Report - optimum-mining.com/

Report Overview

Submitted URL
optimum-mining.com/
IP
68.66.226.108
ASN
#55293 A2HOSTING
Submitted
2022-10-06 19:36:41
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
202

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	6.0 kB	142.250.74.163
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.118
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.89.20.60
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	4.9 kB	142.250.74.3
translate.googleapis.com	1005	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	406 B	4.6 kB	216.58.211.10
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.76.226
optimum-mining.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	41 kB	932 kB	68.66.226.108
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.9 kB	54.230.245.100
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	428 B	746 B	142.250.74.10
www.smartsuppchat.com	46890	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	358 B	465 B	185.76.9.18
bootstrap.smartsuppchat.com	43006	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	464 B	356 B	3.73.251.220
widget-v2.smartsuppcdn.com	49903	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	128 kB	185.76.9.19
websocket-visitors.smartsupp.com	39452	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	585 B	222 B	18.185.32.250
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	853 B	142.250.74.164
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	28 kB	142.250.74.46
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	26 kB	216.58.207.195

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet
2022-10-06	medium	optimum-mining.com/	Crypto/Wallet

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	optimum-mining.com/	Phishing
2022-10-06	medium	optimum-mining.com/	Phishing
2022-10-06	medium	optimum-mining.com/temp/css/frontend_style_blue.css?v=1.4	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/jquery.easing/jquery.easing.min.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/jquery/jquery.min.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/waypoints/jquery.waypoints.min.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/counterup/counterup.min.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/php-email-form/validate.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/bootstrap/js/bootstrap.bundle.min.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/isotope-layout/isotope.pkgd.min.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/venobox/venobox.min.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/aos/aos.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/owl.carousel/owl.carousel.min.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/js/main.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/img/sprite.svg	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/php-email-form/validate.js	Phishing
2022-10-06	medium	optimum-mining.com/temp/lib/ionicons/fonts/ionicons.ttf?v=2.0.0	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed
2022-10-06	medium	optimum-mining.com	Sinkholed

JavaScript (24)

	URL	Size	First Seen	Last Seen
	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit	78 kB	2023-03-08	2023-03-08
Pretty URL translate.google.com/translate_a/element.js?cb=googleTranslateElementInit IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:42:10 Last Seen2023-03-08 07:42:51 Times Seen1 Hash 7181b3a8c18a272578641533b35ea943 2db6786677d3bc3779010c839271dbe4332bfc0b 34feaca8285d9a284dc9376f1c83813292f3e5f17366f17411c8deb13b1db4b0 Loading...

	optimum-mining.com/	42 B	2023-03-08	2023-03-08
Pretty URL optimum-mining.com/ IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:42:22 Last Seen2023-03-08 07:42:22 Times Seen1 Hash 7533f93825117358c2fdc8e3c819152c b52096eb310970dbd5730e3d3896221ac13a5db2 e9405f4e161268f63d3c005fabbad351503b77168b291903dea6f1435741256c Loading...

	optimum-mining.com/temp/lib/aos/aos.js	15 kB	2023-03-07	2024-04-25
Pretty URL optimum-mining.com/temp/lib/aos/aos.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:08 Last Seen2024-04-25 10:00:13 Times Seen2029 Hash d3718e34eeb0355be8e3179a2e2bccb7 850ee2e5c9fba610840137c6c4e92b5abbc428fe a5005b2e414770fd5ccb40bc221a12771966d02b5c1f9c89da48bd8e3811d377 Loading...

	translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback	17 kB	2023-03-07	2024-04-25
Pretty URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 16:36:17 Times Seen14179 Hash a3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067 Loading...

	widget-v2.smartsuppcdn.com/static/js/6.0e1e87c0.chunk.js	532 kB	2023-03-08	2023-03-11
Pretty URL widget-v2.smartsuppcdn.com/static/js/6.0e1e87c0.chunk.js IP 185.76.9.19 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:36:05 Last Seen2023-03-11 16:37:43 Times Seen1 Hash 4915b1251e944cc89ee21a266e0b5f15 315ae7f5c7f36bc7497dd3b9a9b0fd815e43a5f8 877502018fa0a0f82d1b2bceb146606f03ce8f8b74113977f82ba6fd72ab862c Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.hKV5EFt4BZM.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq7j522tUQPg3dC174dPSArletY_Q/m=el_main	271 kB	2023-03-08	2023-08-10
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.hKV5EFt4BZM.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq7j522tUQPg3dC174dPSArletY_Q/m=el_main IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:40:40 Last Seen2023-08-10 06:40:13 Times Seen3 Hash c389ccef18cab71fa782cec6bd448673 cb584b7e1ace18c9822e06d7e72f570dfef07960 230d5b562ff4610333fae11f3ba7205d4db13410fab519e987c18dd52f22ee89 Loading...

	optimum-mining.com/temp/lib/jquery.easing/jquery.easing.min.js	2.5 kB	2023-03-07	2024-04-25
Pretty URL optimum-mining.com/temp/lib/jquery.easing/jquery.easing.min.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 04:58:29 Times Seen4414 Hash e2d41e5c8fed838d9014fea53d45ce75 bde98133f735398b27339c423a817e755329f7d1 1f7723b6b9bfced0deba108df48e3287888dd986f1ff2d5133bacc9807ac0349 Loading...

	optimum-mining.com/temp/lib/isotope-layout/isotope.pkgd.min.js	35 kB	2023-03-07	2024-04-25
Pretty URL optimum-mining.com/temp/lib/isotope-layout/isotope.pkgd.min.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-25 13:00:06 Times Seen5683 Hash 2afcff647ed260006faa71c8e779e8d4 c4e5994f24ee8c8d2cf2d6602f0b56b9096a2e98 081ae9baaacc857c1c2cb51de6dbd0e1eb811c2761ef01a50df373f2f6eefe22 Loading...

	optimum-mining.com/temp/lib/counterup/counterup.min.js	2.4 kB	2023-03-07	2024-04-17
Pretty URL optimum-mining.com/temp/lib/counterup/counterup.min.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-17 07:09:24 Times Seen1008 Hash d0ce5cfe7008eab4a73260954f06df68 4426c6745ebb31e834dcc1f9105e2e2e7402ffc1 cffc5847cc961e6d38ede0947f9e0e9650c92521660360468647d59944a75638 Loading...

	optimum-mining.com/	150 B	2023-03-07	2023-09-17
Pretty URL optimum-mining.com/ IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:39 Last Seen2023-09-17 05:55:26 Times Seen6 Hash 70ef8931bd6059d012c57b8d93607976 224d3ea40e896f06686c509462dd5d3efcd3e1f3 af9dc16378b60f9839a5b7166535aaf8102cd626b4e17fabeab0d4910e581c26 Loading...

	www.smartsuppchat.com/loader.js?	18 kB	2023-03-08	2023-06-10
Pretty URL www.smartsuppchat.com/loader.js? IP 185.76.9.18 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:37:04 Last Seen2023-06-10 14:32:40 Times Seen3 Hash 15f1a94aa95cbd490717e8bc8f33b6bb 7615f9bacaffcf358bc47f91fc3cecac9cc80447 f1b8146e084f34a6c2f1faca8f0c6981d1e72507b67f37c8cf139c2751ef41c0 Loading...

	widget-v2.smartsuppcdn.com/static/js/main.2b685341.chunk.js	118 kB	2023-03-08	2023-03-11
Pretty URL widget-v2.smartsuppcdn.com/static/js/main.2b685341.chunk.js IP 185.76.9.19 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:36:05 Last Seen2023-03-11 16:37:43 Times Seen1 Hash 83e84783a4623390f17639b13d69f3c0 dbb5c716ededadba8aaf0a684962dea567411bed ff086530bb308c3cd16e62ac3a455c99c0c836c26c30ea86c130f1e7051c6170 Loading...

	optimum-mining.com/temp/lib/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL optimum-mining.com/temp/lib/jquery/jquery.min.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 16:52:44 Times Seen139139 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	optimum-mining.com/temp/lib/venobox/venobox.min.js	15 kB	2023-03-07	2024-04-17
Pretty URL optimum-mining.com/temp/lib/venobox/venobox.min.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:22 Last Seen2024-04-17 07:09:24 Times Seen127 Hash b0638d600f770a5abe5d170e1e9fde2f 02d07d30fe084489cb42ca92a1461d86b8a03c76 20da8dd22f3896def02a7912793ebe0d6a7aecfeb5374f194659e6b4d2849465 Loading...

	optimum-mining.com/temp/lib/owl.carousel/owl.carousel.min.js	44 kB	2023-03-07	2024-04-25
Pretty URL optimum-mining.com/temp/lib/owl.carousel/owl.carousel.min.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-25 13:15:30 Times Seen19912 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	optimum-mining.com/temp/js/main.js	6.8 kB	2023-03-08	2023-03-14
Pretty URL optimum-mining.com/temp/js/main.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:42:22 Last Seen2023-03-14 07:32:40 Times Seen1 Hash 8594a9caf721a89458736a23e0b1b1bd c9670b7f7e2095a058109ccdb5629fa3526d4ebd 63496ea8c1b692b3b8fbcb5fb8cae5ff0df23162296030efbea683d666c23a92 Loading...

	optimum-mining.com/	418 B	2023-03-08	2023-03-08
Pretty URL optimum-mining.com/ IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:42:22 Last Seen2023-03-08 07:42:22 Times Seen1 Hash 77560dfff61ddeedc30e7590e6690d94 98e8ea170c92f09154f97d5db2b30e292ba4e548 3817f74190bde09f5884a0ccf1ed8273f59c8b1ed8db47af01656909d45c364e Loading...

	http:srcdoc	1.2 kB	2023-03-07	2023-10-23
Pretty URL http:srcdoc IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2023-10-23 05:00:07 Times Seen4 Hash 1de62a4f326c081c49d5fdbb380837a9 2306f80fa6c73543b3af799b105ef6fc812d89d0 71a8551572997ad5c34fb5e73b002d5b1ce1d900c9e5453f1fe24dfb68bd6c13 Loading...

	optimum-mining.com/temp/lib/waypoints/jquery.waypoints.min.js	9.0 kB	2023-03-07	2024-04-25
Pretty URL optimum-mining.com/temp/lib/waypoints/jquery.waypoints.min.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-25 14:43:56 Times Seen4762 Hash 7d05f92297dede9ecfe3706efb95677a 56bdb149d9baf64474a4c24ae66445769a28254e 368daab67b1a5b2b2802edbbac79a2aa4ba992a2ebf9c67b98ad784d8004018c Loading...

	optimum-mining.com/temp/lib/bootstrap/js/bootstrap.bundle.min.js	76 kB	2023-03-07	2024-03-30
Pretty URL optimum-mining.com/temp/lib/bootstrap/js/bootstrap.bundle.min.js IP 68.66.226.108 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:55 Last Seen2024-03-30 20:43:22 Times Seen242 Hash 4c723f3a80b935e5e37ec46940bad17f 2fddaeb8c5996f0bf7eee5c1b8ba30882f056609 3126158d682bafa50bffd7907d0bcecadebf82cc5be9da70235cea3390db2c2b Loading...

	widget-v2.smartsuppcdn.com/static/js/runtime-main.4e049abd.js	2.5 kB	2023-03-08	2023-03-11
Pretty URL widget-v2.smartsuppcdn.com/static/js/runtime-main.4e049abd.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:36:05 Last Seen2023-03-11 16:37:43 Times Seen1 Hash a754b9f4ed7c111424e0d18dfec6eca1 392992cb0b7a4a9c14619f5b0c2b60739606581a 788a5a033a99e91f2575696d8c06e057da32f53dbe673f8d2a94dc8f13d6776e Loading...

		Size	First Seen	Last Seen
	#1 Write - 1ea872e800e8178012560994a717feee	2.9 kB	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-03-17 12:49:46 Times Seen1 Hash 1ea872e800e8178012560994a717feee 391fb300646cecffead4773ee363d154bdc7b723 bd9b9037f2231777bcc799f76eeeae2e5a01663cce765e72e2ed1bda49cc926c Loading...

	#2 Write - 8b61ee8612aec53f39c77bf6f6bd989f	382 B	2023-03-07	2023-06-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-06-19 20:30:52 Times Seen84 Hash 8b61ee8612aec53f39c77bf6f6bd989f 100a093c0b3e54546f31abf306c6ecc99e293938 d2485660acb012ca34ca118cb59e6fbb11edb83ea98a0e050dd9bed186ee9274 Loading...

	#3 Write - 17b4f42d4db289726d11bffdeb8ecb62	382 B	2023-03-07	2023-06-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-06-19 20:30:52 Times Seen84 Hash 17b4f42d4db289726d11bffdeb8ecb62 4714b95ed330602e794dcb5c76a744645b463b8c c68c84b340115ef05318c4438aed24d3cd6198fdac59ac30dc7bac98452fda69 Loading...

HTTP Transactions (87)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

54.230.111.118

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.118:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HKkwlUyDpX9lfDN_86tEdsb-hPX54WkVbJfynLSfdLneN5DvWI5V7g==
Age: 100152

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2312
Expires: Thu, 06 Oct 2022 20:15:02 GMT
Date: Thu, 06 Oct 2022 19:36:30 GMT
Connection: keep-alive

optimum-mining.com/

68.66.226.108

301 Moved Permanently

235 B

URL HTTP/1.1
optimum-mining.com/
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
235 B (235 bytes)
Hash
1fc699769d9c3b22fb67f949202c2c68
03a0b07a9f8bad25387ff3fe35861cee66eff110
77a9e2a39d6bb38d5c2a44639700576e66e3674151e82f8218383c7f1c65a91f

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 06 Oct 2022 19:36:30 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Location: https://optimum-mining.com/
Content-Length: 235
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2733
Expires: Thu, 06 Oct 2022 20:22:04 GMT
Date: Thu, 06 Oct 2022 19:36:31 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 6sXfMo2DyhfGRozPmqop3wUATgXl0RWEHdgsvDRBQxtzitFYwM6vfRfO7zzHnPqFrOfba5uRB5DC5NY6eAHslw==
x-amz-request-id: 3QTSWJ6V76TY99S9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 19:30:54 GMT
age: 337
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 19:36:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.118

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.118:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 19:29:41 GMT
Expires: Thu, 06 Oct 2022 20:07:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4kvDF-W3dzvtuEYWHu1qxvTOxUpsi8VSz1WCN8f--bQRxbBa2rLSHA==
Age: 410

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5221
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:31 GMT
Last-Modified: Thu, 06 Oct 2022 18:09:30 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.89.20.60

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.89.20.60:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nV2rat8WzWD0b+w/PrR5pw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: R43gdYUKQ/U0y3xrLk74xFDNDh4=

optimum-mining.com/

68.66.226.108

200 OK

6.0 kB

URL HTTP/1.1
optimum-mining.com/
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
6.0 kB (6034 bytes)
Hash
321c64a9ddbba1428120bb1b9cacbee2
ede6c6707941e747b18fa3957100516c76cb3b18
86f29e3d9b74cd4202f99d5e1bd4bb282c90fef545263893f9a7ab4c46422305

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:30 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; expires=Thu, 06-Oct-2022 21:36:31 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D; expires=Thu, 06-Oct-2022 21:36:31 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6034
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

optimum-mining.com/temp/lib/bootstrap/css/bootstrap.min.css

68.66.226.108

200 OK

23 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/bootstrap/css/bootstrap.min.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (65324)
Size
23 kB (22981 bytes)
Hash
dbf99aa91d2b43366e57d0a2932435c9
f6b45eb419984780bdcc0b887a32f58c6f0c71c0
5723392e142df73541042f71518fbdb1fe5b0e7da21fc31316920dfcb18ab150

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:31 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 22981
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/lib/animate/animate.min.css

68.66.226.108

200 OK

2.6 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/animate/animate.min.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (16755), with CRLF line terminators
Size
2.6 kB (2628 bytes)
Hash
b3e7a99e68384d1ec67285d0c5327166
56ada37d072fddc0835b1cd826a55096b6595823
7bb7877c319f3735f2650ad528156633475e8ccae0e1fafb338d9d4a2b5d850b

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/animate/animate.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 2628
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/lib/font-awesome/css/font-awesome.min.css

68.66.226.108

200 OK

7.1 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/font-awesome/css/font-awesome.min.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7053 bytes)
Hash
52f1a8a2ce85fa8432308b33bc1a2e79
fd80917af5371c8ecad0198592a1e7cce4b77b0e
07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 7053
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/lib/boxicons/css/boxicons.min.css

68.66.226.108

200 OK

11 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/boxicons/css/boxicons.min.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (61773), with no line terminators
Size
11 kB (11194 bytes)
Hash
1825657fa7ed2be2d779d8e783cfc54e
cae37fe90c939d95fe54f409a0cf51cdb83fde83
57bf319435b30889a562749ac9ce624311f090dfe66f0f66b2cbca3b7cedb9c9

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/boxicons/css/boxicons.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 11194
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/lib/ionicons/css/ionicons.min.css

68.66.226.108

200 OK

8.3 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/ionicons/css/ionicons.min.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
Unicode text, UTF-8 text, with very long lines (50806)
Size
8.3 kB (8284 bytes)
Hash
3f1e436685a4599a3c5a4ad1d4742aae
f5c604e83a72202d2e0d4fb4fa3413df611bfc9b
d3dc8d7385a9b9ae0ad8879206762d0fc12d18adb604e4262f08aa48d81262bd

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/ionicons/css/ionicons.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 8284
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/lib/owl.carousel/assets/owl.carousel.min.css

68.66.226.108

200 OK

1.1 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/owl.carousel/assets/owl.carousel.min.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (3184)
Size
1.1 kB (1068 bytes)
Hash
8864ff6a1198eecf45821c602593ff9a
c6097cea47ac44fcec94781f2af0110cb677ab0a
19eaae3fdfe574cd1b1cfd78d30633a4527bde9711dde88b467fe43ca854cda5

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/owl.carousel/assets/owl.carousel.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 1068
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/lib/aos/aos.css

68.66.226.108

200 OK

2.2 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/aos/aos.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (26053), with no line terminators
Size
2.2 kB (2236 bytes)
Hash
53455c53714302b8153f86daf9d8ca3d
a72d3065fea222f72ec0fa70a1850c100b91a2ec
646441ad0693bd17e3e61b35b2c5a22a709b160dbb77e5cc24b65e95910d19e9

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/aos/aos.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 2236
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/lib/venobox/venobox.css

68.66.226.108

200 OK

3.1 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/venobox/venobox.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (15397)
Size
3.1 kB (3089 bytes)
Hash
b27c97f92b4d5491fc3ae698ca71df1e
e7c930467d51fa8b291e5f161dd1da37de99fb2f
83d6b703d4594acf31b309d9a8095c63f915943fab0091f5eed8c84744b37388

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/venobox/venobox.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 3089
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/lib/icofont/icofont.min.css

68.66.226.108

200 OK

17 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/icofont/icofont.min.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (65364)
Size
17 kB (16852 bytes)
Hash
ab5ef21fd6601049acb9ae3b2ed65f2c
77488841e767144654491c99e623d565cdc121e4
4b94b8d5a14535eff92d44d0d00fe1a30a92b503334ae65ac6bec9f991d591b5

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/icofont/icofont.min.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 16852
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/css/frontend_style_blue.css?v=1.4

68.66.226.108

200 OK

5.6 kB

URL HTTP/1.1
optimum-mining.com/temp/css/frontend_style_blue.css?v=1.4
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text
Size
5.6 kB (5587 bytes)
Hash
773a5d89179335394d1af2a0998bf8b7
0e86cc87005d278c74e02ddb670f6676c53275de
d6255d1a85c0d2cf1c222620ac0344159fded6fa78cade73fdb695ee1d49d82f

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/css/frontend_style_blue.css?v=1.4 HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 01:48:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 5587
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/css

optimum-mining.com/temp/lib/jquery/magnific-popup.css

68.66.226.108

404 Not Found

597 B

URL HTTP/1.1
optimum-mining.com/temp/lib/jquery/magnific-popup.css
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
597 B (597 bytes)
Hash
b13dd6d924e9b88144f5bba078ae8833
487b3c059283323ac48bb0eebbe3a5d4e17635cd
f86deee84ea7bf4d39b1041274251f03f51b176a63ddeb487f558c126c7ff471

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/lib/jquery/magnific-popup.css HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 597
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.74.46

200 OK

27 kB

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
data
Size
27 kB (27273 bytes)
Hash
64a6a5d088acc2ce487fab8187e39775
3f5f6fa23a549f4354d5469e3d03bb7dca1fe359
a7c516e9c1f0a0ddc0640eece49d3937eeca8fcade465b873d4ff2db7023780c

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 19:36:32 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+881; expires=Sat, 05-Oct-2024 19:36:32 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.195

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:48:50 GMT
expires: Thu, 05 Oct 2023 21:48:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 78463
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

optimum-mining.com/temp/lib/jquery.easing/jquery.easing.min.js

68.66.226.108

200 OK

817 B

URL HTTP/1.1
optimum-mining.com/temp/lib/jquery.easing/jquery.easing.min.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (2532), with no line terminators
Size
817 B (817 bytes)
Hash
d1a8f2ab3b6408f68a4f01d31ac90bc1
42b49a5c362f0cc5ca31dab43a8b98d499cdbf78
17368cc18bda01725115cb1ea484fe4059f425c73ec69fdbc3708fb4a597d1a3

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/jquery.easing/jquery.easing.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 817
Keep-Alive: timeout=3, max=496
Connection: Keep-Alive
Content-Type: application/javascript

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.195

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:30:59 GMT
expires: Thu, 05 Oct 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 86734
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

optimum-mining.com/temp/lib/jquery/jquery.min.js

68.66.226.108

200 OK

31 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/jquery/jquery.min.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (65451)
Size
31 kB (30910 bytes)
Hash
888c5fa4504182a0224b264a1fda0e73
65f058a7dead59a8063362241865526eb0148f16
7d757e510b1f0c4d44fd98cc0121da8ca4f44793f8583debdef300fb1dbd3715

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/jquery/jquery.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 30910
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: application/javascript

optimum-mining.com/temp/lib/waypoints/jquery.waypoints.min.js

68.66.226.108

200 OK

2.8 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/waypoints/jquery.waypoints.min.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
Unicode text, UTF-8 text, with very long lines (8863)
Size
2.8 kB (2753 bytes)
Hash
fb1c91e72b022567c85bc02b5c7976ef
ac47fdab02602cd76bc9e48810555632ae22f49e
38fd030c8515c2a733309592e3e58db3554429c3654570e9912205484e69584b

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/waypoints/jquery.waypoints.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 2753
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.195

200 OK

7.7 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:31:00 GMT
expires: Thu, 05 Oct 2023 19:31:00 GMT
cache-control: public, max-age=31536000
age: 86733
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive

optimum-mining.com/temp/lib/counterup/counterup.min.js

68.66.226.108

200 OK

1.0 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/counterup/counterup.min.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (2182)
Size
1.0 kB (1011 bytes)
Hash
7555c4922e3a0d434df2d272a1d3324b
27d91b5562ecca724c910267bc9b962f3689d404
eef7d1aaeb0e00d141125fc0efb62f6b5391e3ac5cbbb20634a281e3ddefd6d3

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/counterup/counterup.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 1011
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2293
Expires: Thu, 06 Oct 2022 20:14:46 GMT
Date: Thu, 06 Oct 2022 19:36:33 GMT
Connection: keep-alive

optimum-mining.com/temp/lib/php-email-form/validate.js

68.66.226.108

404 Not Found

597 B

URL HTTP/1.1
optimum-mining.com/temp/lib/php-email-form/validate.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
597 B (597 bytes)
Hash
b13dd6d924e9b88144f5bba078ae8833
487b3c059283323ac48bb0eebbe3a5d4e17635cd
f86deee84ea7bf4d39b1041274251f03f51b176a63ddeb487f558c126c7ff471

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/php-email-form/validate.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 597
Keep-Alive: timeout=3, max=499
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg

34.120.237.76

200 OK

3.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.4 kB (3430 bytes)
Hash
488ec5b4267ccb1cdc4e6e08556f7f3b
42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3430
x-amzn-requestid: 9b3b52d6-08b4-4893-962b-3dfe67e2f11d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjTijF0vIAMFq3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dffa9-0a128734418b6c4d6375e2ac;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 22:05:29 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iRuujAZLL_0mf5_-FhMXpuWwHy-jidhBkFuBIZLo0tLlJArZgFEcbA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 45d6a557ecb29942f314e3dd736d817a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 16:10:55 GMT
age: 12338
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7511 bytes)
Hash
9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 3lKuGlFCBN2wEsp9-Oa3ysQg62py090H30jy6_bR02Ufs0KGPrVC4w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 79192
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10809 bytes)
Hash
a508ac9cd743bec987b2a24454418265
8c7ecefe6908387e2128dc849a6ba857991ba0ab
afb2c2b51f2ce445ada599068901551beee594b15c152ed7551ab7a8835dde6d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: db4d1d2a-05b8-403e-a7ca-8b8a6a0a4087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQb-HrTIAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfab2-74f184406a48e42c0ecc4ec9;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: tv80OXQUu13gDuuFESnEnXMuFdNBmGc1y592euL7QnfZW5PwJym9-g==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:53:39 GMT
age: 78174
etag: "8c7ecefe6908387e2128dc849a6ba857991ba0ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11080 bytes)
Hash
2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: TlEKsCdhNhlKmA2Yhz8FarEUG18gQZMKGRD6SnzCnUMiKyGS9-UeOQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:38:04 GMT
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
age: 79109
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7270 bytes)
Hash
e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: f2f15f43-6054-40f5-943a-530671e772dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZjF3aIAMFW9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-5e2253791a927c8c40a0ff0d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: xRuMce_9OkP3R2DqHjZI34GwkDezdfGKsgntCMTZG2c6SJUcyv0Ckg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:56:40 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 77993
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

4.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.1 kB (4140 bytes)
Hash
dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: 13fcd792-1fcc-44b5-aa9e-d2773a60fe77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uHrbIAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-5b5f5d781b9d651b68c04f2e;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: wfnbRpTKni8hbAmJXO9vdisV6ZPoRP-eBb3wP4RzPS7MlXvp7282dw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 79192
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

optimum-mining.com/temp/lib/bootstrap/js/bootstrap.bundle.min.js

68.66.226.108

200 OK

21 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/bootstrap/js/bootstrap.bundle.min.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (65297)
Size
21 kB (21413 bytes)
Hash
ce2ee50165ea0d31f17971b83d2ea453
f7eabd61b31daf334675d523330bf55e13b19662
bc1c446fa87fb3525f1afd1150327abdb32db8756269e2dd9d7dce44597254fa

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 21413
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript

optimum-mining.com/temp/lib/isotope-layout/isotope.pkgd.min.js

68.66.226.108

200 OK

9.8 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/isotope-layout/isotope.pkgd.min.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (32019)
Size
9.8 kB (9847 bytes)
Hash
add3f2105d28b4745f4a6d1a4b1cf68a
906a571e7b19b44d4918cfacc1f6e0642abdaed2
e602f1502bea91e5a1e4253283d1924e7f0486c6f78800b3e3048264400a5e66

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/isotope-layout/isotope.pkgd.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 9847
Keep-Alive: timeout=3, max=495
Connection: Keep-Alive
Content-Type: application/javascript

optimum-mining.com/temp/lib/venobox/venobox.min.js

68.66.226.108

200 OK

5.1 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/venobox/venobox.min.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (14724)
Size
5.1 kB (5142 bytes)
Hash
0be3963aed683ad850e2e75ed9f65d39
b6acdb4187f654605826598e5c46821cce03e918
88b4ccb189e693fe9ccb6396939129afc29ff9d79075acbab0f57a7950849bf3

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/venobox/venobox.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 5142
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript

optimum-mining.com/temp/lib/aos/aos.js

68.66.226.108

200 OK

4.7 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/aos/aos.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (14690), with no line terminators
Size
4.7 kB (4699 bytes)
Hash
bf7e8e53954884c5d8f4c96c3f2f9937
eefe5f7a39b302c5de7760a78f6b4d4aaa4b196e
2c9242b812a9c111df0894b99a1a00a91da1725fa4fa05427654e47a8d90133d

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/aos/aos.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 4699
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: application/javascript

optimum-mining.com/temp/lib/owl.carousel/owl.carousel.min.js

68.66.226.108

200 OK

11 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/owl.carousel/owl.carousel.min.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (31997)
Size
11 kB (11412 bytes)
Hash
147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/owl.carousel/owl.carousel.min.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 11412
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: application/javascript

optimum-mining.com/temp/js/main.js

68.66.226.108

200 OK

2.0 kB

URL HTTP/1.1
optimum-mining.com/temp/js/main.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
ASCII text
Size
2.0 kB (1963 bytes)
Hash
f8292c95801b9e0101eb17d6c58552e4
4341d0c04ba09a7c6b1e8d01b265930fe8b31f7e
22cd09e1b82bd8f1e66382507d5e07dbae6d99fcdd0031cddb199ff111c11e56

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/js/main.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 1963
Keep-Alive: timeout=3, max=498
Connection: Keep-Alive
Content-Type: application/javascript

optimum-mining.com/temp/img/sprite.svg

68.66.226.108

200 OK

16 kB

URL HTTP/1.1
optimum-mining.com/temp/img/sprite.svg
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2438)
Size
16 kB (16228 bytes)
Hash
88b0ad83affbf082f3c01b0f3161eab6
42a293dc0244cfabc0f6d9bd9efc512e7e9680ff
bba5c3fae7301ad78c9310f41f7891da10b8ed830cdfb82a2257d44b98b4cc8c

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/img/sprite.svg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Content-Length: 16228
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: image/svg+xml

optimum-mining.com/temp/lib/php-email-form/validate.js

68.66.226.108

404 Not Found

597 B

URL HTTP/1.1
optimum-mining.com/temp/lib/php-email-form/validate.js
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
597 B (597 bytes)
Hash
b13dd6d924e9b88144f5bba078ae8833
487b3c059283323ac48bb0eebbe3a5d4e17635cd
f86deee84ea7bf4d39b1041274251f03f51b176a63ddeb487f558c126c7ff471

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/php-email-form/validate.js HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 597
Keep-Alive: timeout=3, max=496
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

optimum-mining.com/cloud/app/images/logo02.png

68.66.226.108

503 Service Unavailable

570 B

URL HTTP/1.1
optimum-mining.com/cloud/app/images/logo02.png
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
570 B (570 bytes)
Hash
228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /cloud/app/images/logo02.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlJTek9uRkVjQ05mQlFSQ2VJOUFtdlE9PSIsInZhbHVlIjoicUpkbEhBN2N2ekpjTnJWMm5jUldITEhFR0lNWE1sYUZNWlgwRVdGdk5sa2I5T1VIWGVGUmhRRzVNS1FGemhndjdMbUdVR1dUR05Gd29uK3UrdDZwTnc9PSIsIm1hYyI6ImMzNzBmZGQzNGUyYTM1NTQxOTgxZmM0YTc3M2ZiMGIwZTEyMmIwYTlmYTA5YjcwZjVlMjdkZmJlYzk1MWY2NTMifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:32 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6Ik5oSFZYdDA5clkramVnM1VJRERzNlE9PSIsInZhbHVlIjoiMnB6ZDVXS3p1THJDZHB6MWIxcER4bTk4clFlTk0rU3dnYWhGcHkzMzdTWEgzeWY5T3hySXpJaFwvQURMbDB3bDBwZjRDNmo0K1pwcnVLb3l2eHhmbVhBPT0iLCJtYWMiOiJkYmU5YzY1MTVhODdmYTY4ZmFjNDliN2Q5MjU2ODhjZWI4Y2VkZjA4ODdjN2Y0Zjg3OTc3ZjUzOTBlNmM4YmMyIn0%3D; expires=Thu, 06-Oct-2022 21:36:32 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8

optimum-mining.com/cloud/app/images/1.jpg

68.66.226.108

503 Service Unavailable

570 B

URL HTTP/1.1
optimum-mining.com/cloud/app/images/1.jpg
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
570 B (570 bytes)
Hash
228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /cloud/app/images/1.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImludXJ5S3lwVHBJSzZnbCtYOTRqblE9PSIsInZhbHVlIjoiUlJhaWI2K3RMbTlNMXdEVXlkRUJMZGFsVkUrRnhBQlpBYWJubzBJeUFMSmNndWF5NFwvUGlJNjZkVUwrM3lTdXVMaXgwalVRQUpiNlNUc0tEM1Exc3dBPT0iLCJtYWMiOiI5ZTExZGU5Njc0YmUyZWY3MTgzMjNlMWI3YzBkNmE5NmRmYTFhYTA1ODUxY2U0M2FiNDcxMmRjYjBjMDc5NTI3In0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IktLM0JVUmk2eTY5amZnaVM5ZjR5bGc9PSIsInZhbHVlIjoiZ2krcFh1NTZZblN0OFJPQlZoRnp2WngyVnNwd29uSDc2WkhKaTl4MlJjZkVtTnJsV1djVWR2K2FvOWFqMnBLOXRJVlVoWXZzQXBNRlQzVjhIUVZoZmc9PSIsIm1hYyI6ImY5YmZjMDgzYzNlMTk3MzQyMDdlYjBlMjM5ZTI5OWIyYzdkOTVhOGU2N2VjNzZlODMyYWNkMDIyNDQ1ODE2ZDYifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8

optimum-mining.com/temp/img/about/innovate.png

68.66.226.108

200 OK

32 kB

URL HTTP/1.1
optimum-mining.com/temp/img/about/innovate.png
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
32 kB (32500 bytes)
Hash
c8f28f4331b88670845bf6e962f8b338
df0d76c59ebc2bdb42c282e4bfa50da5cc51c371
965406ddcd077882990a91521dd5551f793f3973e0185aba2c91e02d6f90d1e9

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/img/about/innovate.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 32500
Keep-Alive: timeout=3, max=496
Connection: Keep-Alive
Content-Type: image/png

translate.googleapis.com/translate_static/css/translateelement.css

216.58.211.10

200 OK

3.6 kB

URL HTTP/2
translate.googleapis.com/translate_static/css/translateelement.css
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (18670)
Size
3.6 kB (3619 bytes)
Hash
897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0

HTTP Headers

GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 19:27:41 GMT
expires: Thu, 06 Oct 2022 20:27:41 GMT
cache-control: public, max-age=3600
age: 532
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

optimum-mining.com/temp/lib/ionicons/fonts/ionicons.ttf?v=2.0.0

68.66.226.108

200 OK

188 kB

URL HTTP/1.1
optimum-mining.com/temp/lib/ionicons/fonts/ionicons.ttf?v=2.0.0
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size
188 kB (188508 bytes)
Hash
24712f6c47821394fba7942fbb52c3b2
1b0a0de084905946a20300ca8c354865dec46764
2ba7f20b1d8990e17a47fe3d88e4c766628aaa2baf1dd30fca0a0db59836f5f9

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /temp/lib/ionicons/fonts/ionicons.ttf?v=2.0.0 HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/temp/lib/ionicons/css/ionicons.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Content-Length: 188508
Keep-Alive: timeout=3, max=497
Connection: Keep-Alive
Content-Type: font/ttf

optimum-mining.com/temp/img/about/secure.png

68.66.226.108

200 OK

31 kB

URL HTTP/1.1
optimum-mining.com/temp/img/about/secure.png
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
31 kB (31067 bytes)
Hash
ccacbffcd48f3a3726f80cdcabc80c3d
77c427b40fb2c17c2ed41ed85e631c047b969660
3c81f0259be9f692102c17da04ecfdcc362c666e427a80578fad659969f337a0

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/img/about/secure.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 31067
Keep-Alive: timeout=3, max=495
Connection: Keep-Alive
Content-Type: image/png

optimum-mining.com/temp/img/about/invest.png

68.66.226.108

200 OK

25 kB

URL HTTP/1.1
optimum-mining.com/temp/img/about/invest.png
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (24630 bytes)
Hash
2ccc45ce9bf75e8bb39440f6d0e05786
cde48bbe30545c22fe4750ad70072d11c46b62ea
eafedbb603fce5a9e28a6285aebe510d182dd30c5e00618e8ac2c09d1f3dcbd4

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/img/about/invest.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 24630
Keep-Alive: timeout=3, max=495
Connection: Keep-Alive
Content-Type: image/png

optimum-mining.com/temp/img/payments/payment-88.png

68.66.226.108

200 OK

4.2 kB

URL HTTP/1.1
optimum-mining.com/temp/img/payments/payment-88.png
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
PNG image data, 300 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4184 bytes)
Hash
912aa21486155af0c458fbd2646bc269
c3bd4f7f82a2da26e7489257fcb3e8001cd654e2
ce98f32ca39bef0b27976032526b9464a6cfa43a23194127cae0706348c0cf67

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/img/payments/payment-88.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Fri, 24 Dec 2021 05:03:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 4184
Keep-Alive: timeout=3, max=496
Connection: Keep-Alive
Content-Type: image/png

optimum-mining.com/temp/img/about-bg.jpg

68.66.226.108

200 OK

395 kB

URL HTTP/1.1
optimum-mining.com/temp/img/about-bg.jpg
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1151, components 3\012- data
Size
395 kB (394565 bytes)
Hash
0767c1c7703adc7d301993ec6ecf3d8f
a7075f06b3fdef81a93fac767f519e5cc7371d84
b6ffff4b5d5773ee4133de2d0624aedcd04b39be00b2471f90c277a87f30dbd7

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/img/about-bg.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/temp/css/frontend_style_blue.css?v=1.4
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:32 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Keep-Alive: timeout=3, max=494
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d4ce1545d73b71f5f2cd6762ec9afd40
6f6fd57f0f2aa857ad758dded6e31366ff7152b8
9335bc5108455549ca54676605e81925ddb253f9453669481063649e49519651

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 19:36:33 GMT
Last-Modified: Thu, 06 Oct 2022 19:23:19 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iV8XcQ1RhvaZlFZvSsu8zeH5HDiUW9TD6SNti3TerWRnKNt0NscCBA==
Age: 794

optimum-mining.com/temp/img/payments/payment-6.png

68.66.226.108

200 OK

6.3 kB

URL HTTP/1.1
optimum-mining.com/temp/img/payments/payment-6.png
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
PNG image data, 300 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
6.3 kB (6330 bytes)
Hash
8450dbf262cc8dcd3c9164f58eb4cdb3
68178e4860914ab62b4035038d72ce0bae19b1c0
c53233286197c9cb091b2e445cfce9ffe2fa2623012177d4e7b9f364cc06b1a2

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/img/payments/payment-6.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 6330
Keep-Alive: timeout=3, max=494
Connection: Keep-Alive
Content-Type: image/png

optimum-mining.com/temp/img/payments/payment-4.png

68.66.226.108

200 OK

3.8 kB

URL HTTP/1.1
optimum-mining.com/temp/img/payments/payment-4.png
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
PNG image data, 300 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3776 bytes)
Hash
0259e1d04f8987a5b1e5b6be305ded60
4b73db960f944a32ae8f22632ec14aa2ef3e2e47
2e067677c1812e54b34ce065fdc76cf88556385460095ba8927efd7495f98746

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/img/payments/payment-4.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 3776
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: image/png

optimum-mining.com/cloud/app/images/avatar.png

68.66.226.108

503 Service Unavailable

570 B

URL HTTP/1.1
optimum-mining.com/cloud/app/images/avatar.png
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
570 B (570 bytes)
Hash
228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /cloud/app/images/avatar.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlplMFcxVTlJVXFDbHZiK3R6MytvXC93PT0iLCJ2YWx1ZSI6InFvRjg5bU5qWk9RcU9MSHkrbW5Qckh2ZzhQYlZrWWF6N1lrV29FdHMrelpsTDJcL2xidUtIU1RCdUl4K2JtZnFiS3hRU3pCMlVMNWtpZzRQcWlnR2VRdz09IiwibWFjIjoiN2E2OTYwNmZhODI3MmE5NTNhNDY5NmE1MzMxNzVkMjdiNGJkZmRhNTZjM2U0YzQyZDliY2Q0N2JkZGE3MmM2NSJ9; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IlNiWVkzZDd6dmY2S0dPMWVzZHBJS2c9PSIsInZhbHVlIjoib2k0RElkVFNLQnNhXC9NdDByUHRlQVRlM3FwaDNKdzZTUk9PMEhTaUVxN29rYkZPY00wY2VSNzZDQW9TdnJ5MjE1WUFKUzBpRjh5QnNNR1Y2ZkZLWDB3PT0iLCJtYWMiOiJjZjMyYmIwYzUyNWJlOTRkYTdmZmI5ZWE4NDJmNmVlMTRlZDU2ZTVlMDIxMjY5NWZlMzJiNDU1OWYwZDAwYmFmIn0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8

optimum-mining.com/cloud/app/images/2.jpg

68.66.226.108

503 Service Unavailable

570 B

URL HTTP/1.1
optimum-mining.com/cloud/app/images/2.jpg
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
570 B (570 bytes)
Hash
228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /cloud/app/images/2.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlBEQTVZUmNSTHZHclRjN2pTaUduZFE9PSIsInZhbHVlIjoicFhJQlFvakpSSmEyVFpTWU5kV1dMdkp4MktyVGtzcXFCXC9ndHMyRDRRVG5NZVRuU0tvWnd2MHFKbVpnb2k2RUpQdHpnSjNoc0Z6MWNwdG9JN0RWakdRPT0iLCJtYWMiOiJiMjRiNzc5MWNiODZiNWYzNjJkNmIxMWUyZTE0MTg0ODNlOGZhOTExNGZiNDZhZmZjMDc3NDM1YThmM2UwNWNjIn0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IlpRV1d4aDc2YVpnbnI1c2M5QWlYR3c9PSIsInZhbHVlIjoiNXV4bWdQWkZ5S0I5a3hxc210WDhQWmxlUUJNZE9HRG9LdDRVSFdLNGdCNml4bzVNUkYxeCtyUk0wVXl1dXhCWXR0ZU1GajI2cTFIajBmUkRUUXljV3c9PSIsIm1hYyI6IjE2ZGQyNThjYmVmYTExMmNiMWExYTQyMjEwMWJhMDk4YjdjMWY3OTU5NzRmOGVlNmExY2JiZjgxY2JhNWE4MzAifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8

optimum-mining.com/cloud/app/images/3.jpg

68.66.226.108

503 Service Unavailable

570 B

URL HTTP/1.1
optimum-mining.com/cloud/app/images/3.jpg
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
570 B (570 bytes)
Hash
228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /cloud/app/images/3.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImprNXFKUk1TckJFb2xsdVpSQmZ5eWc9PSIsInZhbHVlIjoiMHppXC9IMUtObUdUUjlqWk05aVdYdmdnMXFSbExNN0V6aTZ0UmloV2lMem9Vc2ZXSlU2NXM5dWhwYmI5YzhjWndxK2Zqd0tkQ1craGlxSE9pRWtBcCtRPT0iLCJtYWMiOiI0NTFjZmM2MmRmZDY3ZDUyYzc5ZTZiZGI3ZDgxMDQwOGMxZTljZDc5MmZhNGQ3NTVhZjJhNDEyZGZjNDMyODFjIn0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IlRzaGJmcHhVRlRzSlFRZ0s1OWVxWHc9PSIsInZhbHVlIjoiczFrVGtPelRyT1JGZ0tPWmtkekNJN3MwZE5LQmZ5M010UzB5SnpzWmYwdmMzK3p0Y0xETEptanczQkVQODdwY1VhcjJOeHRpaFV1M0pIdTZjZGtaOHc9PSIsIm1hYyI6IjQyYWRmYzE5ZmYzZTY0MzFlZjVjNDczN2JkNGFhNjc1MWE4NWM4NjExMmJkNWI0MDdiMWIzOTc2NjA4ZWY4N2YifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8

optimum-mining.com/temp/img/about/prof.png

68.66.226.108

200 OK

23 kB

URL HTTP/1.1
optimum-mining.com/temp/img/about/prof.png
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (22941 bytes)
Hash
2146fb96d0b742991c35d5adf61ce5cd
04c88154323e72d84575761a464b4477cc596bbb
5533aead528fb9e3febfd27416ba7998656b4c2c7f04434cf9a8a5c6f066478c

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /temp/img/about/prof.png HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Last-Modified: Wed, 16 Sep 2020 02:01:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800, public
Content-Length: 22941
Keep-Alive: timeout=3, max=500
Connection: Keep-Alive
Content-Type: image/png

optimum-mining.com/cloud/app/images/4.jpg

68.66.226.108

503 Service Unavailable

570 B

URL HTTP/1.1
optimum-mining.com/cloud/app/images/4.jpg
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
570 B (570 bytes)
Hash
228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /cloud/app/images/4.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjhxdTVoaEtlS0RGXC96TlpJREY2ZmtRPT0iLCJ2YWx1ZSI6Ik15RUtUU2xxaWV3UUlEaW4rbjBuclEzRnZRdVhkZ2JyNFNuQWo4Z1hkMGN4VnI2d0l4ZjZ3Sml2V1JFaXlFUnlTbEVrQ04rdHhnUTJDdVdUb2NVTWtBPT0iLCJtYWMiOiI1NWM2YzFlOGY1NjI4MmNkZjA3NWJiYzVhMTgwNzY5YmI4NDEzMDgyOWEwMDJjNWRmOTJkNmZhODc5OWVkY2U2In0%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IjhsOERXMWtTK3RpcTNpSW9EN0NXZlE9PSIsInZhbHVlIjoiYXVDQ01NaFpubVVraDAybnRHNFZkSk04ckxmYnF5czE5ajVmTmluTGFERTdiSG1PSW9XN1h4QUJpVDhZZ3B1ajFLQ2QyTldoOGREWjI3cmVwN0FpZFE9PSIsIm1hYyI6IjE5YjEyOTE0M2M2NjljM2Y1NDA5NDdhZTY3Y2Y4YTY5NTEwMTk4ODAyMTNmZTNjMjNjMTU5MGQ4NjdhNTE2ODEifQ%3D%3D; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8

optimum-mining.com/cloud/app/images/5.jpg

68.66.226.108

503 Service Unavailable

570 B

URL HTTP/1.1
optimum-mining.com/cloud/app/images/5.jpg
IP
68.66.226.108:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
570 B (570 bytes)
Hash
228b6eadc9b50767a3c70f36c903b4d5
4aa2c847c0de5c83a9be3f0dd0f321f0be5f6ba3
56e50fdbc7bb542e5323c611165bdaf934e16867d4fe33a2a56402b2c90bd634

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
quad9	Sinkholed

HTTP Headers

GET /cloud/app/images/5.jpg HTTP/1.1
Host: optimum-mining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkZnZTFxMGpiMzFZdXlSc0xqbXFlbXc9PSIsInZhbHVlIjoiSVM0V050R2ZkM3lDUzJYTzljN2hkb1RSUkNuOVRCcVMxZ21HeUhWbEdPR2p0ZndDMHdwTzhveU9GU0FTczJWeXRjamd2TVgwRUEzcE03eDE0aG5BXC9nPT0iLCJtYWMiOiI2YTliNDJlMDc1MjYwMDdiODYxYjRiZGQwNjc1M2U3Zjc2NmM3N2YxOGJjMzY2YWMxNGJmZDA3ZGUyMTBiZDEwIn0%3D; optimum_miningfx_session=eyJpdiI6IjM1NjhFcTRwaWN6TzJxQk9wXC9vbWRBPT0iLCJ2YWx1ZSI6IlV6MVpFQlE1aHdTZzJ2N3VMcmtoZW14bmltelZkRUxLQWtCVWxXSWdheEkxQnhyMEJGRVVUOFB0enpqaVc5M1JvUmpOdFdpVGNXVlJsRnY1Q25uME1nPT0iLCJtYWMiOiIwNGMyNzM0NTdiNGQyMmZmMWI3YzgxM2ZlNDNmMDg5YjI2OTdlMTIyZTY5NWIzYTM0YTNkNGJlZmQ4NDhjZDhkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 503 Service Unavailable
Date: Thu, 06 Oct 2022 19:36:33 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6InFzc1BQN0g0WVFBMXR2a0J3WVRVeWc9PSIsInZhbHVlIjoiQXcweFFtU1FpR0tuYlF5aDlmXC9nNnVVelFcL1dodmsrQ1VxYk1kMDBoYWJwRklnalF0NFVneFVxWjBkOXpoRm8zdmw2N1doaERBME95aDZnU2laTUszUT09IiwibWFjIjoiZWYwOTBmNjlhMWVkZjFmZjhmNzdlNjU1NzU5MWM2YzUxMTVjODVjNTFmM2IwN2ViZDg1YmMyYTE4NDMyMTc3NyJ9; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/
optimum_miningfx_session=eyJpdiI6IlVIaHVYSlU0NE9yTTJcL1hYdEVZS0lBPT0iLCJ2YWx1ZSI6IkE4Yk1kaEFNTjdINmlpemN2VitzMEdnOWxsUlRSeFo0TjFWd2ZcLzlmMVlidlh3VEJyMGc3UU5mN0JqeTVBZjREeVFjMjZZTjdSZnpsbUZrNVRoZ2FaZz09IiwibWFjIjoiNTNhMDY2MWM0ZDkwZGM0MDNmYjQxNGI2NWQ3NzNiNmU3NzM2N2JkZDk2OWQzNGZiZWI3OTk1NDhkMGY2Y2U5NiJ9; expires=Thu, 06-Oct-2022 21:36:33 GMT; Max-Age=7200; path=/; HttpOnly
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 570
Connection: close
Content-Type: text/html; charset=UTF-8

widget-v2.smartsuppcdn.com/asset-manifest.json

185.76.9.19

200 OK

96 kB

URL HTTP/2
widget-v2.smartsuppcdn.com/asset-manifest.json
IP
185.76.9.19:0
ASN
#60068 Datacamp Limited

File type
JSON data\012- , ASCII text
Size
96 kB (96479 bytes)
Hash
dbe1bdc6e49172a8031d46e1f32f5f5f
6df67a6b0e1a32f6e13de101c7f8db05ae05f152
75180daa57b75f30de0f21965d63b7360a4907c893e91316837ba948bf2a21fe

HTTP Headers

GET /asset-manifest.json HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:34 GMT
content-type: application/json
last-modified: Thu, 29 Sep 2022 17:19:37 GMT
etag: W/"6335d3a9-6ce"
expires: Thu, 29 Sep 2022 20:07:45 GMT
cache-control: max-age=300, public, s-maxage=60
access-control-allow-origin: *
x-accel-expires: @1665085017
server: CDN77-Turbo
x-77-nzt: AblMCQ01aDn/JQAAAA
x-77-nzt-ray: S+XIJDlL+Eg
x-cache: HIT
x-age: 37
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/product/1x/translate_24dp.png

142.250.74.163

200 OK

846 B

URL HTTP/2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
846 B (846 bytes)
Hash
e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99

HTTP Headers

GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 17:17:31 GMT
expires: Fri, 06 Oct 2023 17:17:31 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 8343
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.163

200 OK

1.8 kB

URL HTTP/2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 18:18:02 GMT
expires: Fri, 06 Oct 2023 18:18:02 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 4712
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png

142.250.74.163

200 OK

910 B

URL HTTP/2
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
910 B (910 bytes)
Hash
efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2

HTTP Headers

GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 13:38:21 GMT
expires: Fri, 06 Oct 2023 13:38:21 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 21493
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

widget-v2.smartsuppcdn.com/static/js/main.2b685341.chunk.js

185.76.9.19

200 OK

27 kB

URL HTTP/2
widget-v2.smartsuppcdn.com/static/js/main.2b685341.chunk.js
IP
185.76.9.19:0
ASN
#60068 Datacamp Limited

File type
ASCII text, with very long lines (65536), with no line terminators
Size
27 kB (27177 bytes)
Hash
dac6b6a936760a6948257ca0fe87276a
8f4be60790714c67e7c668058a7f2973501ac198
b47cd7a8a45f5cfe14febd326cf54b8db39f476a8d51a7302151e1c5e0e7cb0b

HTTP Headers

GET /static/js/main.2b685341.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:34 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 17:19:37 GMT
etag: W/"6335d3a9-1cba4"
expires: Fri, 29 Sep 2023 20:02:46 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1696017766
server: CDN77-Turbo
x-77-nzt: AblMCQ2mIoL/XDQJAA
x-77-nzt-ray: mU6KZGGcI1o
x-cache: HIT
x-age: 603228
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

widget-v2.smartsuppcdn.com/translates/en.json?v=40dc5d66667b97efcc02e6c0aff17d1954e58a21

185.76.9.19

200 OK

2.9 kB

URL HTTP/2
widget-v2.smartsuppcdn.com/translates/en.json?v=40dc5d66667b97efcc02e6c0aff17d1954e58a21
IP
185.76.9.19:0
ASN
#60068 Datacamp Limited

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (647)
Size
2.9 kB (2871 bytes)
Hash
3412748410df0cfb61235ef314c40b49
807d74e5df9f2fbb92f5c28075844f29585e2c66
75e581aa08e5c06bd1f8608d90b2ca35ae22289edf62ba73c18da1252e51d10f

HTTP Headers

GET /translates/en.json?v=40dc5d66667b97efcc02e6c0aff17d1954e58a21 HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://optimum-mining.com/
Origin: https://optimum-mining.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:34 GMT
content-type: application/json
last-modified: Thu, 29 Sep 2022 17:18:40 GMT
etag: W/"6335d370-fc9"
expires: Fri, 29 Sep 2023 20:02:47 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1696017767
server: CDN77-Turbo
x-77-nzt: AblMCQ0y983/WzQJAA
x-77-nzt-ray: QSUeVMWIjYw
x-cache: HIT
x-age: 603227
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
40a4de06678d96242b71d5318f2fd4ef
546a7d1d92df81916f14155943427b5453ae3924
aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 19:36:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/images/cleardot.gif

142.250.74.164

200 OK

43 B

URL HTTP/2
www.google.com/images/cleardot.gif
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

HTTP Headers

GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Thu, 06 Oct 2022 19:36:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6a99923db121654572b670b5e1b555b6
7e90f4b02e91324b70b217dbe9c77aaff5511025
492425c493cc59426d44a84ef30038fc67df5c7e8aadcb7837392e3ecc5e4ec6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 19:36:34 GMT
Last-Modified: Thu, 06 Oct 2022 18:36:59 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QS7kJQaxRbwZsyiNGbQ5aAVb9dgO-Hw0tmqAFdSu_GpoFfUdOCOZlQ==
Age: 3575

websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket

18.185.32.250

101 Switching Protocols

0 B

URL HTTP/1.1
websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket
IP
18.185.32.250:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /socket/?EIO=3&transport=websocket HTTP/1.1
Host: websocket-visitors.smartsupp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://optimum-mining.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: o4K+PGbClCta5JKzgU00Cw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Thu, 06 Oct 2022 19:36:34 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4ECozhn8jQ09MbcAqFgurzk1YFU=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets

www.smartsuppchat.com/loader.js?

185.76.9.18

200 OK

0 B

URL HTTP/2
www.smartsuppchat.com/loader.js?
IP
185.76.9.18:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /loader.js? HTTP/1.1
Host: www.smartsuppchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:33 GMT
content-type: application/javascript
last-modified: Mon, 03 Oct 2022 08:04:02 GMT
etag: W/"633a9772-47b4"
expires: Mon, 03 Oct 2022 08:10:37 GMT
cache-control: max-age=300, public, s-maxage=60
x-accel-expires: @1665085008
server: CDN77-Turbo
x-77-nzt: AblMCQ0MvFH/LQAAAA
x-77-nzt-ray: f3A4IuUBJQQ
x-cache: HIT
x-age: 45
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

widget-v2.smartsuppcdn.com/static/js/6.0e1e87c0.chunk.js

185.76.9.19

200 OK

0 B

URL HTTP/2
widget-v2.smartsuppcdn.com/static/js/6.0e1e87c0.chunk.js
IP
185.76.9.19:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/js/6.0e1e87c0.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:34 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 17:19:37 GMT
etag: W/"6335d3a9-81d5c"
expires: Fri, 29 Sep 2023 20:02:46 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1696017766
server: CDN77-Turbo
x-77-nzt: AblMCQ11ylL/XDQJAA
x-77-nzt-ray: Jq5+UW1NApE
x-cache: HIT
x-age: 603228
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

bootstrap.smartsuppchat.com/widget/50315765a2d75adcfb4c1b0287bba05ffadfd77f.json

3.73.251.220

200 OK

0 B

URL HTTP/2
bootstrap.smartsuppchat.com/widget/50315765a2d75adcfb4c1b0287bba05ffadfd77f.json
IP
3.73.251.220:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /widget/50315765a2d75adcfb4c1b0287bba05ffadfd77f.json HTTP/1.1
Host: bootstrap.smartsuppchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://optimum-mining.com
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 19:36:33 GMT
content-type: application/json; charset=utf-8
x-version: 40abd74f2935f2a6d1a2667e53c08501d31c5c2e
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private, max-age=0, must-revalidate
x-hit: redis
etag: "3f4-MAp3ZZacNZ0qvCJ/M0bCjqJqoig"
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Poppins:100,200,300,400,500,600,700,800,900&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Poppins:100,200,300,400,500,600,700,800,900&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Poppins:100,200,300,400,500,600,700,800,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://optimum-mining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 19:36:32 GMT
date: Thu, 06 Oct 2022 19:36:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations