Report Overview

  1. Submitted URL

    megaup.net/1cojf/Formula_Americas.rar

  2. IP

    91.209.70.182

    ASN

    #43317 FNK LLC

  3. Submitted

    2023-05-08 20:26:15

    Access

    public

  4. Website Title

  5. Final URL

  6. urlquery detections

    Suspicious - Suspicious Javascript code

Detections

  1. urlquery

    7

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    22

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
platform.bidgear.com303672011-08-302016-07-272023-05-08
a.exdynsrv.com406632015-10-202019-05-212023-05-08
imp9.bidgear.com340782011-08-302021-03-152023-05-08
static.a-ads.com348272012-07-072013-06-012023-05-08
cdn.prplads.comunknown2023-02-192023-02-202023-05-08
prebid.a-mo.net11482017-09-082020-07-142023-05-08
megaup.net1790522004-06-242017-09-012023-05-08
www.googletagmanager.com752011-11-112013-05-222023-05-08
ocsp.pki.goog1752016-06-132018-07-012023-05-08
lementwrencespri.infounknown2023-04-032023-04-042023-05-08
xml.serve-servee.comunknown2022-02-152022-06-182023-05-08
dmmzkfd82wayn.cloudfront.netunknown2008-04-252021-03-182023-05-08
keydawnawe.com5866902020-10-082020-10-082023-05-08
parrecleftne.xyzunknown2022-11-182022-12-182023-05-08
theharityhild.buzzunknown2022-09-192022-10-202023-05-08
ocsp.sectigo.com4872018-08-162019-11-292023-05-08
cdn.purpleads.io1858172020-01-292020-02-182023-05-08
ocsp.r2m02.amazontrust.comunknown2007-05-112022-10-122023-05-08
accounts.google.com811997-09-152016-03-202023-05-08
pogothere.xyzunknown2022-08-222022-09-042023-05-08
mp.4dex.io26292018-04-022019-01-032023-05-08
static.serve-servee.comunknown2022-02-152022-06-182023-05-08
uldthinkhimunpr.infounknown2023-04-022023-05-052023-05-08
ad.a-ads.com269702012-07-072013-04-192023-05-08
api.purpleads.io1460372020-01-292020-02-182023-05-08
script.4dex.io21352018-04-022018-07-232023-05-08
nativiser-prebid.smart-hub.iounknown2020-05-192022-12-142023-05-08
altowriestwispy.com9519132021-02-242021-02-242023-05-08
syndication.exdynsrv.com342432015-10-202016-04-202023-05-08
ocsp.godaddy.com6981999-03-022012-05-202023-05-08
s3t3d2y8.afcdn.netunknown2022-06-272022-08-092023-05-08

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info

ThreatFox

No alerts detected


JavaScript (61)

HTTP Transactions (141)

URLIPResponseSize
ocsp.sectigo.com/
172.64.155.188 471 B
dmmzkfd82wayn.cloudfront.net/?kzmmd=761186
54.230.245.58200 OK189 kB
megaup.net/themes/flow/images/main_logo_inverted.png
91.209.70.182200 OK7.1 kB
megaup.net/themes/flow/images/loading_small.gif
91.209.70.182200 OK184 kB
ocsp.pki.goog/gts1c3
142.250.74.35 472 B
www.googletagmanager.com/gtag/js?id=UA-108868042-1
142.250.74.168200 OK46 kB
keydawnawe.com/gwZ1U5hjA8ii/32575
172.255.6.251200 OK26 B
altowriestwispy.com/tysaSHG1FMaM/18410
172.255.6.251200 OK25 B
ocsp.pki.goog/gts1c3
142.250.74.35 472 B
megaup.net/themes/flow/frontend_assets/fonts/raleway.woff
91.209.70.182200 OK32 kB
megaup.net/themes/flow/frontend_assets/js/animation/jquery.appear.js
91.209.70.182200 OK32 kB
megaup.net/themes/flow/frontend_assets/rs-plugin/js/jquery.themepunch.revolution.js
91.209.70.182200 OK71 kB
megaup.net/themes/flow/frontend_assets/socialsider-v1.0/_fonts/socicon-webfont.woff
91.209.70.182200 OK21 kB
megaup.net/imageads/019.png
91.209.70.182200 OK163 kB
uldthinkhimunpr.info/NEVxdlQbehIFaWMCQAYaWB8WLmVDACsbPGEdIBIhVSlIFRVzDFcCPVB4RkBlBX1HUCRdIUxHckcxEAIhR3hAUD1aIx5LckJ4QFhnAGtCRHoGYwRLZRIxARczCXRXBiBAKUxHYgx2REFjAXBHR2UB
104.21.65.245204 No Content0 B
megaup.net/themes/flow/frontend_assets/css/bootstrap/bootstrap.min.css
91.209.70.182200 OK19 kB
megaup.net/themes/flow/frontend_assets/rs-plugin/css/settings.css
91.209.70.182200 OK8.8 kB
megaup.net/themes/flow/frontend_assets/js/isotope/custom-isotope.js
91.209.70.182200 OK1.8 kB
megaup.net/themes/flow/frontend_assets/js/SmoothScroll/SmoothScroll.js
91.209.70.182200 OK2.3 kB
megaup.net/themes/flow/frontend_assets/css/fonts.css
91.209.70.182200 OK1.5 kB
uldthinkhimunpr.info/SGN2YnFnXBURTCoIP1Y/HSUSARYnIRVTSHoiNyBAHysFMjAABFAWGCxeTlBEcVJHRAEhB0tRQ24QAgMFPRBLU1chDRANTG4VS1JfcU1HTERuFktTVzwTFwVMeUUGFgUkXkdUSXtWQVVEfVVHUUM
104.21.65.245204 No Content0 B
uldthinkhimunpr.info/dklEUE5ZdicjcyUNFiYYDCVzEghHIwdjJTcfdhkAEC51CRcRCGIkJxJ0fGJ7T3h1dj4fLXljfFA6MDE6Azp5Yn5GfmI5IBAmeWJoAHR0fndYeGplaAN0dXY6BigjbX9QOTAkIkt4cmh9Q35zZXtAeHdl
104.21.65.245204 No Content0 B
lementwrencespri.info/VlROWFM3Ni01bDdpLH4mJDhzfWEQcXweNzs5NDM1Mmx8LzIvOmA7PzkhKj4hOTo6dj0zIGtqFRIaNA5lNQAqDQQ+BRYbFhg3BjMkGRU5IBAEIwMKCyE/Kw8GNR0DDCcUBg8JEh0BBBYGZyMIDAUbHR00NzQCIis3AhYICwQuOAMaOxABBjAeHRU2FQMTFT45BDEVFw9iIgEWaB0uFSYsGAAVGxAbBx4PGjsfEwEeAhAWfzMHHmQECBYTPAwMJG4QBA0wEhEpAWcAFRsQASEsGxobDxEdMzQMFjYgNQcjKgkGFD8vDxEfHB4dHh4WKQ4YBxUtHxYTeSYaBgBhBhArMg0aIBEfGjkBFBQSHBoWAx0HCyRwPj03PSZpBRIlJWU0ACYsMg
54.230.111.81200 OK1.2 kB
megaup.net/themes/flow/frontend_assets/js/sticky/jquery.sticky.js
91.209.70.182200 OK1.4 kB
lementwrencespri.info/Z29GcHQGDSUdSwZSJFYBFQN7VUYhSnQ2EAoCPBsSA1d0BxUeAWgTGAgaIhYGCAEyXhoCG2NCMjIgEQgDKTcqETUfWhIiH1cpADEcKCt3GDYmOiEWNgAhJzZECz0HNxcXKwVJMwQGCDs8DV8SNCEqJhIhIgE5F0ARMgQXFjc1WhEiNQ8kAyYxBS0AGCM2PionNldeIDYyFDUEJhsqOwcDNyIYPikhNV4nMUUmLg42JgQsPwAyIF8tEywMLiIxJQ8LECEtUCcARTUwPQQoMzYIFyMDDDoVMTkKK3cYIiUFNRMsDC0ONAwfCQshJi0uAzo1LykxPCwlQiIhMwsmAiYlBEp0NjdWFwQyIQwmHjUxNjwxGz8gOiUTLBAiDzUxE0p0NiwyKgMmAwskBCEcLkksAxsJH3sAJjdaBUYzPRw0PQ
54.230.111.81200 OK1.2 kB
platform.bidgear.com/async.php?domainid=5593&sizeid=12&zoneid=6192&k=1683577556209
104.26.2.107200 OK2.7 kB
ocsp.sectigo.com/
172.64.155.188 282 B
megaup.net/themes/flow/frontend_assets/socialsider-v1.0/_css/socialsider-v1.0.css
91.209.70.182200 OK4.7 kB
cdn.purpleads.io/agent.js?publisherId=70f4c4ca797b70742cf152daf589f184:5f7ccce17707939b2685f0f8203bd1c265e05e479bbfcec98eda491d5ef6d2861ecfe05a883293e58ee42e74b0a74acb04a21203cd5fc2e8d8ec9e7b994f7655
143.204.55.44200 OK22 kB
a.exdynsrv.com/ad-provider.js
205.185.216.42200 OK29 kB
imp9.bidgear.com/rec?t=1&z=6192&uuid=dd84b75335c6425f9da3e5fc3cf4f79c&p=28&g=NO&token=4a44335432&tbg=1683577556
104.26.2.107200 OK599 B
dmmzkfd82wayn.cloudfront.net/BT0QwY1QsK14FazstVF5jeXUBW2JpLkMMOj95eTcaNz16BR0tBUVFIDUgDVNyIyVeBGlpIV4AaX5iUQc2cnAWFyQgLw0JOS0xRQwhOiNCRSEueV0MLiYoXAJxfQIFTWRqdgBLLH51FVAWanYADz0hMUhGZn88CFULeXAVUBZqdgARImp3cVJkdmoASnF9dF-cGNyQrFVESfXQBU2R+dAFGZn8iWRExKStIRmYJdQFSen9iRV5l
54.230.245.58 619 B
dmmzkfd82wayn.cloudfront.net/
54.230.245.58200 OK73 B
syndication.exdynsrv.com/v1/api.php
95.211.229.245200 OK883 B
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B
dmmzkfd82wayn.cloudfront.net/ZSVV1S1IqOhstbT08EXZqe2BMemNvPwYkPDloDxphOQ8MemUHcwExNnRlUyczJzJIbTcnNkh6dCgxF3ZmbyEFJDl0IBsvNy88Gy42byAUdj8mLxwnPihwRw1nZ2VQeWJhLUR6d3oXUHliJTwbPipsZ0Uzan8KQ393ehdQeWI7I1B4E3hlTGViYHBHezUsNh-4kd3sTR3tjeWVEe2NsZ0UtOzswEyQqbGczemN4e0VtJ3Rk
54.230.245.58200 OK374 B
dmmzkfd82wayn.cloudfront.net/zaHR1NUYLGxtTeRwdEQh+X0JGBH5OHgZaKBhJBU0NITktA3EZQxZ8cBFCIBMyEhBIBWAEFRtSe04RG1Z7WVIUUSRVQFNBNgcfSF8rCgEAWjMdEwcTMwlJGFo8ARgZVGNaMkAbdk1GRR0+WUVQBgRNRkVZLwYBDRB0WAxNAxleQFAGBE1GRUcwTUc0BHZRWk-UcY1pEElAlAxtQBwBaREQFdllERBB0WBIcRyMOGw0QdC5FRARoWFIACHc
54.230.245.58 461 B
megaup.net/themes/flow/frontend_assets/images/icons/favicon/apple-touch-icon-114x114.png
91.209.70.182200 OK951 B
dmmzkfd82wayn.cloudfront.net/UOWxwNXlaAx5TRk0FFAhOD1hBAUgfBgNaF0lRAGcpDC9GciNKHj0TDUMITQVfVQ0eUkQfCR5WRAhKEVEbBFhWQQlWB01fFFsZBVoMTAsCEwxYUR1aA1AAHFRcCypFG0kcXkAdAQhdVQY7HF5AWRBXGQgQSwkUSAMmD1hVBjscXkBHDxxfMQRJAEJAHFwLXB-dQGlIDVQc/C1xBBUkIXEEQSwkKGUccXwMIEEt/XUEEVwlKBQhI
54.230.245.58 618 B
megaup.net/themes/flow/frontend_assets/css/responsive.css
91.209.70.182200 OK1.3 kB
ocsp.pki.goog/gts1c3
142.250.74.35 471 B
static.a-ads.com/a-ads-banners/450786/300x250?region=eu-central-1
148.251.13.139200 OK132 kB
ocsp.pki.goog/gts1c3
142.250.74.35 471 B
lementwrencespri.info/utx?cb=iVhZvNT4bK4s&top=megaup.net&tid=825911
54.230.111.81204 No Content0 B
lementwrencespri.info/utx?cb=6z4o0CG2lCIi&top=megaup.net&tid=761186
54.230.111.81204 No Content0 B
parrecleftne.xyz/utx?tid=832633&top=megaup.net&cb=ctUKdy0yTeEc
54.230.111.9204 No Content0 B
lementwrencespri.info/utx?cb=V2eEEKUrlyB1&top=megaup.net&tid=876318
54.230.111.81204 No Content0 B
lementwrencespri.info/utx?cb=5RczlZlMPdFN&top=megaup.net&tid=764141
54.230.111.81204 No Content0 B
ocsp.pki.goog/gts1c3
142.250.74.35 472 B
uldthinkhimunpr.info/ckR1dHZdexYHSycMP0cUQjAfJR0kJhAjMDUQRARTQAIvHwIzExs9UAYtEUlOQHFMRUdUNBwQS0F2UwcCEzAAB0tAdEVDUBsqExtLQGIDSUZcfVtFWEdiAElHVDAFFRFPdVMEAgYoSEVASndAQ0FHcUJEQEU
104.21.65.245204 No Content0 B
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=Af_xneF97dnNGNzw-r9Aor-0dOVtGh-VuTOXJCPg9WtSYvW-fFY4eSGdIZAUo3HgyZsdZd85Rg6-
142.250.74.109302 Found396 B
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=Af_xneENp1Va8mKW4_julUWwp1OOfmUPneyGxIxDKdSI3J8LaZHbQqFgkLGGpy9cRR_VcNhLPJRwCA
142.250.74.109302 Found398 B
lementwrencespri.info/multi?cs=N3RKYmcDRnxRXg9Ce1NSDkJ6VFE&abt=0&red=1&sm=76&k=download%20file%20formula%20americas&v=1.0.60.3&sts=0&prn=0&emb=0&tid=876318&rxy=1280_1024&fs=1&ref=https%3A%2F%2Fmegaup.net%2F1cojf%2FFormula_Americas.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0&tzd=0&uloc=&if=0&_MZLZ=1683577557071&crc=1
54.230.111.81200 OK1.6 kB
api.purpleads.io/x/init?ts=1683577556743
3.229.139.30200 OK87 B
accounts.google.com/v3/signin/identifier?dsh=S218985154%3A1683577557371110&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=Af_xneH9yNjVR5lcIvKDK_1J_uB6Yj0GGvv2_JZ8zl2XDuwvU4Nyal_40R69E-MyJZF6ndiusD5jdA&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin
142.250.74.109403 Forbidden32 kB
pogothere.xyz/asd100.bin
172.64.107.19200 OK102 kB
pogothere.xyz/
172.64.107.19200 OK83 kB
lementwrencespri.info/floater?cs=cXl3dDlCSUVAC0BNT0ENR0BAQQA&abt=0&red=1&sm=83&k=download%20file%20formula%20americas&v=0.9.1.5&sts=0&prn=0&emb=0&tid=825911&rxy=1280_1024&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&ref=https%3A%2F%2Fmegaup.net%2F1cojf%2FFormula_Americas.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0&tzd=0&uloc=&if=0&aa=oi1_&_EBnr=1683577557069&crc=1
54.230.111.81200 OK2.0 kB
uldthinkhimunpr.info/SlZzZFplaRAXZwcQKVANHTU7Ph9/JCYTFCcFHgw/CREpNDsMblUQMy5rRFJue2JCQiojMk5VfDkiEhAvOWtAVGp7cBoKPCVrQ1Rqe3AFWWtkZUdKaXh4QUIvd2FDUmhzZUtWbn9iS11jeHAHFDsta0JCKj4iH1lrfG5AUW19Y0ZTbHhk
104.21.65.245204 No Content0 B
cdn.prplads.com/agent.js?publisherId=70f4c4ca797b70742cf152daf589f184:5f7ccce17707939b2685f0f8203bd1c265e05e479bbfcec98eda491d5ef6d2861ecfe05a883293e58ee42e74b0a74acb04a21203cd5fc2e8d8ec9e7b994f7655
104.26.3.51200 OK21 kB
mp.4dex.io/prebid
104.18.3.114204 No Content0 B
script.4dex.io/adagio.js
104.26.9.169200 OK23 kB
prebid.a-mo.net/a/c
147.75.84.158204 No Content0 B
api.purpleads.io/x/init?ts=1683577557797
3.229.139.30200 OK87 B
ocsp.godaddy.com/
192.124.249.22 1.8 kB
nativiser-prebid.smart-hub.io/pbjs
8.2.109.53200 OK2 B
script.4dex.io/localstore.js
104.26.9.169200 OK268 B
prebid.a-mo.net/a/c
147.75.84.158204 No Content0 B
mp.4dex.io/prebid
104.18.3.114204 No Content0 B
script.4dex.io/adagio.js
104.26.9.169200 OK23 kB
nativiser-prebid.smart-hub.io/pbjs
8.2.109.53200 OK2 B
api.purpleads.io/x/v2/b/?idx=1&pid=5c68484a821d47dcb7c63c59b44a9e03&sizes=[[300,250]]&slotid=ea0126c7-eb68-4327-b49e-13867bdecbcb&demand=unifiedPb&ts=1683577558564
3.229.139.30200 OK0 B
api.purpleads.io/x/v2/b/?idx=1&pid=5c68484a821d47dcb7c63c59b44a9e03&sizes=[[970,90],[728,90],[468,60],[320,100],[320,50],[300,100]]&slotid=62a3db52-0b7d-452d-a060-b93c3cd5cd4a&demand=unifiedPb&ts=1683577558641
3.229.139.30204 No Content0 B
uldthinkhimunpr.info/NjZ4YlIZCRsRb1JxIg8wY1IwND5kbBw3BGVuFAooZ1pBMAV+Al4WO1ILQFBnDwdJRCJfUkVRYBBFDAMmQ0VFUGIGA14LPFBZRVBiBgBIUmMFBF1VEV5CDBIhEwU5R2BwE0okKltaVhE3REAdTyFTRA4HNxhVFw93BHAMCidbVBYDO1oTSyQ7EwU8EgpHQkgAZHlHLzsNBhNKVCITBTxTZA4FTVVlAwNPTGAEBkBTZxMETgs/UUJdURZfVRcMdwF1SVJnBwdIUQ0DAUFaZQMHXVURAgNAVmMFDktTagAHSFFqDgNJW3RAC0hMaxgHVld0QwtPUmQED0taYAIDTFprDwReFiJXUUVTdEZCDA5vBwBAUWcBAU1XawEETw
104.21.65.245204 No Content0 B
cdn.prplads.com/prebid-2023-05-04.js
104.26.3.51200 OK101 kB
static.serve-servee.com/n337/ad/192x192_hpbo3YohsfFJjjTRWsB9.jpeg
172.64.131.18200 OK6.4 kB
prebid.a-mo.net/isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid=
147.75.84.158204 No Content0 B
prebid.a-mo.net/isyn?gdpr_consent=&gdpr=0&us_privacy=&gpp=&gpp_sid=
147.75.84.158204 No Content0 B