Report - kryptomachine.com/?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904

Report Overview

Submitted URL
kryptomachine.com/?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-25 12:58:07
Access
public
Website Title
KryptoMachine - free BitCoins for inviting friends!
Final URL
kryptomachine.com/confirm.php?i=225904
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
kryptomachine.com	unknown	2017-08-30	2017-09-01	2024-04-17	7.3 kB	449 kB	188.114.97.1
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-25	407 B	248 kB	151.101.2.137
apis.google.com	105	1997-09-15	2013-05-06	2024-04-23	958 B	79 kB	142.250.74.110
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	916 B	36 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-25	1.0 kB	98 kB	142.250.74.99
ferreddo.com	unknown	2023-05-22	2018-09-14	2024-04-18	896 B	716 B	103.224.212.216

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	kryptomachine.com/confirm.php?i=225904	Code and strings of plugins from the Tetris framework loaded by Swid

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	code.jquery.com/jquery-2.1.4.js	248 kB	2023-03-07	2024-05-03
Pretty URL code.jquery.com/jquery-2.1.4.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:57 Last Seen2024-05-03 19:46:22 Times Seen698 Hash 107fbe9555bfc88ec5cab524c790fe34 0fed45ad7a48ace869bc725ca474ad86a1ef1562 b2215cce5830e2350b9d420271d9bd82340f664c3f60f0ea850f7e9c0392704e Loading...

	connect.facebook.net/en_US/all.js#xfbml=1	17 kB	2023-05-05	2024-05-04
Pretty URL connect.facebook.net/en_US/all.js#xfbml=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-05-04 21:16:06 Times Seen44915 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

	kryptomachine.com/jquery.bxslider.min.js	19 kB	2023-03-07	2024-05-02
Pretty URL kryptomachine.com/jquery.bxslider.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-05-02 11:10:11 Times Seen4423 Hash 697d69a48e5356f7106e38c09f7f19e0 b57160771fa597a5b56c5b12756c693e4829be07 bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e Loading...

	kryptomachine.com/confirm.php?i=225904	178 B	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/confirm.php?i=225904 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen51 Hash 007c76d5f02c3a299a15b19dd11e2262 d44f52dca3c96e1f0b2c894abfbe816343995a69 45578793e2fdf8a3217f3e54401e71d0b5c510fbb42f34b53fdb487bc34ed521 Loading...

	unknown	37 B	2023-04-11	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-05-04 23:09:22 Times Seen234280 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/lib/shim_messaging_helper.js	1.7 kB	2023-05-05	2024-05-04
Pretty URL moz-extension://374908d2-0475-4f5d-b9f6-d1abf756a6ed/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-05-04 21:16:07 Times Seen45457 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	kryptomachine.com/confirm.php?i=225904	147 B	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/confirm.php?i=225904 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen51 Hash 0e9ef2b8162c0fa610e55a34988735d1 6416b024e0d5bdd02fda458b69ae36d8e1f110a5 7eb7d83086953842f8bb792df6e36e7aa40dc1c9fec03ce61b0871ede75bf65c Loading...

	kryptomachine.com/confirm.php?i=225904	398 B	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/confirm.php?i=225904 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen51 Hash 4049cf480fc1a1215165aa26e13b1e4f f53e95856b57d965a2a64701918dbf2214655448 2056bdc70d21ca0684b87c96199571506928da65a2c59720f17582d3d084298d Loading...

	kryptomachine.com/sandbox%20eval%20code	147 B	2023-04-11	2024-05-04
Pretty URL kryptomachine.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-04 23:07:58 Times Seen344813 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs	161 kB	2024-04-23	2024-05-04
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 01:08:16 Last Seen2024-05-04 22:51:29 Times Seen129 Hash a07a0041143bc11d11c2fe0d37a5ded7 cb14b39ec6f8a362a08d1957af211d81f750d54d 233746b5d7f58579f0d5ea21e4907fdb5be5469f05dd7691633448aead77fc98 Loading...

	kryptomachine.com/jquery.tinyscrollbar.js	3.9 kB	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/jquery.tinyscrollbar.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen61 Hash 5947db1b6c30b51082984e73b45e31e6 406011bf6185daac0f0aea3b1379f70407919fdc cd94477ca22b499da21fa28641293d88e4378c30a2b98e11f9c05d3ea7942099 Loading...

	kryptomachine.com/confirm.php?i=225904	51 kB	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/confirm.php?i=225904 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen50 Hash 135bcdb0c1658f50929c4b3c77af2eef fd21ec3d99e73e090da39df88a42904d20aa47e6 ce2ac19d40438d32e5cc77c1b89dde44216fa11aecc3c8002407e255802e9a41 Loading...

	unknown	79 B	2023-04-11	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:58 Last Seen2024-05-04 23:09:22 Times Seen125484 Hash aa049e2749b8531cb8f233c2f64fc2b2 b611a5a62c1813ae5b4763378b3a4a565556530a e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-04
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-04 23:07:57 Times Seen344307 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	apis.google.com/js/plusone.js	56 kB	2024-04-23	2024-05-04
Pretty URL apis.google.com/js/plusone.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 01:08:16 Last Seen2024-05-04 22:51:27 Times Seen158 Hash fb86282646c76d835cd2e6c49b8625f7 d1b33142b0ce10c3e883e4799dcb0a2f9ddaa3d0 638374c6c6251af66fe3f5018eb3ff62b47df830a0137afb51e36ac3279d8109 Loading...

HTTP Transactions (24)

URL IP Response Size

kryptomachine.com/images/logo.png

188.114.97.1

200 OK

7.5 kB

URL GET HTTP/3
kryptomachine.com/images/logo.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
PNG image data, 232 x 170, 8-bit colormap, non-interlaced
Size
7.5 kB (7526 bytes)
Hash
7bebebdf96462dea82ed194191fa44fb
f26c3dd2432ad304c7f4080b32a1dbbfe1932bc6
ef6c09407da64fa2d5a464d8c9018f8c1371ae53e591d5139800a6fbf8f63de5

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: image/png
content-length: 7526
last-modified: Mon, 30 Sep 2019 18:11:59 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=46YueE0l0mvPT0rOgfTJfFLvn2mwS6o4%2FMWoha0tKOrerxVJybVNuLYuHgR5FG4lcKCwyyIGsf5ctQh%2BP3LBXbtSQ9e3nUY0gzwU0xXqDuWkPqflsB60FDeu9ajgiR%2BR3S6O8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e801299bf568f-OSL
alt-svc: h3=":443"; ma=86400

kryptomachine.com/images/bitcoins_s.png

188.114.97.1

200 OK

469 B

URL GET HTTP/3
kryptomachine.com/images/bitcoins_s.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
469 B (469 bytes)
Hash
331d9c1f97862f96f8ebbb5d93011d56
7c33d7e0b7ee142538b84d81ea0780a13b6d4957
3f4ffc13e3db36c4792c0ad09d91e6632844f0c904c1f1070b25d81615e49e35

HTTP Headers

GET /images/bitcoins_s.png HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: image/png
content-length: 469
last-modified: Mon, 30 Sep 2019 18:11:57 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iVuXlTTYt8hwUpXi3zD5YEQzdDGYNsNUi7jssY2GzAdkRWUfcM9mgjYUUXIsPJEyZAylhTsLl%2FYF2V2YPdcbnsv5CP8u5DL3w3SX0PeONU8spVJSgg5BZ%2Bkc%2Fu62dZbC%2BL7jzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e801299c1568f-OSL
alt-svc: h3=":443"; ma=86400

kryptomachine.com/images/btnbg_h.png

188.114.97.1

200 OK

208 B

URL GET HTTP/3
kryptomachine.com/images/btnbg_h.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
PNG image data, 50 x 50, 4-bit colormap, non-interlaced
Size
208 B (208 bytes)
Hash
6053f3338d8b9bb44e8558478b0f87db
f14f475a2ae94a2e5e890129c3cd350a7138dbe3
25cd221d9b850ad69f6611054ada9cc077c4e9f090e5db310b474fc1f7c0fc0a

HTTP Headers

GET /images/btnbg_h.png HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: image/png
content-length: 208
last-modified: Mon, 30 Sep 2019 18:11:57 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cZsXqZoQV77xao9Fe8fzmt7XNhG3Ou3SA8De1ambIt2yMaXsevze9wbBlD9oQ%2FFXPROhPUalb14uL6WLEqK70rsGfkOEgROKy3INaZfwvsEA%2B1G9%2FLbAI7btmfsF0QmSulSeaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e801299c2568f-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/jquery-2.1.4.js

151.101.2.137

200 OK

248 kB

URL GET HTTP/2
code.jquery.com/jquery-2.1.4.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
248 kB (247597 bytes)
Hash
107fbe9555bfc88ec5cab524c790fe34
0fed45ad7a48ace869bc725ca474ad86a1ef1562
b2215cce5830e2350b9d420271d9bd82340f664c3f60f0ea850f7e9c0392704e

HTTP Headers

GET /jquery-2.1.4.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: "28feccc0-3c72d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 25 Apr 2024 12:57:41 GMT
age: 33649
x-served-by: cache-lga21977-LGA, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 21, 2
x-timer: S1714049862.570069,VS0,VE0
vary: Accept-Encoding
content-length: 247597
X-Firefox-Spdy: h2

apis.google.com/js/plusone.js

142.250.74.110

200 OK

21 kB

URL GET HTTP/2
apis.google.com/js/plusone.js
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
FingerprintE8:68:ED:59:65:88:CD:45:4F:B0:64:88:FF:F3:32:D4:8B:C7:75:F0
ValidityMon, 18 Mar 2024 20:39:12 GMT - Mon, 10 Jun 2024 20:39:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2050)
Size
21 kB (21303 bytes)
Hash
fb86282646c76d835cd2e6c49b8625f7
d1b33142b0ce10c3e883e4799dcb0a2f9ddaa3d0
638374c6c6251af66fe3f5018eb3ff62b47df830a0137afb51e36ac3279d8109

HTTP Headers

GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21303
date: Thu, 25 Apr 2024 12:57:41 GMT
expires: Thu, 25 Apr 2024 12:57:41 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "80d5c9d57d5f206f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kryptomachine.com/confirm.php?i=225904

188.114.97.1

200 OK

17 kB

URL User Request GET HTTP/2
kryptomachine.com/confirm.php?i=225904
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (50868)
Size
17 kB (17100 bytes)
Hash
6407a517a65774144290e90302df199b
6622108fd08e761fadfe1d07a0e5204f160bad97
9c0ac9f6bb4c9797d9eac9b1c6c1c81d20abb19c5d073d827faa08d174a38c49

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Code and strings of plugins from the Tetris framework loaded by Swid

HTTP Headers

GET /confirm.php?i=225904 HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1kCaZdLt8LzJo8kT5Wq%2BpBTI1J3pfjjXnWC%2BmGbP6eWQdmwlg%2BdS7xF29N4Zpy%2BCKFGKZZlgzA%2FBux086HxP8vDQypUk41zlNH8CQzxX69iZI3mDoI0v%2BkMuO4Z%2FI1riFgJooA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e800fd8cbb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

kryptomachine.com/images/wall.jpg

188.114.97.1

200 OK

305 kB

URL GET HTTP/3
kryptomachine.com/images/wall.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2017:08:22 12:22:40], progressive, precision 8, 2743x500, components 3
Size
305 kB (304837 bytes)
Hash
b69c56aa559938e8391169fface0da9d
8f78f37ad2fc59f83371533c9b1188dfe668e2e8
68f706785d5d410a054272fa57d20c8f28aaafdbed0abd0436a139362f1ca7ad

HTTP Headers

GET /images/wall.jpg HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/css/skeleton.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: image/jpeg
content-length: 304837
last-modified: Mon, 30 Sep 2019 18:11:59 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l%2BJxQA0cfn3NlkovXwWPXeN17XMTAOZQxNCAbQ%2BuhY08TBMnmyPSTqpLXNi%2Fh09Xw4PLbTxOv0zjDX27D2HcgUtEdUn2Ra695Lew4v%2F9r0XNs6uaGgE6Ply0%2FOBRNvPnA3G6jA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e80143b20568f-OSL
alt-svc: h3=":443"; ma=86400

kryptomachine.com/images/btnbg.gif

188.114.97.1

200 OK

5.6 kB

URL GET HTTP/3
kryptomachine.com/images/btnbg.gif
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
GIF image data, version 89a, 50 x 50
Size
5.6 kB (5583 bytes)
Hash
7801b958ed71c62fb90dbba33c9059b0
8862af12f1d65b90eec8477d3500081981a84b64
ff436bc49fdefc0555e8721983ea7a5022d7e615a8fa0b1a37a64b4ce4a67a52

HTTP Headers

GET /images/btnbg.gif HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/css/skeleton.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: image/gif
content-length: 5583
last-modified: Mon, 30 Sep 2019 18:11:59 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XXYmGB%2Bijva%2FMvuU6WzPP5iu6AmEA8kDxWcJwQkBux%2BTUfr%2FHi%2F%2ButicpkHwDEFSub8mEwe1w28P5nJU%2FwC8Xm8L6RQEL%2F054lc2RriJ09F1U1u1m%2FHxPq8RlB4JUGmPdSuYjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e80149b7f568f-OSL
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Raleway:400,300,600

142.250.74.106

200 OK

1.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Raleway:400,300,600
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
1.0 kB (1046 bytes)
Hash
627ac76e04a65bcb283ea22aa871f365
5b0a5b4d41c545c5750a0e0cc73d13de4857c6a1
f49f75a078c79d2505b361e7bef31bb29f4ff61759568f444f839fc98d265be1

HTTP Headers

GET /css?family=Raleway:400,300,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 12:57:41 GMT
date: Thu, 25 Apr 2024 12:57:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2

142.250.74.99

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48208, version 1.0
Size
48 kB (48208 bytes)
Hash
c49b7c3643f781d71645c5a40a78b5bf
e71138026b38afc443fb60da5ffc2244c4f5eb11
8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808

HTTP Headers

GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kryptomachine.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:41:26 GMT
expires: Fri, 25 Apr 2025 02:41:26 GMT
cache-control: public, max-age=31536000
age: 36975
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2

142.250.74.99

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48208, version 1.0
Size
48 kB (48208 bytes)
Hash
c49b7c3643f781d71645c5a40a78b5bf
e71138026b38afc443fb60da5ffc2244c4f5eb11
8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808

HTTP Headers

GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kryptomachine.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:41:26 GMT
expires: Fri, 25 Apr 2025 02:41:26 GMT
cache-control: public, max-age=31536000
age: 36975
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kryptomachine.com/images/favicon.png

188.114.97.1

200 OK

3.5 kB

URL GET HTTP/3
kryptomachine.com/images/favicon.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
PNG image data, 133 x 133, 8-bit colormap, non-interlaced
Size
3.5 kB (3530 bytes)
Hash
9ebcd4d7dd66550c7f30a64dc89222da
ccf9893e1514b0a0ed77b69e133b67f96efc5f5a
9a42f299745881b01554d802b66d122791715a1edf799957130a4ad2f3ca75cd

HTTP Headers

GET /images/favicon.png HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: image/png
content-length: 3530
last-modified: Mon, 30 Sep 2019 18:11:59 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X3t027FVAtnRl9THa6epbBTKefStn79%2FtkCoiBlT568Vx1pu%2FKqYvi47yoOhSKff9ZMZVFDlgU7bEucQHSWXQtBMXv%2BJiJuk1KTeqdIHYAdn5E%2FWN4Y5azdi4S%2Bvk88IEc8gkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879e80156c94568f-OSL
alt-svc: h3=":443"; ma=86400

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

142.250.74.110

200 OK

56 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
56 kB (55813 bytes)
Hash
a07a0041143bc11d11c2fe0d37a5ded7
cb14b39ec6f8a362a08d1957af211d81f750d54d
233746b5d7f58579f0d5ea21e4907fdb5be5469f05dd7691633448aead77fc98

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 55813
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 16:20:14 GMT
expires: Tue, 22 Apr 2025 16:20:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 18:15:45 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 247047
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ferreddo.com/js/handlebars/0.04.02/handlebars.min.js

103.224.212.216

404 Not Found

196 B

URL GET HTTP/1.1
ferreddo.com/js/handlebars/0.04.02/handlebars.min.js
IP
103.224.212.216:443
ASN
#133618 Trellian Pty. Limited

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectmangoreader.xyz
Fingerprint47:01:5A:CE:87:D8:80:C1:40:56:65:DB:7B:7F:B7:11:43:2E:0E:04
ValidityMon, 18 Mar 2024 06:13:25 GMT - Sun, 16 Jun 2024 06:13:24 GMT

File type
HTML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

HTTP Headers

GET /js/handlebars/0.04.02/handlebars.min.js HTTP/1.1
Host: ferreddo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
date: Thu, 25 Apr 2024 12:57:52 GMT
server: Apache
content-length: 196
content-type: text/html; charset=iso-8859-1
connection: close

ferreddo.com/css/gridly/0.04.02/gridly.min.css

103.224.212.216

404 Not Found

196 B

URL GET HTTP/1.1
ferreddo.com/css/gridly/0.04.02/gridly.min.css
IP
103.224.212.216:443
ASN
#133618 Trellian Pty. Limited

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectmangoreader.xyz
Fingerprint47:01:5A:CE:87:D8:80:C1:40:56:65:DB:7B:7F:B7:11:43:2E:0E:04
ValidityMon, 18 Mar 2024 06:13:25 GMT - Sun, 16 Jun 2024 06:13:24 GMT

File type
HTML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

HTTP Headers

GET /css/gridly/0.04.02/gridly.min.css HTTP/1.1
Host: ferreddo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kryptomachine.com
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
date: Thu, 25 Apr 2024 12:57:53 GMT
server: Apache
content-length: 196
content-type: text/html; charset=iso-8859-1
connection: close

kryptomachine.com/jquery.bxslider.css

188.114.97.1

200 OK

2.8 kB

URL GET HTTP/3
kryptomachine.com/jquery.bxslider.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (2787), with no line terminators
Size
2.8 kB (2786 bytes)
Hash
07b88595437b141f57362cfafa24d479
6ba8b09057e757abadbec889bdcc08e2f66ea400
f31e4afbf15169aedbf3c80e9f17039b17c143930655a4e191e842f213866891

HTTP Headers

GET /jquery.bxslider.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3836
last-modified: Mon, 30 Sep 2019 18:11:55 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3XZ9q7GdE5n1T7kvwjvztUOoElq9VTSsmvgIRIHGnacGaxDHAUpElZ0pR6p1n3cTn169MWrlwXLHOYKiFk7Cx7lwQ12H7eCA918sdw7dO00cNw1NOjkH5BreTESePnBv59UaHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e801289ac568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

kryptomachine.com/css/fbcomm.css

188.114.97.1

200 OK

8.5 kB

URL GET HTTP/3
kryptomachine.com/css/fbcomm.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (8493), with no line terminators
Size
8.5 kB (8475 bytes)
Hash
e716ac8d5571446f4f3476fe229e3d9f
0c044665dd46d88478badb41a9490c0fbeeb6c76
9333cb7e8fc8fbeb672ab179e71cbbdfb5f4c6644c5bc706a35a897014116e24

HTTP Headers

GET /css/fbcomm.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=8490
last-modified: Mon, 30 Sep 2019 18:11:56 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hgZOK6I4kPthB4OdaXZCQLEpIdpvCe5YtVB2odubXIdxeULqKuCmL5wjVf3rD7P1egs5rkYzPudzA0Bh9yQ9JTY2w%2FRQor8OpkSNwwxa93QqDd2KLeEVZzmaIF3%2FSwJ8UVxdLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e801299be568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

kryptomachine.com/css/normalize.css

188.114.97.1

200 OK

1.9 kB

URL GET HTTP/3
kryptomachine.com/css/normalize.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (1937), with no line terminators
Size
1.9 kB (1937 bytes)
Hash
4d5e8a0cb3ac32c4593a11a8746c35dd
4c14cb14ad80e42f5c0596a8c5e5ecc2d6bbadee
9d8d571812e41adc7a1725495e0ef71614b98b18268d1bcda07a67be13b00300

HTTP Headers

GET /css/normalize.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1939
last-modified: Mon, 30 Sep 2019 18:11:56 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3ldSliE2DQ5Ie3T1Hv8SxWxByTMByN%2F%2BwUXJWqdUa%2FI2b0Jrs%2FNBoCDvyuVl%2Bl%2Bx4oO3CGhcrM%2FfHc8TaT3j0ISYcNS0tnYN6I9vm4IIWOCFn48uAUXDDptg75CRjCNoS%2F1XUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e801289b0568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

kryptomachine.com/jquery.tinyscrollbar.js

188.114.97.1

200 OK

3.9 kB

URL GET HTTP/3
kryptomachine.com/jquery.tinyscrollbar.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
JavaScript source, ASCII text, with very long lines (3965), with no line terminators
Size
3.9 kB (3871 bytes)
Hash
274a36184d7786bc94a9ecd67a473e12
861fa82416cc40c9b5bfc101b8bd0e895de3e0a2
b5dec889e676565d2918314237676d1bc10733dd44535f758d07eb7d76b6e67a

HTTP Headers

GET /jquery.tinyscrollbar.js HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: application/javascript
last-modified: Mon, 30 Sep 2019 18:11:55 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KEHKMq6TopGDsmI8UnewnZd7RKM3nn4KIlKg0aj2knzXHHrV6yxyB8lSXoXKqtmYjZB9zYtLDTTZw6sucGdR4e2kX0VNbOiqEqe3MH4qoCJ5MXXw%2Fc%2FIdFpCzvUkjx7JR9brDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e801299bd568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

kryptomachine.com/?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904

188.114.97.1

302 Found

56 kB

URL User Request GET HTTP/2
kryptomachine.com/?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type

Size
56 kB (56256 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904confirm.php?i=225904 HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: text/html; charset=UTF-8
location: confirm.php?i=225904
x-powered-by: PHP/5.6.40
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C3eM9foAHysECm5s89fVW94Fnlv17mBD3AIDdJU2PFRGtj%2FF9mXoJj%2BrXt9BPne4guxK3QvVzcHfGQjvZH5qLBsa6PN0zhFL9MTZnaDg2JtBK9vl%2FxBP4ezYu0LHllP3BZIvvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e800e5f5cb4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

kryptomachine.com/css/skeleton.css

188.114.97.1

200 OK

6.3 kB

URL GET HTTP/3
kryptomachine.com/css/skeleton.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (6339), with no line terminators
Size
6.3 kB (6337 bytes)
Hash
4cff15e6a7e786d1aac629dc98c98569
00a2d2587f1e9ed839b66908f95da10b53f0584d
dfa0f4187731df940eb62ffb9523953bfbee8428a9a1f0d337e80593ce6d347e

HTTP Headers

GET /css/skeleton.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6341
last-modified: Mon, 30 Sep 2019 18:11:56 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=atM%2BHSKvBhfwDFb3djPCojFfAyZ3xoNjSin%2BxT3O6RnZCGFZKZyQgjdFekeB0E79qZsnK24%2FNI%2Bxao1naw1XMwBSSmRGcVMy5q7CwQXEwZDPnCWKwAQAx7h0JFrU31ge8h5JMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e801299b9568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,400,300,600

142.250.74.106

200 OK

34 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,400,300,600
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (1572)
Size
34 kB (33669 bytes)
Hash
d70952bbc056dfabdc30b80ce4f24934
dc7680a0869c546dfb2595b045588ef380b48dae
344c7bdd1c5be8ac9d27c9260ff6d07263306880d3b6dd8698dca320ae192227

HTTP Headers

GET /css?family=Open+Sans:300italic,400italic,600italic,400,300,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 12:57:41 GMT
date: Thu, 25 Apr 2024 12:57:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kryptomachine.com/jquery.bxslider.min.js

188.114.97.1

200 OK

19 kB

URL GET HTTP/3
kryptomachine.com/jquery.bxslider.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
JavaScript source, ASCII text, with very long lines (19040)
Size
19 kB (19359 bytes)
Hash
697d69a48e5356f7106e38c09f7f19e0
b57160771fa597a5b56c5b12756c693e4829be07
bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e

HTTP Headers

GET /jquery.bxslider.min.js HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: application/javascript
last-modified: Mon, 30 Sep 2019 18:11:55 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XfB4IwufxPjUZAO7AdZUZrOAhICs5274A%2BRylRQbs7W%2BdQWFgixB5U8WUlbd%2FD%2F5WsvouKzhjdN9ARuMFWXAmpSfaLEO7UuOs0KOOdb5sIpApLwzxoRCKxkDAKWRs5gkMhY3rQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e801289aa568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

kryptomachine.com/tinyscrollbar.css

188.114.97.1

200 OK

965 B

URL GET HTTP/3
kryptomachine.com/tinyscrollbar.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=225904
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (965), with no line terminators
Size
965 B (965 bytes)
Hash
444ce105b9c6b672cacde9b7e5e3c785
0679ad8db024dccec41fc662ca666254de93fad2
6f4598d7adac6e730488c747d7234075db417b95e377517dc33bea6ec25b297e

HTTP Headers

GET /tinyscrollbar.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=225904
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 12:57:41 GMT
content-type: text/css
cf-bgj: minify
last-modified: Mon, 30 Sep 2019 18:11:56 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 39
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LNK3AD3MykRbXbK8qODiyqzq0KncWJzh3hAoK6INt1gtSWemVTfcgXAtf5hp%2FQjK0kaUb66cv5cgZeZeA3aiMV0m7n2EMhnA3NRuPhp7%2FouWwdkFuCNPNixI4kWjRAv2LHQuyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879e801299bb568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL