| intelligent-money-offers.net/quantumai/?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 | 185.142.239.82 | 302 Found | 0 B |
URL User Request GET HTTP/1.1intelligent-money-offers.net/quantumai/?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 IP185.142.239.82:443
CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
X-Upstream: evlampi-***ko
X-Server: tincidunt
PX-X-Request-Id: b9e1d52811f898031219a60f8756a681
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
|
|
| intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 | 185.142.239.82 | 200 OK | 9.0 kB |
URL User Request GET HTTP/1.1intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 IP185.142.239.82:443
CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (378) Hasha33be017b6a673a67b95424af47ce940 688bfc1736ee46d5ac8fdb7f079ab0dbd9a2e275 b3e173bacfe0a4a18ba331b053cb23f8616da8016aa398bd04fff2d8b62527d0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: intgrtn_language=en; expires=Sat, 25-May-2024 10:41:55 GMT; Max-Age=2592000; path=/quantumai/
X-Upstream: evlampi-***ko
Content-Encoding: gzip
X-Server: tincidunt
PX-X-Request-Id: 0b4ad40820b47b259e689e92c018ac88
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
|
|
| intelligent-money-offers.net/quantumai/css/animate.min.css | 185.142.239.82 | 200 OK | 4.2 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/css/animate.min.css IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeASCII text, with very long lines (57790) Hashc78e4003414fbf2814dc097a5e1c784a de9d5645ef10c5362ec1f893bb83995594eadf99 1ed082521f47921ffff14d4ec1c6c3f1ea55114741bee23cc23d4ab6a3213642
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/css/animate.min.css HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-e283"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: fc06ea06140161be02dfb4763e9323b3
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/style.css | 185.142.239.82 | 200 OK | 24 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/style.css IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeASCII text, with very long lines (1125) Hash6188316ca013bad8bb0fe2334a9f932a f1ed6afdc940eaf45e9af3aae13e75304a97bc23 3d0b5870da79a21876269802b824401d71a158520a95dd61da5f49eed4f38df3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/style.css HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-3c9c8"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 83d6ef73b47e7490cff6f7f54a791612
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/aos.css | 185.142.239.82 | 200 OK | 2.2 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/aos.css IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeASCII text, with very long lines (26053), with no line terminators Hash847da8fca8060ca1a70f976aab1210b9 0557d37454b67f42f2cb101e57e5070fb1193570 1aa8845fd06e475aefe733d4e55b36a92fcd487975049c8172341827ac9cc03e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/aos.css HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-65c5"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 3f0bb4b0b64162aaa1c40d0e359c85d7
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/custom.css | 185.142.239.82 | 200 OK | 1.9 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/custom.css IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hasheaab7828a21ac765cf41a06491d857b4 51da61e7224adc1e65380eda32f03dc8d25544c4 bb4d372897c169e0846d8da40cf355f38c2e8cba2453f3e769b57f9a5e2c1d57
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/custom.css HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-1c88"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 70caafd4bc79db0c939c00095043f9c7
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/js/videojs/video-js.css | 185.142.239.82 | 200 OK | 9.9 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/js/videojs/video-js.css IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeASCII text, with very long lines (5635) Hash21bf4a38a9d85fbbba3cb4aedf64e158 1a386e26bb98ad06797f9e5537af4b3094f40163 a16387a377f960f1d8c2f816b1d2e160a5f2099e85428dcda7e98edf818c8644
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/js/videojs/video-js.css HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-9aca"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 66b0c5bee89e02060e713bd2b8b6ec05
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/css/intgrtn.css | 185.142.239.82 | 200 OK | 1.5 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/css/intgrtn.css IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hasheb2e98bc90dd3117c003a5d67deb66dd 60ef91546cab2d96d9407be2feb9035cc3a4cddd e770f40170e4090ece5451a811b0c692e92682e5e0b86cc7bb3265d59f3cc41f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/css/intgrtn.css HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-19b1"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 23c5ca2f2fe792a1e61e8c70c2b25908
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/trades/trades.css | 185.142.239.82 | 200 OK | 401 B |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/trades/trades.css IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hash34ab8b2b0e65a01898efc9a73238525c 78dd5a103b55fe5ad70e8c67831942d734a7bfa7 fca048551a26dd8329ff0bf1d3c046a6eb330aa9b6e40e64fd5190b65f4673d5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/trades/trades.css HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: W/"66053405-4b0"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 932d85d7c05dbd9cccce63376bceab46
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/js/bootstrap.min.js | 185.142.239.82 | 200 OK | 9.8 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/js/bootstrap.min.js IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJavaScript source, ASCII text, with very long lines (32033) Hash5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/js/bootstrap.min.js HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-90b5"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: c439a954c3723df43387d2e3e88c2c67
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/aos.js | 185.142.239.82 | 200 OK | 4.5 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/aos.js IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJavaScript source, ASCII text, with very long lines (14243), with no line terminators Hasha01f9089e8301e9eacfb9d029dc0ca5c 165152546121aaaf96c19418908cffe3630a2336 4460f1596174d06cca957fdaca2c71e1a377cf1d6f07ee4c75ffb3bf3fc97a03
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/aos.js HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-37a3"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: ecc9e1557eb458960b128a00b737cff2
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/css/bootstrap.min.css | 185.142.239.82 | 200 OK | 25 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/css/bootstrap.min.css IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hash440b189216550d11261bad9ca9c7a300 8d7f583659e8004f20214f629b72f337d9a332af f8d0b95f110558a626bb1aed29c05331aa12551ed4141bf04d07159d68218f56
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/css/bootstrap.min.css HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-2e954"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 43c779f1e753d51fc5e927f977fdf185
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/js/jquery-2.2.4.min.js | 185.142.239.82 | 200 OK | 30 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/js/jquery-2.2.4.min.js IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/js/jquery-2.2.4.min.js HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-14e4a"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 304b06d8b9a481676a0f1c4eb0fa294f
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/trades/js/jquery.animateNumber.js | 185.142.239.82 | 200 OK | 1.6 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/trades/js/jquery.animateNumber.js IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJavaScript source, ASCII text Hash74666f70d8e004e6e986102ff8ff8a58 5a82ee9a20fc3a181b429b711bb11f155a964226 3a9485e8b76cf3a57f6c31bd7bc92ffea0096e6b6c999e472fdbf67997cf1eee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/trades/js/jquery.animateNumber.js HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: W/"66053405-1506"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: e499deaa389d94d5f88e3bba17641067
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/js/axios.min.js | 185.142.239.82 | 200 OK | 4.8 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/js/axios.min.js IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJavaScript source, ASCII text, with very long lines (13909) Hashe63531350b726384f625ead641f5ad66 eedcea771a678c29c5939aaad88dc0f2288f36fc 4ff7fb4a3bb565f34d7c187bb245a7d22765081708dd1c1d2d24b8fc8ecd40a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/js/axios.min.js HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-36a9"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: b8a4cc012ddd496a5a2e1f43bb0949b9
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/trades/js/trades.js | 185.142.239.82 | 200 OK | 863 B |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/trades/js/trades.js IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJavaScript source, ASCII text Hash9706a55ef2913b3688e353df6e7a305d 605ec76e36af4a8903784a78b91311a00dcffadf d0b9850b5feb049f04107f7a16bc2f72b8de76b845aaa3d2c5c08757c0392961
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/trades/js/trades.js HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: W/"66053405-ac9"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 6e5e62a9e41cd73329e8f5d685588747
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/js/videoBtnAvtive.js | 185.142.239.82 | 200 OK | 224 B |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/js/videoBtnAvtive.js IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hashbae2a8fb6cba1a8ae5c50a64fe7b5fbd f1e236f0e37d4827241d0a39517da6db0c662b0b 5eb2e047258f705e612739a18b94262bcccbae049fc9c86e541a96ec58bfb24d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/js/videoBtnAvtive.js HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-1a9"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: bbaa41b92ccaca2bbcb33c55c6017d2a
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/js/vue.js | 185.142.239.82 | 200 OK | 90 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/js/vue.js IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJavaScript source, ASCII text Hash1e99e929ad552078273d58192153ab2d 9e3cf9bcdf5806299e356f3d64e04936963e5d97 352baa818da109925437a8433057ddc6f91ec48efe88bc5741b2f9e34450fdce
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/js/vue.js HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: W/"66053405-53882"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: d7f15ae5ff9fc6946ef959ea1812329f
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/brand2.png | 185.142.239.82 | 200 OK | 3.0 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/brand2.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 394 x 115, 8-bit colormap, non-interlaced Hash144b11abec7cba612c95a7f138e5d074 4b7997e7a2ae8a3253c3da9556b54285e9971c8b 5edfeef23a44779d61456590afe10a590c457c249da9c9db7b17b156fb898636
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/brand2.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-bd7"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 2562b088889c90daad665726b377c47e
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/brand.png | 185.142.239.82 | 200 OK | 3.4 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/brand.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 216 x 40, 8-bit colormap, non-interlaced Hash07a6ca8535383cc7b3cc79fc0ae216c9 49268468990fad4c01189b2cbe732e6484f4f6c5 8138b9fab09302bad320d54bb9e9441f5357081596a27468da51e4c7a95a0233
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/brand.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-d65"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 8a6392bcbd7eff6498a02a998adda9c2
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/img/qce_logo_150dpi.png | 185.142.239.82 | 200 OK | 4.9 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/img/qce_logo_150dpi.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash6182fbe4a20dd9ea50622a06cbf90509 566676f2a85d0c00262e848705726d8bd6b0d0bd 881579287dbfe4f1ad6822e6c608f19440982da8b79956853390eb2a7a8cf72f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/img/qce_logo_150dpi.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-4897"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 5d2fd1b4abe787c20b468de51b3fdd85
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/js/videojs/video.js | 185.142.239.82 | 200 OK | 330 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/js/videojs/video.js IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJavaScript source, ASCII text, with very long lines (490) Size330 kB (329457 bytes) Hashb1e618a96fdad520aa5c0fd0d99bcf2f ef31372da5ea4be8fa1f5a0fc62953714d17c7f1 362f1602cad7eec63a8a0e9aede573132370bc58f95fbde7d3060a4093294937
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/js/videojs/video.js HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-156622"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 18dc448d8427253832272b2b8af3a2ad
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/c1.jpg | 185.142.239.82 | 200 OK | 47 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/c1.jpg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=14, height=900, bps=182, PhotometricInterpretation=RGB, orientation=upper-left, width=900], progressive, precision 8, 200x230, components 3 Hash432265ea4af1afdbcbf4b4c094e4ad6f 077716a69140b6fdc81c8b18dfd83db737117c5f fa73017ce1a28604ee158f51b04a09eeebd0d6f5a15f36fd96a4a29a5337e10d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/c1.jpg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-e27c"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 08de25479c5f1cba9d807ded0df0b8e5
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/brand3.png | 185.142.239.82 | 200 OK | 1.8 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/brand3.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 220 x 33, 8-bit colormap, non-interlaced Hash08a88934213181ba868415b7efaaed69 b1efa458e934901a50d45dbb3d017fed0d5b4bec 634bf12e162ffe44e5cc2bc7e3ebd43d0463424866b27fb904dbfd9a4ad35604
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/brand3.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-786"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 3be6359fd9737216be729e537f541017
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/ll3.png | 185.142.239.82 | 200 OK | 12 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/ll3.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 231 x 64, 8-bit/color RGBA, non-interlaced Hash0836aa379056a6aed2c4f23d9d9320dc 7bf17168531d4d064274878a330b6515ad372702 b3a2014395ce5865b32c47f73e8f9136e1112a646e3389819ae5eef0a7f1e04d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/ll3.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-2dc7"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 33c279e366c645ef8044d2da46ab4caa
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/c2.jpg | 185.142.239.82 | 200 OK | 41 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/c2.jpg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=733, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1100], progressive, precision 8, 200x230, components 3 Hash74f82c8c9b851a4f4b5049e3e1260bf2 cdd53c8a587eeabd7df8ec547ca8297acf688f39 d39ab8854e9ad5b75169714d36ee2540fe19d4e76f06785ee1b98fc37e0664e0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/c2.jpg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-c321"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 784ab05efea91a34ecd7b322388ed05d
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/content/ll2.png | 185.142.239.82 | 200 OK | 6.7 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/ll2.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 231 x 64, 8-bit/color RGBA, non-interlaced Hash611462a90692fc2984ba941f1efcb193 dc6b67ab9a58fc6991632880f25f61957347f292 1ad43d73e2620e642b8734db290d7f854e45ebf8c3866041539bec8790f79bcb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/ll2.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:55 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-1afc"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 779c41bfd9e1373349345d6ca3f017df
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/intgrtn/api/v1/integration/sdk.js?v=22024325104 | 185.142.239.82 | 200 OK | 50 kB |
URL GET HTTP/1.1intelligent-money-offers.net/intgrtn/api/v1/integration/sdk.js?v=22024325104 IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJavaScript source, ASCII text Hashe53dac7b14a824ab4c872df1d105664a adb0904a128c41dbba24f700a898a1ecb95a9904 548b5ae0126655d82d9061077f8d1b274983fe636c39eaa970abf203c7f71a65
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /intgrtn/api/v1/integration/sdk.js?v=22024325104 HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 24 Apr 2024 15:45:35 GMT
Vary: Accept-Encoding
ETag: W/"6629291f-79ca5"
Expires: Fri, 25 Apr 2025 10:41:32 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
X-Server: tincidunt
PX-X-Request-Id: da65a0f7c9883b38c43ecdea0cbcfe08
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
PX-Cache-Status: HIT
|
|
| intelligent-money-offers.net/quantumai/img/svg/play-button.svg | 185.142.239.82 | 200 OK | 5.4 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/img/svg/play-button.svg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeSVG Scalable Vector Graphics image Hash6da5ccc418c21d83dab0ba4cd4db9cdb 6441e1a36f2ff613584a8ff65c9396641aa8f0c2 d20f0e0a2150cdec0c2ed5a1611e34ca0a74549e69da5ed8aea4d8e1103c902b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/img/svg/play-button.svg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/svg+xml
Content-Length: 5375
Connection: keep-alive
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: "66053404-14ff"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 02ca2075eedaf3bc3e01983f4387420f
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Accept-Ranges: bytes
|
|
| intelligent-money-offers.net/quantumai/img/svg/mainpic.svg | 185.142.239.82 | 200 OK | 31 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/img/svg/mainpic.svg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeSVG Scalable Vector Graphics image Hash4985f1b20932957546f2099afdb137c4 2351a0af3a31799e5395d8835e12490126acb1ba 2611afde3b2d2ea949ad0f378684bce0af0de1d743323033c2e12d01e3c3baac
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/img/svg/mainpic.svg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/svg+xml
Content-Length: 31446
Connection: keep-alive
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: "66053404-7ad6"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: e611b2a720ee77490fa8073ff8a4147f
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Accept-Ranges: bytes
|
|
| intelligent-money-offers.net/quantumai/content/ll1.png | 185.142.239.82 | 200 OK | 5.5 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/content/ll1.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 231 x 64, 8-bit/color RGBA, non-interlaced Hasha56130f0dabae538a553c47ccb3737f3 0fbc0e40994d9f6d2191d4ab80ebcc02d6dcc958 57391f2db542ae3d0b595b332d29a28bce5eb5154c66fa17298b57578de2062b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/content/ll1.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-1677"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 33dd8b0925f55bc227b32ec5330cf163
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/img/svg/main-bg.svg | 185.142.239.82 | 200 OK | 9.3 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/img/svg/main-bg.svg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeSVG Scalable Vector Graphics image Hashcc3551272267f9ac21f6535de3444d0f aae57cdd06d49f3fbf314983ca83712eb97f8124 ff2486225c63bc9b2b507072edfbbe37ada88215a121763bc8946e3b10e228b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/img/svg/main-bg.svg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/content/style.css
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/svg+xml
Content-Length: 9275
Connection: keep-alive
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: "66053404-243b"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 4b8925721a37b14095db0726942c46ff
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
Accept-Ranges: bytes
|
|
| intelligent-money-offers.net/quantumai/img/back-white.png | 185.142.239.82 | 200 OK | 15 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/img/back-white.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 1600 x 970, 8-bit colormap, non-interlaced Hash688543d9fcd91051b2eff3e493e76304 a927ef3a6e5b764af7d3b5b57ccc95a38f139bd2 f1a381cd182bc05b295d91ec67a2556209e27f1e0f319c186f095b15ee4c3e57
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/img/back-white.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/content/style.css
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: W/"66053404-3c6d"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 2452d63faba2ad95f007d9f2f7b56538
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/img/svg/roadmap-bg.svg | 185.142.239.82 | 200 OK | 11 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/img/svg/roadmap-bg.svg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeSVG Scalable Vector Graphics image Hashf7c29e9987e4a774881b4356dd12d743 f827a6c68fbc97a7b5eac4136a7b00ed6e92060b 42a523cee090e94cecf3e8c78ccd7a145f8679a4f17c66f948bd296700fd5e5f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/img/svg/roadmap-bg.svg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/content/style.css
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/svg+xml
Content-Length: 10556
Connection: keep-alive
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: "66053404-293c"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 156590f8fed088437217d276e584b00d
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Accept-Ranges: bytes
|
|
| intelligent-money-offers.net/quantumai/img/svg/dark-bg.svg | 185.142.239.82 | 200 OK | 9.3 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/img/svg/dark-bg.svg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeSVG Scalable Vector Graphics image Hashe888bcf59318f22992b7e4bb29fabca7 d1286ad1a16e7e9af3cc9bc2eb08489cd5df6e64 dadef47bbd938dc280893b815a5bf50fbd8e4bc6914d76b1306fd653702a7f0e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/img/svg/dark-bg.svg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/content/style.css
Cookie: intgrtn_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/svg+xml
Content-Length: 9261
Connection: keep-alive
Last-Modified: Thu, 28 Mar 2024 09:10:28 GMT
ETag: "66053404-242d"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 9a049d27f41341eeff9aff776eb37af2
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Accept-Ranges: bytes
|
|
| intelligent-money-offers.net/intgrtn/api/v1/integration/sdk.css?v=2.67.1 | 185.142.239.82 | 200 OK | 8.6 kB |
URL GET HTTP/1.1intelligent-money-offers.net/intgrtn/api/v1/integration/sdk.css?v=2.67.1 IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hash11551ef44c6dccf85a6287f4bfe11182 d9b25491d60633670c86cf7cd76e0abf858bc360 617a4b507a3a45bc358f56b14d884283ab84e61e8ed5956d4d1684d5130e6b47
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /intgrtn/api/v1/integration/sdk.css?v=2.67.1 HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 24 Apr 2024 12:34:13 GMT
Vary: Accept-Encoding
ETag: W/"6628fc45-14923"
Expires: Thu, 24 Apr 2025 13:07:07 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
X-Server: tincidunt
PX-X-Request-Id: a27e9c7a976947fd57e56c6308a069e6
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
PX-Cache-Status: HIT
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15740, version 1.0 Hashb9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://intelligent-money-offers.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:32:46 GMT
expires: Fri, 25 Apr 2025 02:32:46 GMT
cache-control: public, max-age=31536000
age: 29350
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| intelligent-money-offers.net/quantumai/trades/data/users.json | 185.142.239.82 | 200 OK | 2.4 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/trades/data/users.json IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hash7c723f36374c18747c0d951cb57f814b f61de60018c62dcafafd8d74a348c560387fc8f0 7f39d26bbd31522e4ae9acdb6bb74fc8bff5b9235f039c12bd2b9c22e4580b4b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/trades/data/users.json HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: application/json
Content-Length: 2429
Connection: keep-alive
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: "66053405-97d"
X-Upstream: evlampi-***ko
Accept-Ranges: bytes
X-Server: tincidunt
PX-X-Request-Id: 7c613cb41415783d956a2ef2a6f571c3
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://intelligent-money-offers.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 152058
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://intelligent-money-offers.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 13:20:56 GMT
expires: Fri, 18 Apr 2025 13:20:56 GMT
cache-control: public, max-age=31536000
age: 595260
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 | 216.58.207.227 | 200 OK | 17 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 IP216.58.207.227:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17368, version 1.0 Hashabe083d96b58eb02ada8b7c30d7b09f2 61447d66d13a8c8f4335696777a85c438c46f749 db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://intelligent-money-offers.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 20:50:59 GMT
expires: Thu, 24 Apr 2025 20:50:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 49857
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://intelligent-money-offers.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 204445
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 IP216.58.207.227:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15764, version 1.0 Hash603b8950590bf833546eee7cbc79944a ebbde06eb829868c5f689afe2d48377608be1e7b 0f303f31706d39866cced9dcc17b61fb8423674278d7f6051d66b3a79ffbca18
GET /s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://intelligent-money-offers.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 08:37:16 GMT
expires: Wed, 23 Apr 2025 08:37:16 GMT
cache-control: public, max-age=31536000
age: 180280
last-modified: Wed, 11 May 2022 19:24:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| intelligent-money-offers.net/intgrtn/api/v1/projects/agreements.php?type=4&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 | 185.142.239.82 | 200 OK | 1.8 kB |
URL GET HTTP/1.1intelligent-money-offers.net/intgrtn/api/v1/projects/agreements.php?type=4&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hashc89ecaf984a7e74091a4dec846c9405a 659ba8f17946aec9872d92a5c740791d033676f5 2e9b73da95f56d110f17369024abc56b4b5d2f87b84fe5f040f8522186b2f345
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /intgrtn/api/v1/projects/agreements.php?type=4&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Intgrtn-Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: accept, origin, content-type, authorization, Cache-Control, X-Requested-With, Intgrtn-Referer
Access-Control-Allow-Methods: POST, GET, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: tincidunt
PX-X-Request-Id: 3326f555f142ddf192c33ac06f8003db
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
|
|
| intelligent-money-offers.net/intgrtn/api/v1/projects/details.php?&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2&language=en | 185.142.239.82 | 200 OK | 6.9 kB |
URL GET HTTP/1.1intelligent-money-offers.net/intgrtn/api/v1/projects/details.php?&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2&language=en IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hash43fc7a8f36764e8dfe00d660478a440a d03e4c43458f8c12bb9c0b1e91e6cf12c66bd2c7 d2558d4b51dfcfd2e5f74decb76c0b05ccc57a6824506c076b439c039b833720
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /intgrtn/api/v1/projects/details.php?&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2&language=en HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Intgrtn-Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: accept, origin, content-type, authorization, Cache-Control, X-Requested-With, Intgrtn-Referer
Access-Control-Allow-Methods: POST, GET, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: tincidunt
PX-X-Request-Id: c5760aed8125df94625309b1f0acc2eb
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
|
|
| intelligent-money-offers.net/intgrtn/api/v1/integration/assets/img/eye-1a.png | 185.142.239.82 | 200 OK | 1.1 kB |
URL GET HTTP/1.1intelligent-money-offers.net/intgrtn/api/v1/integration/assets/img/eye-1a.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced Hashdd5e71f2dea6c26df18b158e5c3377e7 78a9fd5897690165b888c9db15c73f6fe3c7f452 9505ce3a2d95aa956775178ce80f3e0e89cc58c85906cd04bd1f8a6d6a5768e3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /intgrtn/api/v1/integration/assets/img/eye-1a.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/intgrtn/api/v1/integration/sdk.css?v=2.67.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 30 Jan 2024 09:28:49 GMT
Vary: Accept-Encoding
ETag: W/"65b8c151-42f"
Expires: Wed, 29 Jan 2025 12:49:10 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
X-Server: tincidunt
PX-X-Request-Id: dfe8fff2c301d525d8d1d54c84bc5347
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
PX-Cache-Status: HIT
|
|
| intelligent-money-offers.net/quantumai/trades/img/traders/64.jpg | 185.142.239.82 | 200 OK | 9.3 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/trades/img/traders/64.jpg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3 Hash7e753d7cd80bf265209c7b7e18e36652 86288789d5ca675ae13731ea5db4d6fc5b8fd205 8d9a61a581c43fe2088f221b7692c95db4b3ad5c0da0c856400c0e5acdcdcea8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/trades/img/traders/64.jpg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en; intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2; intgrtn_locale=en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: W/"66053405-24a2"
X-Upstream: stavri-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 68ced84d2257f0c09ed5ac4f2ec72d59
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/trades/img/traders/83.jpg | 185.142.239.82 | 200 OK | 4.5 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/trades/img/traders/83.jpg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3 Hash506de5d014987ee1345ead290543a06b 43ec3ced633aca7feb78294523b09b3c439f8d55 8825a6cab227d3c2508afc274dbe6afe3f9bb80e7335e54749dffaf666e0854b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/trades/img/traders/83.jpg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en; intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2; intgrtn_locale=en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: W/"66053405-12a3"
X-Upstream: stavri-***ko
PX-Cache-Status: STALE
X-Server: tincidunt
PX-X-Request-Id: 8010b69dd06f2064eece91b3e9117998
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| fonts.googleapis.com/css?family=Roboto:100,300,400,400i,500,700 | 216.58.207.234 | 200 OK | 7.2 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:100,300,400,400i,500,700 IP216.58.207.234:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash2cf9bee026bde419abaa24951d9b46b9 219f3c276da9799e4330ec7e1195ddfef34e2da4 c5eaf690719529ddf6b5d5351c540f671982c43ddc23cbcb29eeb6f4c6e2f043
GET /css?family=Roboto:100,300,400,400i,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 10:41:55 GMT
date: Thu, 25 Apr 2024 10:41:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| intelligent-money-offers.net/intgrtn/api/v1/integration/assets/img/flags32.png | 185.142.239.82 | 200 OK | 45 kB |
URL GET HTTP/1.1intelligent-money-offers.net/intgrtn/api/v1/integration/assets/img/flags32.png IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typePNG image data, 32 x 8352, 8-bit colormap, non-interlaced Hashd9783e9c947c7184442c2111424ec896 b6ba479c15af54364e09af6230239c9746a5deae 681c58beadf3030753d8d5bb7c85c5f631704a515a9da8fd7a3744be46e12419
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /intgrtn/api/v1/integration/assets/img/flags32.png HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/intgrtn/api/v1/integration/sdk.css?v=2.67.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 30 Jan 2024 09:28:49 GMT
Vary: Accept-Encoding
ETag: W/"65b8c151-afed"
Expires: Wed, 29 Jan 2025 12:49:10 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
X-Server: tincidunt
PX-X-Request-Id: ee988d0e67e4493d9911756815e625ee
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
PX-Cache-Status: HIT
|
|
| intelligent-money-offers.net/intgrtn/api/v1/projects/agreements.php?type=4&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2&locale=en-US | 185.142.239.82 | 200 OK | 1.8 kB |
URL GET HTTP/1.1intelligent-money-offers.net/intgrtn/api/v1/projects/agreements.php?type=4&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2&locale=en-US IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hash098aa58858831edd1d5364b914384463 65cc168d9040331d8569e5541c9ed1c63a5d65b7 971ce96ce97a003faf65cffab24f5855c22775d5d345bfb8b16e124a89de3be1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /intgrtn/api/v1/projects/agreements.php?type=4&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2&locale=en-US HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Intgrtn-Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:57 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: accept, origin, content-type, authorization, Cache-Control, X-Requested-With, Intgrtn-Referer
Access-Control-Allow-Methods: POST, GET, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: tincidunt
PX-X-Request-Id: 1a76dc83ea4ab90b5dcdb8eb81d3d885
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
|
|
| intelligent-money-offers.net/intgrtn/api/v1/projects/agreements.php?type=4&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2&locale=en-US | 185.142.239.82 | 200 OK | 1.8 kB |
URL GET HTTP/1.1intelligent-money-offers.net/intgrtn/api/v1/projects/agreements.php?type=4&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2&locale=en-US IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hashd7d71e1fb50c1f0b855d3a86f1ccdd43 2791c2002b26eee8391de6e68c66395ad36c8ee2 be81bc5537310514baf5d0920e8e47f0d147fafff21da2c425993a9ba01e5d68
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /intgrtn/api/v1/projects/agreements.php?type=4&clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2&locale=en-US HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Intgrtn-Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:57 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: accept, origin, content-type, authorization, Cache-Control, X-Requested-With, Intgrtn-Referer
Access-Control-Allow-Methods: POST, GET, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: tincidunt
PX-X-Request-Id: 4bdb9f5d32a42313a87861ddbc1a3973
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
|
|
| intelligent-money-offers.net/intgrtn/api/v1/events/add.php | 185.142.239.82 | 200 OK | 163 B |
URL POST HTTP/1.1intelligent-money-offers.net/intgrtn/api/v1/events/add.php IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hashcc139f6a69b7e758cd3f69e17902e4db ffea4767c6bd894f3da80d30d848d282257239b2 8133841643b8f4c9ade47169c07586f9751dc1da1b825572cbae2429f60a7cd0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /intgrtn/api/v1/events/add.php HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Intgrtn-Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Content-Length: 638
Origin: https://intelligent-money-offers.net
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:57 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://intelligent-money-offers.net
Access-Control-Allow-Headers: accept, origin, content-type, authorization, Cache-Control, X-Requested-With, Intgrtn-Referer
Access-Control-Allow-Methods: POST, GET, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
X-Server: tincidunt
PX-X-Request-Id: 430c2f34cdd8bdf84ece969e647d8909
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
|
|
| intelligent-money-offers.net/favicon.ico | 185.142.239.82 | 404 Not Found | 106 B |
URL GET HTTP/1.1intelligent-money-offers.net/favicon.ico IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 25 Apr 2024 10:41:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=63072000
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/trades/img/traders/23.jpg | 185.142.239.82 | 200 OK | 5.6 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/trades/img/traders/23.jpg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3 Hash2136092e94ae6a3ddfa8780d65058c27 1f3b37adc61b802fb704cbd1202bafeb55b9e91d ca627d33f20754d25814a1d622a9f4837d56d5809c6fa7c14f2f2be7e3f36a05
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/trades/img/traders/23.jpg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en; intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2; intgrtn_locale=en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:42:06 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: W/"66053405-15ef"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 37c45bf94762255356a9d76de2e1bf4d
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/trades/img/traders/73.jpg | 185.142.239.82 | 200 OK | 5.4 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/trades/img/traders/73.jpg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3 Hash23f7f49eef5cd72f63f989044f5ef221 9314549a17aa2ad47f6082d01b94b88ee74fd8e4 88445d944fdf0bc52a4f79ddf5cffde16e42eec01bdd3e32ab6234cef44411b3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/trades/img/traders/73.jpg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en; intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2; intgrtn_locale=en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:42:15 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: W/"66053405-164d"
X-Upstream: evlampi-***ko
PX-Cache-Status: STALE
X-Server: tincidunt
PX-X-Request-Id: be554c373b664095604be34b4375df34
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|
| intelligent-money-offers.net/quantumai/media/1718066316.mp4 | 0.0.0.0 | | 0 B |
URL GET intelligent-money-offers.net/quantumai/media/1718066316.mp4 IP0.0.0.0:0
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/media/1718066316.mp4 HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en; intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: video/mp4
Content-Length: 28969271
Connection: keep-alive
Last-Modified: Tue, 15 Mar 2022 09:31:32 GMT
ETag: "62305cf4-1ba0937"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 66b2be9307fe2c0d3bb4925963a3c71c
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041462 1714039961
Content-Range: bytes 0-28969270/28969271
|
|
| intelligent-money-offers.net/quantumai/trades/img/traders/31.jpg | 185.142.239.82 | 200 OK | 6.4 kB |
URL GET HTTP/1.1intelligent-money-offers.net/quantumai/trades/img/traders/31.jpg IP185.142.239.82:443
Requested byhttps://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2 CertificateIssuerLet's Encrypt Subjectintelligent-money-offers.net FingerprintD4:CD:C3:A3:CF:34:5E:C0:E0:62:31:CC:91:8A:84:64:A6:8D:33:FA ValiditySat, 23 Mar 2024 02:36:10 GMT - Fri, 21 Jun 2024 02:36:09 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 128x128, components 3 Hash36236f25631fb18a4931836b4446d686 5469f02932d8e06ea11bc3898032699476c6550f ab391f0ae1611fc32c31fbe5663bde5bba7a80efa851ceeec4b58eeab6931f4a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /quantumai/trades/img/traders/31.jpg HTTP/1.1
Host: intelligent-money-offers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://intelligent-money-offers.net/quantumai/en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2
Cookie: intgrtn_language=en; intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2en/index.php?intgrtn_clickID=bg49ZG0xrJekl76MV5LzXYGaMdPbNYa1QKDRnOoyAqBvdmpj2; intgrtn_locale=en-US
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 10:41:56 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 28 Mar 2024 09:10:29 GMT
ETag: W/"66053405-18ec"
X-Upstream: evlampi-***ko
PX-Cache-Status: HIT
X-Server: tincidunt
PX-X-Request-Id: 9a991e8612035e74b2c51d90751af280
PX-IPCountryISO: NO
PX-IPTimestamp: 1713876360 1714041461 1714039961
Content-Encoding: gzip
|
|