3689d404
eef7d1aaeb0e00d141125fc0efb62f6b5391e3ac5cbbb20634a281e3ddefd6d3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/counterup/counterup.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 1011
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive
optimum-mining.com/temp/lib/php-email-form/validate.js
68.66.226.108404 Not Found 597 B URL HTTP/1.1 optimum-mining.com/temp/lib/php-email-form/validate.js
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash b13dd6d924e9b88144f5bba078ae8833
487b3c059283323ac48bb0eebbe3a5d4e17635cd
f86deee84ea7bf4d39b1041274251f03f51b176a63ddeb487f558c126c7ff471
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/php-email-form/validate.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 597
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 488ec5b4267ccb1cdc4e6e08556f7f3b
42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3430
x-amzn-requestid: 9b3b52d6-08b4-4893-962b-3dfe67e2f11d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjTijF0vIAMFq3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dffa9-0a128734418b6c4d6375e2ac;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 22:05:29 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iRuujAZLL_0mf5_-FhMXpuWwHy-jidhBkFuBIZLo0tLlJArZgFEcbA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 45d6a557ecb29942f314e3dd736d817a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 16:10:55 GMT
age: 12338
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 3lKuGlFCBN2wEsp9-Oa3ysQg62py090H30jy6_bR02Ufs0KGPrVC4w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 79192
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a508ac9cd743bec987b2a24454418265
8c7ecefe6908387e2128dc849a6ba857991ba0ab
afb2c2b51f2ce445ada599068901551beee594b15c152ed7551ab7a8835dde6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: db4d1d2a-05b8-403e-a7ca-8b8a6a0a4087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQb-HrTIAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfab2-74f184406a48e42c0ecc4ec9;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: tv80OXQUu13gDuuFESnEnXMuFdNBmGc1y592euL7QnfZW5PwJym9-g==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:53:39 GMT
age: 78174
etag: "8c7ecefe6908387e2128dc849a6ba857991ba0ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: TlEKsCdhNhlKmA2Yhz8FarEUG18gQZMKGRD6SnzCnUMiKyGS9-UeOQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:38:04 GMT
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
age: 79109
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: f2f15f43-6054-40f5-943a-530671e772dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZjF3aIAMFW9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-5e2253791a927c8c40a0ff0d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: xRuMce_9OkP3R2DqHjZI34GwkDezdfGKsgntCMTZG2c6SJUcyv0Ckg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:56:40 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 77993
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: 13fcd792-1fcc-44b5-aa9e-d2773a60fe77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uHrbIAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-5b5f5d781b9d651b68c04f2e;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: wfnbRpTKni8hbAmJXO9vdisV6ZPoRP-eBb3wP4RzPS7MlXvp7282dw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 79192
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
optimum-mining.com/temp/lib/bootstrap/js/bootstrap.bundle.min.js
68.66.226.108200 OK 21 kB URL HTTP/1.1 optimum-mining.com/temp/lib/bootstrap/js/bootstrap.bundle.min.js
IP 68.66.226.108:0
File type ASCII text, with very long lines (65297)
Hash ce2ee50165ea0d31f17971b83d2ea453
f7eabd61b31daf334675d523330bf55e13b19662
bc1c446fa87fb3525f1afd1150327abdb32db8756269e2dd9d7dce44597254fa
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 21413
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript
optimum-mining.com/temp/lib/isotope-layout/isotope.pkgd.min.js
68.66.226.108200 OK 9.8 kB URL HTTP/1.1 optimum-mining.com/temp/lib/isotope-layout/isotope.pkgd.min.js
IP 68.66.226.108:0
File type ASCII text, with very long lines (32019)
Hash add3f2105d28b4745f4a6d1a4b1cf68a
906a571e7b19b44d4918cfacc1f6e0642abdaed2
e602f1502bea91e5a1e4253283d1924e7f0486c6f78800b3e3048264400a5e66
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/isotope-layout/isotope.pkgd.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 9847
Keep-Alive: timeout=3, max=495
Connection: Keep-Alive
Content-Type: application/javascript
optimum-mining.com/temp/lib/venobox/venobox.min.js
68.66.226.108200 OK 5.1 kB URL HTTP/1.1 optimum-mining.com/temp/lib/venobox/venobox.min.js
IP 68.66.226.108:0
File type ASCII text, with very long lines (14724)
Hash 0be3963aed683ad850e2e75ed9f65d39
b6acdb4187f654605826598e5c46821cce03e918
88b4ccb189e693fe9ccb6396939129afc29ff9d79075acbab0f57a7950849bf3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/venobox/venobox.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 5142
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript
optimum-mining.com/temp/lib/aos/aos.js
68.66.226.108200 OK 4.7 kB URL HTTP/1.1 optimum-mining.com/temp/lib/aos/aos.js
IP 68.66.226.108:0
File type ASCII text, with very long lines (14690), with no line terminators
Hash bf7e8e53954884c5d8f4c96c3f2f9937
eefe5f7a39b302c5de7760a78f6b4d4aaa4b196e
2c9242b812a9c111df0894b99a1a00a91da1725fa4fa05427654e47a8d90133d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/aos/aos.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 4699
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: application/javascript
optimum-mining.com/temp/lib/owl.carousel/owl.carousel.min.js
68.66.226.108200 OK 11 kB URL HTTP/1.1 optimum-mining.com/temp/lib/owl.carousel/owl.carousel.min.js
IP 68.66.226.108:0
File type ASCII text, with very long lines (31997)
Hash 147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/owl.carousel/owl.carousel.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 11412
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: application/javascript
optimum-mining.com/temp/js/main.js
68.66.226.108200 OK 2.0 kB URL HTTP/1.1 optimum-mining.com/temp/js/main.js
IP 68.66.226.108:0
Hash f8292c95801b9e0101eb17d6c58552e4
4341d0c04ba09a7c6b1e8d01b265930fe8b31f7e
22cd09e1b82bd8f1e66382507d5e07dbae6d99fcdd0031cddb199ff111c11e56
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/js/main.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 1963
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript
optimum-mining.com/temp/img/sprite.svg
68.66.226.108200 OK 16 kB URL HTTP/1.1 optimum-mining.com/temp/img/sprite.svg
IP 68.66.226.108:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2438)
Hash 88b0ad83affbf082f3c01b0f3161eab6
42a293dc0244cfabc0f6d9bd9efc512e7e9680ff
bba5c3fae7301ad78c9310f41f7891da10b8ed830cdfb82a2257d44b98b4cc8c
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/img/sprite.svg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Content-Length: 16228
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: image/svg+xml
optimum-mining.com/temp/lib/php-email-form/validate.js
68.66.226.108404 Not Found 597 B URL HTTP/1.1 optimum-mining.com/temp/lib/php-email-form/validate.js
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash b13dd6d924e9b88144f5bba078ae8833
487b3c059283323ac48bb0eebbe3a5d4e17635cd
f86deee84ea7bf4d39b1041274251f03f51b176a63ddeb487f558c126c7ff471
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/php-email-form/validate.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 597
Keep-Alive: timeout=3, max=496
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
optimum-mining.com/cloud/app/images/logo02.png
68.66.226.108503 Service Unavailable 570 B URL HTTP/1.1 optimum-mining.com/cloud/app/images/logo02.png
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /cloud/app/images/logo02.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlJTek9uRkVjQ05mQlFSQ2VJOUFtdlE9PSIsInZhbHVlIjoicUpkbEhBN2N2ekpjTnJWMm5jUldITEhFR0lNWE1sYUZNWlgwRVdGdk5sa2I5T1VIWGVGUmhRRzVNS1FGemhndjdMbUdVR1dUR05Gd29uK3UrdDZwTnc9PSIsIm1hYyI6ImMzNzBmZGQzNGUyYTM1NTQxOTgxZmM0YTc3M2ZiMGIwZTEyMmIwYTlmYTA5YjcwZjVlMjdkZmJlYzk1MWY2NTMifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:32 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6Ik5oSFZYdDA5clkramVnM1VJRERzNlE9PSIsInZhbHVlIjoiMnB6ZDVXS3p1THJDZHB6MWIxcER4bTk4clFlTk0rU3dnYWhGcHkzMzdTWEgzeWY5T3hySXpJaFwvQURMbDB3bDBwZjRDNmo0K1pwcnVLb3l2eHhmbVhBPT0iLCJtYWMiOiJkYmU5YzY1MTVhODdmYTY4ZmFjNDliN2Q5MjU2ODhjZWI4Y2VkZjA4ODdjN2Y0Zjg3OTc3ZjUzOTBlNmM4YmMyIn0%3D; expires=Thu, 06-Oct-2022 21:36:32 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8
optimum-mining.com/cloud/app/images/1.jpg
68.66.226.108503 Service Unavailable 570 B URL HTTP/1.1 optimum-mining.com/cloud/app/images/1.jpg
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /cloud/app/images/1.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImludXJ5S3lwVHBJSzZnbCtYOTRqblE9PSIsInZhbHVlIjoiUlJhaWI2K3RMbTlNMXdEVXlkRUJMZGFsVkUrRnhBQlpBYWJubzBJeUFMSmNndWF5NFwvUGlJNjZkVUwrM3lTdXVMaXgwalVRQUpiNlNUc0tEM1Exc3dBPT0iLCJtYWMiOiI5ZTExZGU5Njc0YmUyZWY3MTgzMjNlMWI3YzBkNmE5NmRmYTFhYTA1ODUxY2U0M2FiNDcxMmRjYjBjMDc5NTI3In0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IktLM0JVUmk2eTY5amZnaVM5ZjR5bGc9PSIsInZhbHVlIjoiZ2krcFh1NTZZblN0OFJPQlZoRnp2WngyVnNwd29uSDc2WkhKaTl4MlJjZkVtTnJsV1djVWR2K2FvOWFqMnBLOXRJVlVoWXZzQXBNRlQzVjhIUVZoZmc9PSIsIm1hYyI6ImY5YmZjMDgzYzNlMTk3MzQyMDdlYjBlMjM5ZTI5OWIyYzdkOTVhOGU2N2VjNzZlODMyYWNkMDIyNDQ1ODE2ZDYifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8
optimum-mining.com/temp/img/about/innovate.png
68.66.226.108200 OK 32 kB URL HTTP/1.1 optimum-mining.com/temp/img/about/innovate.png
IP 68.66.226.108:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash c8f28f4331b88670845bf6e962f8b338
df0d76c59ebc2bdb42c282e4bfa50da5cc51c371
965406ddcd077882990a91521dd5551f793f3973e0185aba2c91e02d6f90d1e9
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/img/about/innovate.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 32500
Keep-Alive: timeout=3, max=496
Connection: Keep-Alive
Content-Type: image/png
translate.googleapis.com/translate_static/css/translateelement.css
216.58.211.10200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 216.58.211.10:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 19:27:41 GMT
expires: Thu, 06 Oct 2022 20:27:41 GMT
cache-control: public, max-age=3600
age: 532
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
optimum-mining.com/temp/lib/ionicons/fonts/ionicons.ttf?v=2.0.0
68.66.226.108200 OK 188 kB URL HTTP/1.1 optimum-mining.com/temp/lib/ionicons/fonts/ionicons.ttf?v=2.0.0
IP 68.66.226.108:0
File type TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size 188 kB (188508 bytes)
Hash 24712f6c47821394fba7942fbb52c3b2
1b0a0de084905946a20300ca8c354865dec46764
2ba7f20b1d8990e17a47fe3d88e4c766628aaa2baf1dd30fca0a0db59836f5f9
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
quad9 Sinkholed
GET /temp/lib/ionicons/fonts/ionicons.ttf?v=2.0.0 HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/temp/lib/ionicons/css/ionicons.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Content-Length: 188508
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: font/ttf
optimum-mining.com/temp/img/about/secure.png
68.66.226.108200 OK 31 kB URL HTTP/1.1 optimum-mining.com/temp/img/about/secure.png
IP 68.66.226.108:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash ccacbffcd48f3a3726f80cdcabc80c3d
77c427b40fb2c17c2ed41ed85e631c047b969660
3c81f0259be9f692102c17da04ecfdcc362c666e427a80578fad659969f337a0
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/img/about/secure.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 31067
Keep-Alive: timeout=3, max=495
Connection: Keep-Alive
Content-Type: image/png
optimum-mining.com/temp/img/about/invest.png
68.66.226.108200 OK 25 kB URL HTTP/1.1 optimum-mining.com/temp/img/about/invest.png
IP 68.66.226.108:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ccc45ce9bf75e8bb39440f6d0e05786
cde48bbe30545c22fe4750ad70072d11c46b62ea
eafedbb603fce5a9e28a6285aebe510d182dd30c5e00618e8ac2c09d1f3dcbd4
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/img/about/invest.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 24630
Keep-Alive: timeout=3, max=495
Connection: Keep-Alive
Content-Type: image/png
optimum-mining.com/temp/img/payments/payment-88.png
68.66.226.108200 OK 4.2 kB URL HTTP/1.1 optimum-mining.com/temp/img/payments/payment-88.png
IP 68.66.226.108:0
File type PNG image data, 300 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 912aa21486155af0c458fbd2646bc269
c3bd4f7f82a2da26e7489257fcb3e8001cd654e2
ce98f32ca39bef0b27976032526b9464a6cfa43a23194127cae0706348c0cf67
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/img/payments/payment-88.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 05:03:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 4184
Keep-Alive: timeout=3, max=496
Connection: Keep-Alive
Content-Type: image/png
optimum-mining.com/temp/img/about-bg.jpg
68.66.226.108200 OK 395 kB URL HTTP/1.1 optimum-mining.com/temp/img/about-bg.jpg
IP 68.66.226.108:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1151, components 3\012- data
Size 395 kB (394565 bytes)
Hash 0767c1c7703adc7d301993ec6ecf3d8f
a7075f06b3fdef81a93fac767f519e5cc7371d84
b6ffff4b5d5773ee4133de2d0624aedcd04b39be00b2471f90c277a87f30dbd7
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/img/about-bg.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/temp/css/frontend_style_blue.css?v=1.4
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Keep-Alive: timeout=3, max=494
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash d4ce1545d73b71f5f2cd6762ec9afd40
6f6fd57f0f2aa857ad758dded6e31366ff7152b8
9335bc5108455549ca54676605e81925ddb253f9453669481063649e49519651
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 19:36:33 GMT
Last-Modified: Thu, 06 Oct 2022 19:23:19 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iV8XcQ1RhvaZlFZvSsu8zeH5HDiUW9TD6SNti3TerWRnKNt0NscCBA==
Age: 794
optimum-mining.com/temp/img/payments/payment-6.png
68.66.226.108200 OK 6.3 kB URL HTTP/1.1 optimum-mining.com/temp/img/payments/payment-6.png
IP 68.66.226.108:0
File type PNG image data, 300 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 8450dbf262cc8dcd3c9164f58eb4cdb3
68178e4860914ab62b4035038d72ce0bae19b1c0
c53233286197c9cb091b2e445cfce9ffe2fa2623012177d4e7b9f364cc06b1a2
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/img/payments/payment-6.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 6330
Keep-Alive: timeout=3, max=494
Connection: Keep-Alive
Content-Type: image/png
optimum-mining.com/temp/img/payments/payment-4.png
68.66.226.108200 OK 3.8 kB URL HTTP/1.1 optimum-mining.com/temp/img/payments/payment-4.png
IP 68.66.226.108:0
File type PNG image data, 300 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 0259e1d04f8987a5b1e5b6be305ded60
4b73db960f944a32ae8f22632ec14aa2ef3e2e47
2e067677c1812e54b34ce065fdc76cf88556385460095ba8927efd7495f98746
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/img/payments/payment-4.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 3776
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: image/png
optimum-mining.com/cloud/app/images/avatar.png
68.66.226.108503 Service Unavailable 570 B URL HTTP/1.1 optimum-mining.com/cloud/app/images/avatar.png
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /cloud/app/images/avatar.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlplMFcxVTlJVXFDbHZiK3R6MytvXC93PT0iLCJ2YWx1ZSI6InFvRjg5bU5qWk9RcU9MSHkrbW5Qckh2ZzhQYlZrWWF6N1lrV29FdHMrelpsTDJcL2xidUtIU1RCdUl4K2JtZnFiS3hRU3pCMlVMNWtpZzRQcWlnR2VRdz09IiwibWFjIjoiN2E2OTYwNmZhODI3MmE5NTNhNDY5NmE1MzMxNzVkMjdiNGJkZmRhNTZjM2U0YzQyZDliY2Q0N2JkZGE3MmM2NSJ9; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IlNiWVkzZDd6dmY2S0dPMWVzZHBJS2c9PSIsInZhbHVlIjoib2k0RElkVFNLQnNhXC9NdDByUHRlQVRlM3FwaDNKdzZTUk9PMEhTaUVxN29rYkZPY00wY2VSNzZDQW9TdnJ5MjE1WUFKUzBpRjh5QnNNR1Y2ZkZLWDB3PT0iLCJtYWMiOiJjZjMyYmIwYzUyNWJlOTRkYTdmZmI5ZWE4NDJmNmVlMTRlZDU2ZTVlMDIxMjY5NWZlMzJiNDU1OWYwZDAwYmFmIn0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8
optimum-mining.com/cloud/app/images/2.jpg
68.66.226.108503 Service Unavailable 570 B URL HTTP/1.1 optimum-mining.com/cloud/app/images/2.jpg
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /cloud/app/images/2.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlBEQTVZUmNSTHZHclRjN2pTaUduZFE9PSIsInZhbHVlIjoicFhJQlFvakpSSmEyVFpTWU5kV1dMdkp4MktyVGtzcXFCXC9ndHMyRDRRVG5NZVRuU0tvWnd2MHFKbVpnb2k2RUpQdHpnSjNoc0Z6MWNwdG9JN0RWakdRPT0iLCJtYWMiOiJiMjRiNzc5MWNiODZiNWYzNjJkNmIxMWUyZTE0MTg0ODNlOGZhOTExNGZiNDZhZmZjMDc3NDM1YThmM2UwNWNjIn0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IlpRV1d4aDc2YVpnbnI1c2M5QWlYR3c9PSIsInZhbHVlIjoiNXV4bWdQWkZ5S0I5a3hxc210WDhQWmxlUUJNZE9HRG9LdDRVSFdLNGdCNml4bzVNUkYxeCtyUk0wVXl1dXhCWXR0ZU1GajI2cTFIajBmUkRUUXljV3c9PSIsIm1hYyI6IjE2ZGQyNThjYmVmYTExMmNiMWExYTQyMjEwMWJhMDk4YjdjMWY3OTU5NzRmOGVlNmExY2JiZjgxY2JhNWE4MzAifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8
optimum-mining.com/cloud/app/images/3.jpg
68.66.226.108503 Service Unavailable 570 B URL HTTP/1.1 optimum-mining.com/cloud/app/images/3.jpg
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /cloud/app/images/3.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImprNXFKUk1TckJFb2xsdVpSQmZ5eWc9PSIsInZhbHVlIjoiMHppXC9IMUtObUdUUjlqWk05aVdYdmdnMXFSbExNN0V6aTZ0UmloV2lMem9Vc2ZXSlU2NXM5dWhwYmI5YzhjWndxK2Zqd0tkQ1craGlxSE9pRWtBcCtRPT0iLCJtYWMiOiI0NTFjZmM2MmRmZDY3ZDUyYzc5ZTZiZGI3ZDgxMDQwOGMxZTljZDc5MmZhNGQ3NTVhZjJhNDEyZGZjNDMyODFjIn0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IlRzaGJmcHhVRlRzSlFRZ0s1OWVxWHc9PSIsInZhbHVlIjoiczFrVGtPelRyT1JGZ0tPWmtkekNJN3MwZE5LQmZ5M010UzB5SnpzWmYwdmMzK3p0Y0xETEptanczQkVQODdwY1VhcjJOeHRpaFV1M0pIdTZjZGtaOHc9PSIsIm1hYyI6IjQyYWRmYzE5ZmYzZTY0MzFlZjVjNDczN2JkNGFhNjc1MWE4NWM4NjExMmJkNWI0MDdiMWIzOTc2NjA4ZWY4N2YifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8
optimum-mining.com/temp/img/about/prof.png
68.66.226.108200 OK 23 kB URL HTTP/1.1 optimum-mining.com/temp/img/about/prof.png
IP 68.66.226.108:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 2146fb96d0b742991c35d5adf61ce5cd
04c88154323e72d84575761a464b4477cc596bbb
5533aead528fb9e3febfd27416ba7998656b4c2c7f04434cf9a8a5c6f066478c
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /temp/img/about/prof.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 22941
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: image/png
optimum-mining.com/cloud/app/images/4.jpg
68.66.226.108503 Service Unavailable 570 B URL HTTP/1.1 optimum-mining.com/cloud/app/images/4.jpg
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /cloud/app/images/4.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjhxdTVoaEtlS0RGXC96TlpJREY2ZmtRPT0iLCJ2YWx1ZSI6Ik15RUtUU2xxaWV3UUlEaW4rbjBuclEzRnZRdVhkZ2JyNFNuQWo4Z1hkMGN4VnI2d0l4ZjZ3Sml2V1JFaXlFUnlTbEVrQ04rdHhnUTJDdVdUb2NVTWtBPT0iLCJtYWMiOiI1NWM2YzFlOGY1NjI4MmNkZjA3NWJiYzVhMTgwNzY5YmI4NDEzMDgyOWEwMDJjNWRmOTJkNmZhODc5OWVkY2U2In0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IjhsOERXMWtTK3RpcTNpSW9EN0NXZlE9PSIsInZhbHVlIjoiYXVDQ01NaFpubVVraDAybnRHNFZkSk04ckxmYnF5czE5ajVmTmluTGFERTdiSG1PSW9XN1h4QUJpVDhZZ3B1ajFLQ2QyTldoOGREWjI3cmVwN0FpZFE9PSIsIm1hYyI6IjE5YjEyOTE0M2M2NjljM2Y1NDA5NDdhZTY3Y2Y4YTY5NTEwMTk4ODAyMTNmZTNjMjNjMTU5MGQ4NjdhNTE2ODEifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8
optimum-mining.com/cloud/app/images/5.jpg
68.66.226.108503 Service Unavailable 570 B URL HTTP/1.1 optimum-mining.com/cloud/app/images/5.jpg
IP 68.66.226.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634
Analyzer Verdict Alert openphish Crypto/Wallet
quad9 Sinkholed
GET /cloud/app/images/5.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6InFzc1BQN0g0WVFBMXR2a0J3WVRVeWc9PSIsInZhbHVlIjoiQXcweFFtU1FpR0tuYlF5aDlmXC9nNnVVelFcL1dodmsrQ1VxYk1kMDBoYWJwRklnalF0NFVneFVxWjBkOXpoRm8zdmw2N1doaERBME95aDZnU2laTUszUT09IiwibWFjIjoiZWYwOTBmNjlhMWVkZjFmZjhmNzdlNjU1NzU5MWM2YzUxMTVjODVjNTFmM2IwN2ViZDg1YmMyYTE4NDMyMTc3NyJ9; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IlVIaHVYSlU0NE9yTTJcL1hYdEVZS0lBPT0iLCJ2YWx1ZSI6IkE4Yk1kaEFNTjdINmlpemN2VitzMEdnOWxsUlRSeFo0TjFWd2ZcLzlmMVlidlh3VEJyMGc3UU5mN0JqeTVBZjREeVFjMjZZTjdSZnpsbUZrNVRoZ2FaZz09IiwibWFjIjoiNTNhMDY2MWM0ZDkwZGM0MDNmYjQxNGI2NWQ3NzNiNmU3NzM2N2JkZDk2OWQzNGZiZWI3OTk1NDhkMGY2Y2U5NiJ9; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8
widget-v2.smartsuppcdn.com/asset-manifest.json
185.76.9.19200 OK 96 kB URL HTTP/2 widget-v2.smartsuppcdn.com/asset-manifest.json
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
File type JSON data\012- , ASCII text
Hash dbe1bdc6e49172a8031d46e1f32f5f5f
6df67a6b0e1a32f6e13de101c7f8db05ae05f152
75180daa57b75f30de0f21965d63b7360a4907c893e91316837ba948bf2a21fe
GET /asset-manifest.json HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:34 GMT
content-type: application/json
last-modified: Thu, 29 Sep 2022 17:19:37 GMT
etag: W/"6335d3a9-6ce"
expires: Thu, 29 Sep 2022 20:07:45 GMT
cache-control: max-age=300, public, s-maxage=60
access-control-allow-origin: *
x-accel-expires: @1665085017
server: CDN77-Turbo
x-77-nzt: AblMCQ01aDn/JQAAAA
x-77-nzt-ray: S+XIJDlL+Eg
x-cache: HIT
x-age: 37
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.163200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 17:17:31 GMT
expires: Fri, 06 Oct 2023 17:17:31 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 8343
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.163200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 18:18:02 GMT
expires: Fri, 06 Oct 2023 18:18:02 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 4712
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
142.250.74.163200 OK 910 B URL HTTP/2 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP 142.250.74.163:0
File type PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 13:38:21 GMT
expires: Fri, 06 Oct 2023 13:38:21 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 21493
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/main.2b685341.chunk.js
185.76.9.19200 OK 27 kB URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/main.2b685341.chunk.js
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash dac6b6a936760a6948257ca0fe87276a
8f4be60790714c67e7c668058a7f2973501ac198
b47cd7a8a45f5cfe14febd326cf54b8db39f476a8d51a7302151e1c5e0e7cb0b
GET /static/js/main.2b685341.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:34 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 17:19:37 GMT
etag: W/"6335d3a9-1cba4"
expires: Fri, 29 Sep 2023 20:02:46 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1696017766
server: CDN77-Turbo
x-77-nzt: AblMCQ2mIoL/XDQJAA
x-77-nzt-ray: mU6KZGGcI1o
x-cache: HIT
x-age: 603228
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/translates/en.json?v=40dc5d66667b97efcc02e6c0aff17d1954e58a21
185.76.9.19200 OK 2.9 kB URL HTTP/2 widget-v2.smartsuppcdn.com/translates/en.json?v=40dc5d66667b97efcc02e6c0aff17d1954e58a21
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (647)
Hash 3412748410df0cfb61235ef314c40b49
807d74e5df9f2fbb92f5c28075844f29585e2c66
75e581aa08e5c06bd1f8608d90b2ca35ae22289edf62ba73c18da1252e51d10f
GET /translates/en.json?v=40dc5d66667b97efcc02e6c0aff17d1954e58a21 HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://optimum-mining.com/
Origin: https://optimum-mining.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:34 GMT
content-type: application/json
last-modified: Thu, 29 Sep 2022 17:18:40 GMT
etag: W/"6335d370-fc9"
expires: Fri, 29 Sep 2023 20:02:47 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1696017767
server: CDN77-Turbo
x-77-nzt: AblMCQ0y983/WzQJAA
x-77-nzt-ray: QSUeVMWIjYw
x-cache: HIT
x-age: 603227
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 40a4de06678d96242b71d5318f2fd4ef
546a7d1d92df81916f14155943427b5453ae3924
aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/images/cleardot.gif
142.250.74.164200 OK 43 B URL HTTP/2 www.google.com/images/cleardot.gif
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Thu, 06 Oct 2022 19:36:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 6a99923db121654572b670b5e1b555b6
7e90f4b02e91324b70b217dbe9c77aaff5511025
492425c493cc59426d44a84ef30038fc67df5c7e8aadcb7837392e3ecc5e4ec6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 19:36:34 GMT
Last-Modified: Thu, 06 Oct 2022 18:36:59 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QS7kJQaxRbwZsyiNGbQ5aAVb9dgO-Hw0tmqAFdSu_GpoFfUdOCOZlQ==
Age: 3575
websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket
18.185.32.250101 Switching Protocols 0 B URL HTTP/1.1 websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket
IP 18.185.32.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket/?EIO=3&transport=websocket HTTP/1.1
Host: websocket-visitors.smartsupp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://optimum-mining.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: o4K+PGbClCta5JKzgU00Cw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 06 Oct 2022 19:36:34 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4ECozhn8jQ09MbcAqFgurzk1YFU=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
www.smartsuppchat.com/loader.js?
185.76.9.18200 OK 0 B URL HTTP/2 www.smartsuppchat.com/loader.js?
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /loader.js? HTTP/1.1
Host: www.smartsuppchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:33 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2022 08:04:02 GMT
etag: W/"633a9772-47b4"
expires: Mon, 03 Oct 2022 08:10:37 GMT
cache-control: max-age=300, public, s-maxage=60
x-accel-expires: @1665085008
server: CDN77-Turbo
x-77-nzt: AblMCQ0MvFH/LQAAAA
x-77-nzt-ray: f3A4IuUBJQQ
x-cache: HIT
x-age: 45
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/6.0e1e87c0.chunk.js
185.76.9.19200 OK 0 B URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/6.0e1e87c0.chunk.js
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
GET /static/js/6.0e1e87c0.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:34 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 17:19:37 GMT
etag: W/"6335d3a9-81d5c"
expires: Fri, 29 Sep 2023 20:02:46 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1696017766
server: CDN77-Turbo
x-77-nzt: AblMCQ11ylL/XDQJAA
x-77-nzt-ray: Jq5+UW1NApE
x-cache: HIT
x-age: 603228
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
bootstrap.smartsuppchat.com/widget/50315765a2d75adcfb4c1b0287bba05ffadfd77f.json
3.73.251.220200 OK 0 B URL HTTP/2 bootstrap.smartsuppchat.com/widget/50315765a2d75adcfb4c1b0287bba05ffadfd77f.json
IP 3.73.251.220:0
GET /widget/50315765a2d75adcfb4c1b0287bba05ffadfd77f.json HTTP/1.1
Host: bootstrap.smartsuppchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:33 GMT
content-type: application/json; charset=utf-8
x-version: 40abd74f2935f2a6d1a2667e53c08501d31c5c2e
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private, max-age=0, must-revalidate
x-hit: redis
etag: "3f4-MAp3ZZacNZ0qvCJ/M0bCjqJqoig"
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:100,200,300,400,500,600,700,800,900&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:100,200,300,400,500,600,700,800,900&display=swap
IP 142.250.74.10:0
GET /css?family=Poppins:100,200,300,400,500,600,700,800,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 19:36:32 GMT
date: Thu, 06 Oct 2022 19:36:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2