Report - kryptomachine.com/?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898

Report Overview

Submitted URL
kryptomachine.com/?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 12:51:12
Access
public
Website Title
KryptoMachine - free BitCoins for inviting friends!
Final URL
kryptomachine.com/confirm.php?i=294898
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
apis.google.com	105	1997-09-15	2013-05-06	2024-04-16	958 B	79 kB	142.250.74.110
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-16	1.0 kB	98 kB	142.250.74.99
ferreddo.com	unknown	2023-05-22	2018-09-14	2024-04-15	896 B	716 B	103.224.212.216
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-16	918 B	40 kB	142.250.74.106
kryptomachine.com	unknown	2017-08-30	2017-09-01	2024-04-14	7.1 kB	403 kB	188.114.96.1
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-16	407 B	74 kB	151.101.66.137

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	kryptomachine.com/confirm.php?i=294898	Code and strings of plugins from the Tetris framework loaded by Swid

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	apis.google.com/js/plusone.js	56 kB	2024-04-13	2024-04-21
Pretty URL apis.google.com/js/plusone.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-13 12:31:25 Last Seen2024-04-21 20:35:32 Times Seen138 Hash a878405cf2e9d55e0aca10f5a016990e 0277e2cd3cf9de944e7e2206750b5bffc485a77d 186381606450b1bc2c95df8d7451987027ac3011163ddc23707d02f4514b08c4 Loading...

	kryptomachine.com/jquery.tinyscrollbar.js	3.9 kB	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/jquery.tinyscrollbar.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen61 Hash 5947db1b6c30b51082984e73b45e31e6 406011bf6185daac0f0aea3b1379f70407919fdc cd94477ca22b499da21fa28641293d88e4378c30a2b98e11f9c05d3ea7942099 Loading...

	kryptomachine.com/confirm.php?i=294898	178 B	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/confirm.php?i=294898 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen51 Hash 007c76d5f02c3a299a15b19dd11e2262 d44f52dca3c96e1f0b2c894abfbe816343995a69 45578793e2fdf8a3217f3e54401e71d0b5c510fbb42f34b53fdb487bc34ed521 Loading...

	moz-extension://dd2ceb24-9a5a-481a-a4f4-0bd0450fd8db/lib/shim_messaging_helper.js	1.7 kB	2023-05-05	2024-04-29
Pretty URL moz-extension://dd2ceb24-9a5a-481a-a4f4-0bd0450fd8db/lib/shim_messaging_helper.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-04-29 21:05:28 Times Seen45218 Hash 865f01cbb34eb505834e826380d7dc2e c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e 30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17 Loading...

	kryptomachine.com/confirm.php?i=294898	147 B	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/confirm.php?i=294898 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen51 Hash 0e9ef2b8162c0fa610e55a34988735d1 6416b024e0d5bdd02fda458b69ae36d8e1f110a5 7eb7d83086953842f8bb792df6e36e7aa40dc1c9fec03ce61b0871ede75bf65c Loading...

	connect.facebook.net/en_US/all.js#xfbml=1	17 kB	2023-05-05	2024-04-29
Pretty URL connect.facebook.net/en_US/all.js#xfbml=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:33:37 Last Seen2024-04-29 21:05:28 Times Seen44678 Hash b938e0b835c600209bdaae9d8ccda6d7 d5ee79d277057e05f002a18381722b5eb75d3883 d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b Loading...

	kryptomachine.com/confirm.php?i=294898	398 B	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/confirm.php?i=294898 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen51 Hash 4049cf480fc1a1215165aa26e13b1e4f f53e95856b57d965a2a64701918dbf2214655448 2056bdc70d21ca0684b87c96199571506928da65a2c59720f17582d3d084298d Loading...

	unknown	79 B	2023-04-11	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:58 Last Seen2024-04-29 20:38:43 Times Seen124934 Hash aa049e2749b8531cb8f233c2f64fc2b2 b611a5a62c1813ae5b4763378b3a4a565556530a e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.5BIk7BglYEE.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9V8V9Op_7rn4BCy9pIOBNUyU2IjA/cb=gapi.loaded_0?le=scs	161 kB	2024-04-13	2024-04-22
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.5BIk7BglYEE.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9V8V9Op_7rn4BCy9pIOBNUyU2IjA/cb=gapi.loaded_0?le=scs IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-13 12:31:26 Last Seen2024-04-22 10:43:43 Times Seen130 Hash 6f013df87f712223193647aa060f2037 e055e8a2ff03f2afb9ce861730e820b6a0cfe582 92c25f417f6a76637a302786e029dec3518f9bfd7accdd223886ae7e1b54f4cc Loading...

	kryptomachine.com/jquery.bxslider.min.js	19 kB	2023-03-07	2024-04-28
Pretty URL kryptomachine.com/jquery.bxslider.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-28 04:17:08 Times Seen4419 Hash 697d69a48e5356f7106e38c09f7f19e0 b57160771fa597a5b56c5b12756c693e4829be07 bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e Loading...

	kryptomachine.com/confirm.php?i=294898	51 kB	2023-07-21	2024-04-25
Pretty URL kryptomachine.com/confirm.php?i=294898 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-21 13:26:49 Last Seen2024-04-25 15:03:00 Times Seen50 Hash 135bcdb0c1658f50929c4b3c77af2eef fd21ec3d99e73e090da39df88a42904d20aa47e6 ce2ac19d40438d32e5cc77c1b89dde44216fa11aecc3c8002407e255802e9a41 Loading...

	unknown	37 B	2023-04-11	2024-04-29
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-04-29 21:20:04 Times Seen232631 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	kryptomachine.com/sandbox%20eval%20code	147 B	2023-04-11	2024-04-29
Pretty URL kryptomachine.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-29 21:12:13 Times Seen343229 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-29
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-29 21:12:13 Times Seen342728 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	code.jquery.com/jquery-2.1.4.js	248 kB	2023-03-07	2024-04-25
Pretty URL code.jquery.com/jquery-2.1.4.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:57 Last Seen2024-04-25 15:03:00 Times Seen692 Hash 107fbe9555bfc88ec5cab524c790fe34 0fed45ad7a48ace869bc725ca474ad86a1ef1562 b2215cce5830e2350b9d420271d9bd82340f664c3f60f0ea850f7e9c0392704e Loading...

HTTP Transactions (24)

URL IP Response Size

kryptomachine.com/images/bitcoins_s.png

188.114.96.1

200 OK

469 B

URL GET HTTP/3
kryptomachine.com/images/bitcoins_s.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
469 B (469 bytes)
Hash
331d9c1f97862f96f8ebbb5d93011d56
7c33d7e0b7ee142538b84d81ea0780a13b6d4957
3f4ffc13e3db36c4792c0ad09d91e6632844f0c904c1f1070b25d81615e49e35

HTTP Headers

GET /images/bitcoins_s.png HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: image/png
content-length: 469
last-modified: Mon, 30 Sep 2019 18:11:57 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BoH%2BP3CGh8wgWgOyT38zw0GJP1LmNv%2FWIasYh51qbnwvWFigpMBJX1uT9YhD9%2BGW57eeLeuTh%2BQC%2BAb%2Br91k09NvkMvlg5JYErtpeJSXIPY0JtxBak83GQoSR%2FakNuFnkkSUYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87544d940c06b4f7-OSL
alt-svc: h3=":443"; ma=86400

kryptomachine.com/images/logo.png

188.114.96.1

200 OK

7.5 kB

URL GET HTTP/3
kryptomachine.com/images/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
PNG image data, 232 x 170, 8-bit colormap, non-interlaced
Size
7.5 kB (7526 bytes)
Hash
7bebebdf96462dea82ed194191fa44fb
f26c3dd2432ad304c7f4080b32a1dbbfe1932bc6
ef6c09407da64fa2d5a464d8c9018f8c1371ae53e591d5139800a6fbf8f63de5

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: image/png
content-length: 7526
last-modified: Mon, 30 Sep 2019 18:11:59 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FGHG%2Fhw9FihWf6fXkTaP13%2B48iHVVbQHM6w%2FkNmvVMrDHKxOmzf21KjjgIgvO6cJe5%2B8XNaM2117E9rNRhCRluMdwjqU2xC6juVutb1bdiK3vnIu9n%2FtSYkmtYJKykpkZy%2BeOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87544d940c05b4f7-OSL
alt-svc: h3=":443"; ma=86400

kryptomachine.com/images/btnbg_h.png

188.114.96.1

200 OK

208 B

URL GET HTTP/3
kryptomachine.com/images/btnbg_h.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
PNG image data, 50 x 50, 4-bit colormap, non-interlaced
Size
208 B (208 bytes)
Hash
6053f3338d8b9bb44e8558478b0f87db
f14f475a2ae94a2e5e890129c3cd350a7138dbe3
25cd221d9b850ad69f6611054ada9cc077c4e9f090e5db310b474fc1f7c0fc0a

HTTP Headers

GET /images/btnbg_h.png HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: image/png
content-length: 208
last-modified: Mon, 30 Sep 2019 18:11:57 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iXwyHANS2p0zXzfknskU9toq4SN3AUFYhacrNWk%2ByOTvCk1885Ywd9Lohba287U2nfadjo6gaDXND0OZMO%2BEal%2Fx7ogi0GalIJCfnEQ8YJbKePnc8UULZ7sffISWGMPEPzHS1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87544d940c07b4f7-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/jquery-2.1.4.js

151.101.66.137

200 OK

73 kB

URL GET HTTP/2
code.jquery.com/jquery-2.1.4.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
73 kB (73197 bytes)
Hash
107fbe9555bfc88ec5cab524c790fe34
0fed45ad7a48ace869bc725ca474ad86a1ef1562
b2215cce5830e2350b9d420271d9bd82340f664c3f60f0ea850f7e9c0392704e

HTTP Headers

GET /jquery-2.1.4.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-3c72d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 16 Apr 2024 12:50:47 GMT
age: 803293
x-served-by: cache-lga21977-LGA, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 537, 1486
x-timer: S1713271847.097016,VS0,VE0
vary: Accept-Encoding
content-length: 73197
X-Firefox-Spdy: h2

apis.google.com/js/plusone.js

142.250.74.110

200 OK

21 kB

URL GET HTTP/2
apis.google.com/js/plusone.js
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
FingerprintE3:82:77:FB:12:E7:1E:09:41:8D:12:01:82:E8:DB:CC:47:EB:3F:57
ValidityMon, 04 Mar 2024 07:19:24 GMT - Mon, 27 May 2024 07:19:23 GMT

File type
JavaScript source, ASCII text, with very long lines (2050)
Size
21 kB (21304 bytes)
Hash
a878405cf2e9d55e0aca10f5a016990e
0277e2cd3cf9de944e7e2206750b5bffc485a77d
186381606450b1bc2c95df8d7451987027ac3011163ddc23707d02f4514b08c4

HTTP Headers

GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21304
date: Tue, 16 Apr 2024 12:50:47 GMT
expires: Tue, 16 Apr 2024 12:50:47 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "9472c1cc1ca55f99"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kryptomachine.com/images/wall.jpg

188.114.96.1

200 OK

305 kB

URL GET HTTP/3
kryptomachine.com/images/wall.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2017:08:22 12:22:40], progressive, precision 8, 2743x500, components 3
Size
305 kB (304837 bytes)
Hash
b69c56aa559938e8391169fface0da9d
8f78f37ad2fc59f83371533c9b1188dfe668e2e8
68f706785d5d410a054272fa57d20c8f28aaafdbed0abd0436a139362f1ca7ad

HTTP Headers

GET /images/wall.jpg HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/css/skeleton.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: image/jpeg
content-length: 304837
last-modified: Mon, 30 Sep 2019 18:11:59 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aM%2FyhX1pkrcxnClAMhLO0wE8KKVZOmNUfW9w2%2BFYKL1LNF6Cprp3eq1djEgMIYSiO0zevWMWdPXntsjEqcCl1qKJqgdUjEgRDaRORtUKSZJfJVPcId0dwnhaRmOYl9D%2B3hrCkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87544d95ae7ab4f7-OSL
alt-svc: h3=":443"; ma=86400

kryptomachine.com/images/btnbg.gif

188.114.96.1

200 OK

5.6 kB

URL GET HTTP/3
kryptomachine.com/images/btnbg.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
GIF image data, version 89a, 50 x 50
Size
5.6 kB (5583 bytes)
Hash
7801b958ed71c62fb90dbba33c9059b0
8862af12f1d65b90eec8477d3500081981a84b64
ff436bc49fdefc0555e8721983ea7a5022d7e615a8fa0b1a37a64b4ce4a67a52

HTTP Headers

GET /images/btnbg.gif HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/css/skeleton.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: image/gif
content-length: 5583
last-modified: Mon, 30 Sep 2019 18:11:59 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dnMB4MnqV4lbSrHzCnq7hbbdx0uCe4DQhxCY4hh3banwGuik%2BVQwSFULFGEolJi%2Fl4mQDauc0so7a40fbrp6z1JrKD%2BRZNVqFefBTVlkif4%2B8e%2FsXXf%2BdAk6Z3mj2R6N8cvn2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87544d95fedcb4f7-OSL
alt-svc: h3=":443"; ma=86400

kryptomachine.com/tinyscrollbar.css

188.114.96.1

200 OK

792 B

URL GET HTTP/3
kryptomachine.com/tinyscrollbar.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (965), with no line terminators
Size
792 B (792 bytes)
Hash
444ce105b9c6b672cacde9b7e5e3c785
0679ad8db024dccec41fc662ca666254de93fad2
6f4598d7adac6e730488c747d7234075db417b95e377517dc33bea6ec25b297e

HTTP Headers

GET /tinyscrollbar.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: text/css
cf-bgj: minify
last-modified: Mon, 30 Sep 2019 18:11:56 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VWy%2FYQ0acudfVh%2BGgCcyt1GhLUdGhLJeSXQor8Wo8U3qFELmxezcHfJr0AopgbGyfG9zR3Ao6HRrQ5HGgMbVnZBBrCueD%2F1EtHPj7oJyzYDG4m0C5Uf7Kl9Ey7bkWOpf%2FrI%2FSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87544d940bffb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2

142.250.74.99

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48208, version 1.0
Size
48 kB (48208 bytes)
Hash
c49b7c3643f781d71645c5a40a78b5bf
e71138026b38afc443fb60da5ffc2244c4f5eb11
8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808

HTTP Headers

GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kryptomachine.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:41:26 GMT
expires: Fri, 11 Apr 2025 02:41:26 GMT
cache-control: public, max-age=31536000
age: 468561
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2

142.250.74.99

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48208, version 1.0
Size
48 kB (48208 bytes)
Hash
c49b7c3643f781d71645c5a40a78b5bf
e71138026b38afc443fb60da5ffc2244c4f5eb11
8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808

HTTP Headers

GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kryptomachine.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:41:26 GMT
expires: Fri, 11 Apr 2025 02:41:26 GMT
cache-control: public, max-age=31536000
age: 468561
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kryptomachine.com/?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898

188.114.96.1

302 Found

4.9 kB

URL User Request GET HTTP/2
kryptomachine.com/?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
data
Size
4.9 kB (4918 bytes)
Hash
1d9f7ef1e3083a61c180258f194279da
2bd4c4c3cb14aeade9a80b6bd975d0e65c1cd505
9642f10df8c5e7d0cbf88f8c5406c6647b4c162e4ec36e26a6ae1e9c1610f351

HTTP Headers

GET /?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898confirm.php?i=294898 HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 16 Apr 2024 12:50:46 GMT
content-type: text/html; charset=UTF-8
location: confirm.php?i=294898
x-powered-by: PHP/5.6.40
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DkjYPNx9%2BUev7ifF7vq%2Bw2BWJKEPzEqcHZJZxdvCt5DL0gDohkW65gmiwq4XRav%2FssykTDD%2F50bjkPfQ%2BXC4H019uNwyM63mCf1ByJpUjiZq%2BxURCf0kmVd2KhdayKD%2B0UypLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87544d8fece956c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

kryptomachine.com/css/fbcomm.css

188.114.96.1

200 OK

1.9 kB

URL GET HTTP/3
kryptomachine.com/css/fbcomm.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (8475), with no line terminators
Size
1.9 kB (1913 bytes)
Hash
c48ba73969bdc49bf2c3beddd966b879
77f7da3b000e6822db6aa833b8de23a1fe3c56fa
4cc4b56ee009e2fd4d5d6243196409087cd310e6cd62e18268dcb1e7fe40ddd3

HTTP Headers

GET /css/fbcomm.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=8490
last-modified: Mon, 30 Sep 2019 18:11:56 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=82shhCrBzFNAH9EvUTlouMOY8Phs7KugxjMNH6STv5bUwAqVLZUsh6k5qgc%2BLMTuwoDnaJYKWRJzE%2F1hMSLoxZQ7%2BiP2V9dj6wQd39nShK2IuiWAJxGSqyJ%2FzMrP%2FtQp8iEXoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87544d940c02b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.5BIk7BglYEE.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9V8V9Op_7rn4BCy9pIOBNUyU2IjA/cb=gapi.loaded_0?le=scs

142.250.74.110

200 OK

56 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.5BIk7BglYEE.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9V8V9Op_7rn4BCy9pIOBNUyU2IjA/cb=gapi.loaded_0?le=scs
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
56 kB (55815 bytes)
Hash
6f013df87f712223193647aa060f2037
e055e8a2ff03f2afb9ce861730e820b6a0cfe582
92c25f417f6a76637a302786e029dec3518f9bfd7accdd223886ae7e1b54f4cc

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.5BIk7BglYEE.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9V8V9Op_7rn4BCy9pIOBNUyU2IjA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 55815
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:08:07 GMT
expires: Fri, 11 Apr 2025 17:08:07 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 31 Mar 2024 15:20:31 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 416560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

kryptomachine.com/confirm.php?i=294898

188.114.96.1

200 OK

29 kB

URL User Request GET HTTP/2
kryptomachine.com/confirm.php?i=294898
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (50868)
Size
29 kB (28702 bytes)
Hash
ac238524b420298f354a4c97647e39c5
604c589feb3fb34fe74302bc823d1c3fc4cdd7ae
4f7294046ce5d28a20b42d0748aff23ac2a9ea8bb00fd0aded38737052e752d5

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Code and strings of plugins from the Tetris framework loaded by Swid

HTTP Headers

GET /confirm.php?i=294898 HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 16 Apr 2024 12:50:46 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2xJJlVLyuvy6vNifF2aExPXL6DJdCLVYxAtG94OBwudbCcw6R2K6PEBbSZVJODAA0k58wV0diVQWP8tv8EFQ5B%2FR173c%2B%2Fn1rPuRpjV5ELlYTOY%2FCzTg7kVnh5A5qE%2FCkjn7Tg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87544d90fede56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ferreddo.com/js/handlebars/0.04.02/handlebars.min.js

103.224.212.216

404 Not Found

196 B

URL GET HTTP/1.1
ferreddo.com/js/handlebars/0.04.02/handlebars.min.js
IP
103.224.212.216:443
ASN
#133618 Trellian Pty. Limited

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectmangoreader.xyz
Fingerprint47:01:5A:CE:87:D8:80:C1:40:56:65:DB:7B:7F:B7:11:43:2E:0E:04
ValidityMon, 18 Mar 2024 06:13:25 GMT - Sun, 16 Jun 2024 06:13:24 GMT

File type
HTML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

HTTP Headers

GET /js/handlebars/0.04.02/handlebars.min.js HTTP/1.1
Host: ferreddo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
date: Tue, 16 Apr 2024 12:50:58 GMT
server: Apache
content-length: 196
content-type: text/html; charset=iso-8859-1
connection: close

ferreddo.com/css/gridly/0.04.02/gridly.min.css

103.224.212.216

404 Not Found

196 B

URL GET HTTP/1.1
ferreddo.com/css/gridly/0.04.02/gridly.min.css
IP
103.224.212.216:443
ASN
#133618 Trellian Pty. Limited

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectmangoreader.xyz
Fingerprint47:01:5A:CE:87:D8:80:C1:40:56:65:DB:7B:7F:B7:11:43:2E:0E:04
ValidityMon, 18 Mar 2024 06:13:25 GMT - Sun, 16 Jun 2024 06:13:24 GMT

File type
HTML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

HTTP Headers

GET /css/gridly/0.04.02/gridly.min.css HTTP/1.1
Host: ferreddo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kryptomachine.com
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
date: Tue, 16 Apr 2024 12:50:58 GMT
server: Apache
content-length: 196
content-type: text/html; charset=iso-8859-1
connection: close

fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,400,300,600

142.250.74.106

200 OK

34 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,400,300,600
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (1572)
Size
34 kB (33669 bytes)
Hash
d70952bbc056dfabdc30b80ce4f24934
dc7680a0869c546dfb2595b045588ef380b48dae
344c7bdd1c5be8ac9d27c9260ff6d07263306880d3b6dd8698dca320ae192227

HTTP Headers

GET /css?family=Open+Sans:300italic,400italic,600italic,400,300,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 12:50:47 GMT
date: Tue, 16 Apr 2024 12:50:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kryptomachine.com/jquery.bxslider.css

188.114.96.1

200 OK

2.8 kB

URL GET HTTP/3
kryptomachine.com/jquery.bxslider.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (2787), with no line terminators
Size
2.8 kB (2786 bytes)
Hash
07b88595437b141f57362cfafa24d479
6ba8b09057e757abadbec889bdcc08e2f66ea400
f31e4afbf15169aedbf3c80e9f17039b17c143930655a4e191e842f213866891

HTTP Headers

GET /jquery.bxslider.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3836
last-modified: Mon, 30 Sep 2019 18:11:55 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9ACsLfQ9RadOJG8PQ2k64yDd3l4gz%2Fclh71wIyNijh9LwicHVzEErYcQx%2F0kif1o6A6%2FFCz9NlgKukB09qdrcXDjkk9znOjP27Zp1UXcaLZSnTNRRPo9lRpxmHEFX78ToOEp%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87544d940bfab4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

kryptomachine.com/jquery.tinyscrollbar.js

188.114.96.1

200 OK

3.9 kB

URL GET HTTP/3
kryptomachine.com/jquery.tinyscrollbar.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
JavaScript source, ASCII text, with very long lines (3965), with no line terminators
Size
3.9 kB (3871 bytes)
Hash
274a36184d7786bc94a9ecd67a473e12
861fa82416cc40c9b5bfc101b8bd0e895de3e0a2
b5dec889e676565d2918314237676d1bc10733dd44535f758d07eb7d76b6e67a

HTTP Headers

GET /jquery.tinyscrollbar.js HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Sep 2019 18:11:55 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BkO4N92e6DEqu%2FTHUZ2sMzevcZ50J%2FE99QfZCs%2B0HhoCqd%2Bvi9YK2hmLVXmmQumt68Z6n48B6SKvNRJgDSQVCAnaG1JN5LCqR75%2FmrB2Tmp6vRPGp8Wye3bAYm8%2Fv766URHubg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87544d940c00b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Raleway:400,300,600

142.250.74.106

200 OK

5.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Raleway:400,300,600
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (5130), with no line terminators
Size
5.0 kB (5010 bytes)
Hash
6d9216c949964287c873ea20687291b4
9d34452becfed41225820fd1714dbb2c202564e8
c8a9ef2620d77b5c4370fc8b92f372e2da5fb6cf20777630e8f696a4995d7ee4

HTTP Headers

GET /css?family=Raleway:400,300,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 12:50:47 GMT
date: Tue, 16 Apr 2024 12:50:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kryptomachine.com/jquery.bxslider.min.js

188.114.96.1

200 OK

19 kB

URL GET HTTP/3
kryptomachine.com/jquery.bxslider.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
JavaScript source, ASCII text, with very long lines (19040)
Size
19 kB (19359 bytes)
Hash
697d69a48e5356f7106e38c09f7f19e0
b57160771fa597a5b56c5b12756c693e4829be07
bb9e7dc822c6b7b95a6329932885c72ff2caf74b243fc1c40aca0e858123b83e

HTTP Headers

GET /jquery.bxslider.min.js HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Sep 2019 18:11:55 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZWWdQ%2F4spBeRgG4uBOrEUqdHnTybs2EAQxRDiOq330DqiG6oq71PHSnMh82N1hPUUyo%2BNkrBuVROD9LO%2BFQG%2B87znPjafC7lyLfLT6iOW8dpfQUaUPWFY3D%2FdaWsrUdnmg2v%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87544d93fbe8b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

kryptomachine.com/images/favicon.png

188.114.96.1

200 OK

3.5 kB

URL GET HTTP/3
kryptomachine.com/images/favicon.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
PNG image data, 133 x 133, 8-bit colormap, non-interlaced
Size
3.5 kB (3530 bytes)
Hash
9ebcd4d7dd66550c7f30a64dc89222da
ccf9893e1514b0a0ed77b69e133b67f96efc5f5a
9a42f299745881b01554d802b66d122791715a1edf799957130a4ad2f3ca75cd

HTTP Headers

GET /images/favicon.png HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: image/png
content-length: 3530
last-modified: Mon, 30 Sep 2019 18:11:59 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j1hZ6iOsN%2B5kTtUNVP5kFOQqy8mysbygqoXRm5XE3%2FwKSKEOpQiPYskjqvRzAgNMncm6CTfuQMDBRVA2lMSEjw26rIPnEb4qlQzLY%2FxM2NFPQcEkGhTOErB3Du%2BUhmSG%2FyuAnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87544d96bffcb4f7-OSL
alt-svc: h3=":443"; ma=86400

kryptomachine.com/css/normalize.css

188.114.96.1

200 OK

1.9 kB

URL GET HTTP/3
kryptomachine.com/css/normalize.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (1937), with no line terminators
Size
1.9 kB (1937 bytes)
Hash
4d5e8a0cb3ac32c4593a11a8746c35dd
4c14cb14ad80e42f5c0596a8c5e5ecc2d6bbadee
9d8d571812e41adc7a1725495e0ef71614b98b18268d1bcda07a67be13b00300

HTTP Headers

GET /css/normalize.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1939
last-modified: Mon, 30 Sep 2019 18:11:56 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O%2BRnKYPRqloPQ0MfBtWnTcjSzCA5mnmujc5xV2JVsfH4F3%2FQHLq9rc4Dt%2FbHAKmg9mc%2BxxEWoFcdcNSKAUOqs7ppGcO3IK5Pfg%2BqxcWA25heWvC4%2FYT9C6%2Bmpcnom727MaIShg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87544d940bfdb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

kryptomachine.com/css/skeleton.css

188.114.96.1

200 OK

6.3 kB

URL GET HTTP/3
kryptomachine.com/css/skeleton.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kryptomachine.com/confirm.php?i=294898
Certificate
IssuerLet's Encrypt
Subjectkryptomachine.com
Fingerprint70:3E:7F:C9:20:F2:1C:EB:9A:F8:17:01:5D:A7:4A:1C:C2:2B:9C:ED
ValidityFri, 01 Mar 2024 22:28:25 GMT - Thu, 30 May 2024 22:28:24 GMT

File type
ASCII text, with very long lines (6339), with no line terminators
Size
6.3 kB (6337 bytes)
Hash
4cff15e6a7e786d1aac629dc98c98569
00a2d2587f1e9ed839b66908f95da10b53f0584d
dfa0f4187731df940eb62ffb9523953bfbee8428a9a1f0d337e80593ce6d347e

HTTP Headers

GET /css/skeleton.css HTTP/1.1
Host: kryptomachine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kryptomachine.com/confirm.php?i=294898
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 12:50:47 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6341
last-modified: Mon, 30 Sep 2019 18:11:56 GMT
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: HIT
age: 31
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jPSdFWcf9VB8FuM7dYqk4NuGq4Q0ygGNWR%2FAo7bis3RyiM0WXzkD2FVx0MMjOj4jya273%2FoGT4WoJ%2BVezT3RntEQS4rT0hddLOxBfvlG2ECnVivj1rjo03ec9V6y%2BIMgIJbkaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87544d940bfeb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL