Report Overview

  1. Submitted URL

    megaup.net/29tg7/TLOZ-BOTW-(RF)-NSwTcH-NSP-Ziperto.part1.rar

  2. IP

    91.209.70.182

    ASN

    #43317 FNK LLC

  3. Submitted

    2023-05-08 22:44:52

    Access

    public

  4. Website Title

  5. Final URL

  6. urlquery detections

    Suspicious - Suspicious Javascript code

Detections

  1. urlquery

    7

  2. Network Intrusion Detection

    0

  3. Threat Detection Systems

    20

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
uldthinkhimunpr.infounknown2023-04-022023-05-052023-05-08
lementwrencespri.infounknown2023-04-032023-04-042023-05-08
accounts.google.com811997-09-152016-03-202023-05-08
static.serve-servee.comunknown2022-02-152022-06-182023-05-08
pogothere.xyzunknown2022-08-222022-09-042023-05-08
keydawnawe.com5866902020-10-082020-10-082023-05-08
hw-cdn2.adtng.com119172018-07-202020-02-202023-05-08
theharityhild.buzzunknown2022-09-192022-10-202023-05-08
www.googletagmanager.com752011-11-112013-05-222023-05-08
syndication.exdynsrv.com342432015-10-202016-04-202023-05-08
ocsp.godaddy.com6981999-03-022012-05-202023-05-08
dmmzkfd82wayn.cloudfront.netunknown2008-04-252021-03-182023-05-08
megaup.net1790522004-06-242017-09-012023-05-08
a.exdynsrv.com406632015-10-202019-05-212023-05-08
static.a-ads.com348272012-07-072013-06-012023-05-08
prebid.a-mo.net11482017-09-082020-07-142023-05-08
xml.serve-servee.comunknown2022-02-152022-06-182023-05-08
imp9.bidgear.com340782011-08-302021-03-152023-05-08
ad.a-ads.com269702012-07-072013-04-192023-05-08
ocsp.sectigo.com4872018-08-162019-11-292023-05-08
cdn.purpleads.io1858172020-01-292020-02-182023-05-08
mp.4dex.io26292018-04-022019-01-032023-05-08
script.4dex.io21352018-04-022018-07-232023-05-08
a.adtng.com151652018-07-202018-07-262023-05-08
parrecleftne.xyzunknown2022-11-182022-12-182023-05-08
altowriestwispy.com9519132021-02-242021-02-242023-05-08
platform.bidgear.com303672011-08-302016-07-272023-05-08
ocsp.pki.goog1752016-06-132018-07-012023-05-08
api.purpleads.io1460372020-01-292020-02-182023-05-08
hw-cdn2.ang-content.com1656512018-11-152019-03-252023-05-08
cdn.prplads.comunknown2023-02-192023-02-202023-05-08
nativiser-prebid.smart-hub.iounknown2020-05-192022-12-142023-05-08

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter

No alerts detected


mnemonic secure dns

No alerts detected


Quad9 DNS
SeverityIndicatorAlert
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info
mediumuldthinkhimunpr.info

ThreatFox

No alerts detected


JavaScript (66)

HTTP Transactions (149)

URLIPResponseSize
ocsp.sectigo.com/
104.18.32.68 471 B
dmmzkfd82wayn.cloudfront.net/?kzmmd=761186
54.230.245.161200 OK189 kB
megaup.net/themes/flow/images/main_logo_inverted.png
91.209.70.182200 OK7.1 kB
megaup.net/themes/flow/images/loading_small.gif
91.209.70.182200 OK184 kB
megaup.net/themes/flow/js/jquery.fileupload.js
91.209.70.182200 OK13 kB
megaup.net/themes/flow/js/jquery.fileupload-process.js
91.209.70.182200 OK2.0 kB
www.googletagmanager.com/gtag/js?id=UA-108868042-1
142.250.74.168200 OK46 kB
keydawnawe.com/gwZ1U5hjA8ii/32575
172.255.6.251200 OK26 B
altowriestwispy.com/tysaSHG1FMaM/18410
172.255.6.251200 OK25 B
megaup.net/themes/flow/js/jquery.fileupload-validate.js
91.209.70.182200 OK6.3 kB
megaup.net/themes/flow/frontend_assets/rs-plugin/js/jquery.themepunch.revolution.js
91.209.70.182200 OK71 kB
megaup.net/themes/flow/frontend_assets/fonts/raleway_extrabold.woff
91.209.70.182200 OK31 kB
megaup.net/themes/flow/frontend_assets/fonts/raleway_semibold.woff
91.209.70.182200 OK32 kB
megaup.net/themes/flow/frontend_assets/rs-plugin/js/jquery.themepunch.plugins.min.js
91.209.70.182200 OK51 kB
uldthinkhimunpr.info/TGxGSE9jUyU7cigHIhItICYALCJ9CRx4K3wOACQkHV8iPBh+D2A8JihRfn95f11+bj8lCHt6dmofMik7OR97eWklAiAncmoae3lhfEJweGF/SjN1fmoYNikocV1gODs4AHt5eXRfc3B6dFt3cX58
172.67.195.204204 No Content0 B
megaup.net/themes/flow/frontend_assets/js/SmoothScroll/SmoothScroll.js
91.209.70.182200 OK144 kB
megaup.net/themes/flow/js/jquery.fileupload-ui.js
91.209.70.182200 OK9.0 kB
uldthinkhimunpr.info/Q1VjTHdsagA/ShkDNXgjc2QxFjIrYgUKMS4BDXVAFWctBhIbBEU4HidoVHpGcm1VagcqMV59UTAhAjgCMGhSah4tMwxxUTVoUmJEd3tQfllxcxZxRmUhEy0QfmRFPAM3OV59QXtmVnRCe2JSdE93
172.67.195.204204 No Content0 B
megaup.net/themes/flow/js/jquery.iframe-transport.js
91.209.70.182200 OK3.2 kB
uldthinkhimunpr.info/WVVUN0h2ajdEdQACPHktNRMObxApGg4GIAszP3kjD2QkAxtrDHJDIT1obQNxYWNgETgwMWkGcH8mIFY8LCZpBm4wOzJYdX8jaQZmaXtmGXt/IGkGbi0lNVB1aHMkQzw1aGUBcGpgbAJwbmRtBX8
172.67.195.204204 No Content0 B
megaup.net/themes/flow/frontend_assets/css/fonts.css
91.209.70.182200 OK1.5 kB
megaup.net/themes/flow/js/jquery.fileupload-resize.js
91.209.70.182200 OK2.1 kB
lementwrencespri.info/VktnaVM3KQQEbDd2BU8mJCdaTGEQblUvNzsmHQI1MnNVHjIvJUkKPzk+Aw8hOSUTRz0zP0JbFWAqCwUjMh4uIx0xKDMPAWI8Izw7YBMwUDIEAxckHi4kBiURJiA3AWcSHDRdORkKCD0QPAUzJzsXcjEsBT0JDQ4bEyVeJAMXKDAPYiJuVS8QFA4AP2FnGyY9GhAGCzgEGgoMTGEQDyUsPhEfBCYGLCgrMxIHKigoHmcJNTs9AQleCgRlATcIYjovKAUnOR8iMBICeRMzFAU4IiUREBoELzw+HjIkNw4MViQBMQk3CGI9AyksaicAIjsqA3gDMwsRLz4IAnt/NiACE3kzLDATHCAFCgQTLQsyACM2ChU5blUvEhcoCS0XDxkyIRIlKiEBFjQNF0xhEAMiASlwIRQGPSZ2MAISZTwtJBsvGD0
108.157.229.68200 OK1.2 kB
megaup.net/themes/flow/frontend_assets/js/retina/retina.js
91.209.70.182200 OK1.8 kB
lementwrencespri.info/Q0E3RG4iI1QpUSJ8VWIbMS0KYVwFZAUCCi4sTS8IJ3kFMw86LxknAiw0UyIcLC9DagAmNRJ2KHYMcDQhFxd1ECwQAEUmXhIFfCosLQNbMEtxB1MTNxQAc3QHEyp1HCQAKmESOjQZfCkKCREELxwnKmYVJS0DUAIJGjd+Pg0NFXQ3BA42BiYPADYHEQInd1Y9PAIDZBIZDnADDiUAJgcSLCgmfCo0BQIECQkTcVgAJyoETwI4JAhSDFoCFQQ8VyYEXyYIcSldJwV6eVEQFhkDczdfJxB9JSAtF1omXzt3VgMgOhUEPFcKKm0UCBI5XwUoDSZRHAUVFn9pWjIPYQksChZfLQovKRJ2LCUGdgU5cHQPID8JIHwHPyoXZjMGDRliByILeA8dPHYgVgAGNwBmYgQwLlk0UyklciE4GiYAPTt0Jw
108.157.229.68200 OK1.2 kB
megaup.net/themes/flow/js/zeroClipboard/ZeroClipboard.js
91.209.70.182200 OK5.2 kB
megaup.net/themes/flow/frontend_assets/js/isotope/custom-isotope.js
91.209.70.182200 OK1.2 kB
platform.bidgear.com/media/img/b15.png
172.67.74.36200 OK649 B
cdn.purpleads.io/agent.js?publisherId=70f4c4ca797b70742cf152daf589f184:5f7ccce17707939b2685f0f8203bd1c265e05e479bbfcec98eda491d5ef6d2861ecfe05a883293e58ee42e74b0a74acb04a21203cd5fc2e8d8ec9e7b994f7655
143.204.55.49200 OK22 kB
a.exdynsrv.com/ad-provider.js
205.185.216.42200 OK29 kB
megaup.net/themes/flow/frontend_assets/js/animation/jquery.appear.js
91.209.70.182200 OK3.5 kB
ocsp.sectigo.com/
104.18.32.68 282 B
dmmzkfd82wayn.cloudfront.net/
54.230.245.161200 OK73 B
megaup.net/themes/flow/frontend_assets/css/responsive.css
91.209.70.182200 OK1.9 kB
megaup.net/themes/flow/frontend_assets/images/icons/favicon/apple-touch-icon-114x114.png
91.209.70.182200 OK951 B
dmmzkfd82wayn.cloudfront.net/JeG1vOHEbAgFeTgwECwVITFRXDkVeBxxXHwhQBHFFLSQCTRZKOSIeBQIJUghXFAwBX0xeCAFbTElLDlwTRVlJTRBFAABCGBQBDh1DPlhBCFRKXUdAQElIXHpUSl0DUR8NFUoKQQBVWWdHTEhcelRKXR1OVEssXghIVl1GHUNICgpbGhdIXX5DSFxfCEBIXE-oKQR4EHV0XFxVKCjdJXF4WQV4YUgk
54.230.245.161 194 B
megaup.net/themes/flow/frontend_assets/css/colors/flow.css
91.209.70.182200 OK1.2 kB
dmmzkfd82wayn.cloudfront.net/fRmJUaDIlDToODTILMFUKdFdtWQNgCCcHXDZfN1lEJzg5XEd0LDEkXjBaB05GPAZpWBQqAzoPD2AHOgsPd0Q1DFB7VnIcQikJaR1cIgcyAVwjBnIdU3sPOxJbKg41TQAAV3pYF3RSfBADd0dnKhd0UjgBXDMacVoCPlpiNwRyR2cqF3RSJh4XdSNlWAtoUn-1NAHYFMQtZKUdmLgB2U2RYA3ZTcVoCIAsmDVQpGnFadHdTZUYCYBdpWQ
54.230.245.161200 OK383 B
dmmzkfd82wayn.cloudfront.net/6allpdUIJNgcTfR4wDUh6XW9aRHpMMxoaLBpkPh4DWS4jOAoTCjNTNhA9VEVkBjgHEn9MPAcWf1t/CBEgV21PATIFMlQWLAk/DBEmGTcOUzcLZAQaOAM1BRRnWB9cW3JPa1ldOltoTEYAT2tZGSsELBFQcFohUUMdXG1MRgBPa1kHNE9qKERyU3dZXGdYaQ-4QIQE2TEcEWGlYRXJbaVhQcFo/AAcnDDYRUHAsaFhEbFp/HEhz
54.230.245.161 459 B
megaup.net/themes/flow/frontend_assets/css/custom.css
91.209.70.182200 OK4.0 kB
ocsp.pki.goog/gts1c3
142.250.74.131 471 B
ocsp.pki.goog/gts1c3
142.250.74.131 471 B
megaup.net/themes/flow/frontend_assets/socialsider-v1.0/_css/socialsider-v1.0.css
91.209.70.182200 OK4.0 kB
lementwrencespri.info/utx?cb=p68S2CaMrkq9&top=megaup.net&tid=825911
108.157.229.68204 No Content0 B
lementwrencespri.info/utx?cb=l3n17konKEh3&top=megaup.net&tid=761186
108.157.229.68204 No Content0 B
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01PW0oDQRC8ihfI0o/q2Z58+62geICZZNcvg2CECHV4JxsJdtHQj+qi2sR8J7GTfNDcA3s3Vp2qTLBJA3x6fiGUH8t7+/6cTsuZrrWYsNQqSFZHWiFQoFkYqoTVEjOIzFkFQg06ZcDCgWs1iQhmCUjxDJ/hTOHb6+OWOmB0kYvFuN48UMWI0cjlqoRDtdKir81KxILAUVu6Lb1mcTlcif9Nyw2TqMem/jcY38ANxp3eG3CEcFu3r5/TgbzTb4i7gHJYWZesrcw9e49Vj3Oz4+roS+0Nvf0CEzBJv2MBAAA=
95.211.229.246200 OK20 B
static.a-ads.com/a-ads-banners/452392/300x250?region=eu-central-1
148.251.233.147200 OK51 kB
uldthinkhimunpr.info/bFVDVVRDaiAmaQ45CRsCOBMbDwxZIQFkJAUwBAwQOwIBbQ49BGUhPQhoe2dhVWRycyQFMX5mZkomNzQgGSZ+Z2RcYmU8Ogo6fmdyGmhze21CZG1gchlocnMgHDQkaGVKJTchOFFkdW1nWW12bWNeYndm
172.67.195.204204 No Content0 B
ocsp.pki.goog/gts1c3
142.250.74.131 472 B
megaup.net/themes/flow/js/jquery.dataTables.min.js
91.209.70.182200 OK20 kB
lementwrencespri.info/utx?cb=1exBSOthOU58&top=megaup.net&tid=764141
108.157.229.68204 No Content0 B
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=Af_xneG3mYC2q1sFTnqV5PmgxTXTTZ2zsqse4ti2x4_EJZ_nf9hAfuoYoFZRpcgAYR6O2TmqbxgAzg
142.250.74.77302 Found398 B
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=Af_xneGdOTIEEgZj9I4NsL9cvFgmxLV_OMgUFbopZiBPZdNXR513Djo7rjO68OuWRI08G2z5OEXQ
142.250.74.77302 Found390 B
lementwrencespri.info/multi?cs=cHptT3pDS1l%2FT0FJWHhMRUpZek8&abt=0&red=1&sm=76&k=download%20file%20tloz%20botw%20nswtch%20ziperto%20part1&v=1.0.60.3&sts=0&prn=0&emb=0&tid=876318&rxy=1280_1024&fs=1&ref=https%3A%2F%2Fmegaup.net%2F29tg7%2FTLOZ-BOTW-(RF)-NSwTcH-NSP-Ziperto.part1.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0&tzd=0&uloc=&if=0&_gvZE=1683585872747&crc=1
108.157.229.68200 OK1.6 kB
megaup.net/themes/flow/frontend_assets/fonts/raleway_bold.woff
91.209.70.182200 OK32 kB
api.purpleads.io/x/init?ts=1683585872452
3.220.63.109200 OK87 B
accounts.google.com/v3/signin/identifier?dsh=S1292320160%3A1683585873046520&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=Af_xneFavCA2CnwE8bkxGhxKm8TlKF1wUeIxZbUd_bVWDJWU29Bvun_INxI9_xXuySdYm-vyWlX-&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin
142.250.74.77403 Forbidden5.8 kB
hw-cdn2.adtng.com/delivery/intersection_observer/IntersectionObserver.js
209.197.3.25200 OK17 kB
hw-cdn2.ang-content.com/a7/creatives/39/1393/805208/945688/945688_banner.png
205.185.208.20200 OK74 kB
lementwrencespri.info/floater?cs=N2VKUDgOUnloDgNVf2MKAFd7YA0&abt=0&red=1&sm=83&k=download%20file%20tloz%20botw%20nswtch%20ziperto%20part1&v=0.9.1.5&sts=0&prn=0&emb=0&tid=825911&rxy=1280_1024&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&ref=https%3A%2F%2Fmegaup.net%2F29tg7%2FTLOZ-BOTW-(RF)-NSwTcH-NSP-Ziperto.part1.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0&tzd=0&uloc=&if=0&aa=oi1_&_KP2G=1683585872744&crc=1
108.157.229.68200 OK1.8 kB
cdn.prplads.com/prebid-2023-05-04.js
172.67.74.93200 OK101 kB
mp.4dex.io/prebid
104.18.3.114204 No Content0 B
script.4dex.io/adagio.js
104.26.8.169200 OK23 kB
prebid.a-mo.net/a/c
147.75.84.158204 No Content0 B
a.adtng.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?unique_view=1
66.254.114.171200 OK107 B
ocsp.godaddy.com/
192.124.249.36 1.8 kB
nativiser-prebid.smart-hub.io/pbjs
8.2.109.53200 OK2 B
script.4dex.io/localstore.js
104.26.8.169200 OK268 B
prebid.a-mo.net/a/c
147.75.84.158204 No Content0 B
script.4dex.io/adagio.js
104.26.8.169200 OK23 kB
mp.4dex.io/prebid
104.18.3.114204 No Content0 B
megaup.net/themes/flow/frontend_assets/css/All-stylesheets.css
91.209.70.182200 OK167 B
api.purpleads.io/x/v2/b/?idx=1&pid=2173ee82389245caac75436ea03a7ee8&sizes=[[300,250]]&slotid=530809d8-0730-42a7-a69e-9c7261453549&demand=unifiedPb&ts=1683585874126
3.220.63.109200 OK0 B