As noted in another post from /u/InsanityDRM, he found out that Olympus Market was using a favicon hosted on a clearnet site. Putting two and two together, their server time is in Germany, and this site is hosted on a German server, with a German IP address.
After doing some more simple digging, I was able to come up with their IP: 62.***** Naturally its down now but this is most likely Olympus' market server cluster/network. This IP is hosted at 23media dot de, which is in Germany. Same info as InsanityDRM posted. Doesn't look good for these "InfoSec" specialists who use a simple favicon pointed at a clearnet domain. If they can't have 2 seconds to move a favicon to the web server of the market, then they don't have enough time to secure your funds.
Personally I don't think that is the servers IP. However I'm not currently in a position to say whether it is or is not. That being said the way they originally handled the situation was terrible & they made it far more suspicious than it currently appears to be. Currently it just seems like a giant opsec fail & the admins didn't thoroughly check through the src of their cracked Xenforo.