Report - megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar

Report Overview

Visited public
2025-06-11 17:46:40
Tags
Submit Tags
URL
megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Finishing URL
megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
IP / ASN
5.34.214.148
#42532 SIA VEESP
Title
Streaming.ON.VTuber.Training.rar - MegaUp

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
megaup.net	179052	2004-06-24	2017-09-01	2025-06-07	17 kB	1.2 MB	5.34.214.148
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-06-11	935 B	41 kB	142.250.178.106
gelnhamforma.com	unknown	unknown	2025-06-11	2025-06-11	6.1 kB	4.9 kB	172.67.138.200
rnmop.com	unknown	2025-02-10	2025-02-12	2025-06-08	888 B	59 kB	176.9.142.103
epicdn.net	unknown	2023-01-13	2023-03-22	2025-06-05	1.7 kB	77 kB	0.0.0.0
img.vmmcdn.com	36292	2019-11-26	2019-11-26	2025-06-08	416 B	60 kB	46.4.121.113
ukankingwithea.com	unknown	2024-01-01	2024-09-05	2025-06-06	2.2 kB	4.0 kB	104.21.64.1
tomlldahehun.org	unknown	2025-04-03	2025-04-17	2025-06-07	1.8 kB	15 kB	54.240.174.25
theharityhild.buzz	unknown	2022-09-19	2022-10-20	2025-06-06	574 B	0 B	0.0.0.0
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-06-11	1.0 kB	627 kB	142.250.74.168
epics3.net	unknown	2023-03-01	2024-07-01	2025-06-08	451 B	77 kB	193.108.118.133
undefined	142677	unknown	2020-01-28	2025-06-05	3.0 kB	0 B	0.0.0.0
accounts.google.com	81	1997-09-15	2012-05-23	2025-06-11	3.7 kB	14 kB	142.250.147.84
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-06-11	3.9 kB	293 kB	142.250.74.35
aterhouseoyope.com	unknown	2025-04-22	2025-06-10	2025-06-10	997 B	4.1 kB	18.165.140.17
d3og8t183i1vbg.cloudfront.net	unknown	2008-04-25	2025-04-06	2025-06-07	876 B	981 kB	3.167.7.138

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-06-11	medium	undefined	Sinkholed
2025-06-11	medium	undefined	Sinkholed
2025-06-11	medium	undefined	Sinkholed

ThreatFox

No alerts detected

JavaScript (52)

	URL	From	Size	First Seen	Last Seen
	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/themes/spirit/assets/frontend/js/smooth-scroll.min.js	ScriptElement	6.0 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/smooth-scroll.min.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen1902 Hash c9e3a210d83398f301b3a7049c259676 8e227bb40fe120841829a7fef0ffeb091d179a91 aeda362b1d693480453b895cbcf8b92629f58240c42ba8c643f0d5d338baf805 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	ScriptElement	44 B	2023-03-07	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen4177 Hash 21d884540875fb4d2b8f280c541d092c 9f2a58bb4ff1897269b2df54e333ce35d4435b91 8f75c65a00382bae7799a76f3517023df9a72035e9b469e95469b028d4bd0d0a Loading...

	megaup.net/themes/spirit/assets/frontend/js/jquery.steps.min.js	ScriptElement	14 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/jquery.steps.min.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen1921 Hash 0eef6fe46d14f860d5666d2c7b13a564 7ab5f7deaca2f71efbc3bf9f5ba27b89d4697dbe 95a14a4473ff130eb29f3cc02e135978505655e3c931b6c3726dedd4f558f843 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	ScriptElement	1.7 kB	2025-06-11	2025-06-11
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-11 17:46 Last Seen2025-06-11 17:46 Times Seen1 Hash 3b9383ec5051c80dfae55bcd404ade87 47514c3f9334373a9c978632818cac9c79d67435 7fb6984409dc2dcb3c3183c532078090cd623932a0bc9c7063280f8d0f6d3c93 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/themes/spirit/assets/frontend/js/granim.min.js	ScriptElement	11 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/granim.min.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen1904 Hash 714368d20c70f8c91b0a596e128dac07 563954ec3a896fc129d014f01836245829f6d01d e70b27194b8793b68cccee28a6d8a1e39aae2ce5d28d5e71ac204d7a3ac164e3 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-07-07
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-07-07 06:11 Times Seen395033 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/sw.js	ScriptElement	103 kB	2023-03-09	2025-07-07
Pretty URL megaup.net/sw.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:12 Last Seen2025-07-07 05:18 Times Seen3523 Hash 9ee51131e416458b88d6da4e6e6959ca a558b24bcf81763754e35a5fa5e46c6d6ad5f8d4 db3608f955dd3404bc375f0a0a7a5c8e23515e7ad1a0b9078c246e92e4050734 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/themes/spirit/assets/frontend/js/jquery.dataTables.min.js	ScriptElement	70 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/jquery.dataTables.min.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen1913 Hash 6fda19caa29287e6f584f0557fdeb6d4 40f58160090cd1f022704ee1352b343adb9e73b9 8ef749c3869991924150dc932c48cd57bf69ac25a378bb2e14f8e1733c17406f Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/sandbox%20eval%20code		147 B	2023-04-11	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-07-07 06:11 Times Seen395517 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	aterhouseoyope.com/MjVBc1ZTVyIeaVMII1UjQFl8VmR0EHM1MgFaJksiAw1yGmdEVyZdNV5aNBcwQFovB3hcUDVWZHRRICQbA2YGNh12czIGDloFCiYOZGIZQh93VgcXBncFIgcUA2QOJhUKdAkxG1B/JiIyYGN5RBJVVhUwF0FBBSIMBlAVGB5+YBQ2BEoFGyYOZGcVBG9nfyYpA2BjAB4XXmcSNi9ZcwJCYnBXKSYMdnN0QhRadBsiFWN7AhQ+anoEEDVzUiYfElp4CiQFY3QVNRBIUxRKDGBSJUcFYAEKJC9FegkbF2NQLTYedE0DRQNkXRU0ZVpwFhoTY1AtNjNxWWwHcwB3FyYuY1FzQgJlZzI3MHdnIDoEcAMUISVkcAkAMWVzADEMXnMAITFWAQMUIXNtKBcTZUwUOzN0dxsmIWABFDYuYHcSRx91QhsnHEpZDCYOfAAUH2d8dxZHA2RzCFU8QVovA2txeSUWGwNtLz0mfg	ScriptElement	3.0 kB	2025-06-11	2025-06-11
Pretty URL aterhouseoyope.com/MjVBc1ZTVyIeaVMII1UjQFl8VmR0EHM1MgFaJksiAw1yGmdEVyZdNV5aNBcwQFovB3hcUDVWZHRRICQbA2YGNh12czIGDloFCiYOZGIZQh93VgcXBncFIgcUA2QOJhUKdAkxG1B/JiIyYGN5RBJVVhUwF0FBBSIMBlAVGB5+YBQ2BEoFGyYOZGcVBG9nfyYpA2BjAB4XXmcSNi9ZcwJCYnBXKSYMdnN0QhRadBsiFWN7AhQ+anoEEDVzUiYfElp4CiQFY3QVNRBIUxRKDGBSJUcFYAEKJC9FegkbF2NQLTYedE0DRQNkXRU0ZVpwFhoTY1AtNjNxWWwHcwB3FyYuY1FzQgJlZzI3MHdnIDoEcAMUISVkcAkAMWVzADEMXnMAITFWAQMUIXNtKBcTZUwUOzN0dxsmIWABFDYuYHcSRx91QhsnHEpZDCYOfAAUH2d8dxZHA2RzCFU8QVovA2txeSUWGwNtLz0mfg IP 18.165.140.17 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-11 17:46 Last Seen2025-06-11 17:46 Times Seen1 Hash 875f68c3dcb0ffbcdfc4c324fec7d060 f550e2f97ba882a9f2242edfed9230dfa617546a 6267b903cc5ca6ffd377aa4729ec9eecc35858f4202fef33f1a27aa2b6c85c85 Loading...

	www.googletagmanager.com/gtag/js?id=G-Z9TE2LW16Q&cx=c&gtm=457e56a1h2za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104617979~104617981~104661466~104661468~104736442~104736444	ScriptElement	341 kB	2025-06-11	2025-06-11
Pretty URL www.googletagmanager.com/gtag/js?id=G-Z9TE2LW16Q&cx=c&gtm=457e56a1h2za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104617979~104617981~104661466~104661468~104736442~104736444 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-11 17:46 Last Seen2025-06-11 17:46 Times Seen1 Hash b5170fcd63e34dfc7cbca40223d1e36e 9983374e3a507582fde4ecc512c11b4de9ee843e c776a02b079afc709a7d0bc81ff8f46647a81280763ce271e7642d4721cffdc1 Loading...

	megaup.net/themes/spirit/assets/frontend/js/typed.min.js	ScriptElement	3.9 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/typed.min.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen4630 Hash 2f6185a8a32a50b2b3e04849f44359d4 0e5501588c5c0d1c9462f34b0d56c21abff5bfef 914df93a9770d8a0e132b6ce3e8f1cfba0e0fae8f3b9002a3f0eb47c3d0cc97b Loading...

	megaup.net/themes/spirit/assets/frontend/js/flickity.min.js	ScriptElement	54 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/flickity.min.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen1906 Hash 8c1e666176ac7bdce67d58b45823ffac 75947e4316427ce0c5e33300aeb4dc4d7d54dd09 c0b706b9b1ca12b631496228a0eb0fe15ccb14f21ab554f6c4b4f20474e4d3a6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	ScriptElement	65 kB	2025-04-06	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-06 11:03 Last Seen2025-07-07 01:05 Times Seen811 Hash 2b04d9a2a53531cb05fe4389be0cf85c b41bc7baf899a23a2219c968b3b63d5369b2f1aa d6bd74d7fb8c2bbaf1ef9e0c93f94fa461c2659abd5409f0a05bd764d2fb9952 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	d3og8t183i1vbg.cloudfront.net/?itgod=761186	ScriptElement	490 kB	2025-06-11	2025-06-11
Pretty URL d3og8t183i1vbg.cloudfront.net/?itgod=761186 IP 3.167.7.138 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-11 17:46 Last Seen2025-06-11 17:46 Times Seen1 Hash 5daeed44c81bc938e572eb47d5bf1955 c911e0d1d12d37fced2606974a3f9578d1a0cd24 a44eb12c2d1f1932b2412a83ac11408c8a882b4d9008944a061af0088ae6cbef Loading...

	megaup.net/themes/spirit/assets/frontend/js/datepicker.js	ScriptElement	21 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/datepicker.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen3992 Hash 8cfe207a6a21c7495cfb751c761217a6 35d686a6c4ecc9946c35444ce93e110cb0e1611c 804e3c2608de23694fa71684178e2f9815115d56ee022ec770e1fcb208847acc Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	ScriptElement	292 B	2023-03-07	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen4435 Hash f6038f840321581380bcf8e68fbec2ed 9c64ca84baabd04b9994597b90882d8ec7158ba2 fc7d223cc022e6a00869dea89642667579b0ca033afb07bb0070c7b7a0fd23c3 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	ScriptElement	155 B	2023-03-07	2025-07-04
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-07-04 22:47 Times Seen3296 Hash dbc6f821e8ff7c4828576a426ee2d4e8 f043b3149f201934cfc9ff603023868202ac2141 68db8c28a54f45ff784d9386fb96e04dc8131f033f5f68307876dc2f1652ea59 Loading...

	d3og8t183i1vbg.cloudfront.net/daWM1SGEKDFsuXh0KUXVWX1IEcFdPE0ctB1QOUC8AHBMbJgQdRV87DgcTCAstDQZ4eTkHLUUERx0ZUXVRTw9UJgZURVAmAlRSEykFC14BbhUZDF51BhAZQCQNCghXOEccAgglDhMKWSQATFFzfU9ZRgd4SR4KWywOHhAQelEHFxB6UVhTG3hEWiEQelEeCl-t+VUxQd21TWRsDfERaIRB6URsVEHsgWFABZlFARgd4BgwAXidEWyUHeFBZUwR4UExRBS4IGwZTJxlMUXN5Ul1NBW4UVFI	ScriptElement	915 B	2025-06-11	2025-06-11
Pretty URL d3og8t183i1vbg.cloudfront.net/daWM1SGEKDFsuXh0KUXVWX1IEcFdPE0ctB1QOUC8AHBMbJgQdRV87DgcTCAstDQZ4eTkHLUUERx0ZUXVRTw9UJgZURVAmAlRSEykFC14BbhUZDF51BhAZQCQNCghXOEccAgglDhMKWSQATFFzfU9ZRgd4SR4KWywOHhAQelEHFxB6UVhTG3hEWiEQelEeCl-t+VUxQd21TWRsDfERaIRB6URsVEHsgWFABZlFARgd4BgwAXidEWyUHeFBZUwR4UExRBS4IGwZTJxlMUXN5Ul1NBW4UVFI IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-11 17:46 Last Seen2025-06-11 17:46 Times Seen1 Hash dbe6d40f8db7aae9f0fa56a798bfdeab b4c687dea400c31429a0eb73295b584dddff91b1 09753d9c23c6d2308f81a56b32899608169b12b5bafa15ea81ff2d63608fa3f3 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/themes/spirit/assets/frontend/js/countdown.min.js	ScriptElement	5.4 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/countdown.min.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen2252 Hash 76a923d3d69255c45cd24bf9b100244f eb3c96f9901692f1a03500ea632963a16afdb985 8f195573d6fa06641814b476fea2b92579c983cac46d683f356238207692c9f5 Loading...

	megaup.net/themes/spirit/assets/frontend/js/scripts.js	ScriptElement	115 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/scripts.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-07-07 05:37 Times Seen1632 Hash ce260d2170faf98639ab8e0e3758f1e2 32eeb82a44bf0bce2df78eafae9f2e9ff8d72e1f ac331833ebf1c06b0f8565caaeb4760c2184bd89d1cb5574c3947a8d0b6dca1c Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	www.googletagmanager.com/gtag/js?id=UA-108868042-1	ScriptElement	284 kB	2025-06-11	2025-06-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-108868042-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-11 17:46 Last Seen2025-06-11 17:46 Times Seen1 Hash f8d4ded001101c87de8be01373efab27 9cae4837a4587edc59fe1a2236c3e239f64a802f 3c7564c560f624caca159c5f100603ab0176156a9264a8feb30e03fcfebb1a83 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar	DomTimer	230 B	2025-04-01	2025-07-07
Pretty URL megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by domTimer Embedded in HTML false Observations First Seen2025-04-01 20:54 Last Seen2025-07-07 05:18 Times Seen1016 Hash 0baa56943575391187833596a8161168 3f6760ab649bdc5aca5ac72aa5a16562b14282cb db99c9ec42d22ca48c381d5b2a4d8cbcc1490c92e9b9584b657ac6f413ffb8f6 Loading...

	megaup.net/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js	ScriptElement	87 kB	2023-03-07	2025-07-07
Pretty URL megaup.net/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js IP 5.34.214.148 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-07-07 05:37 Times Seen2658 Hash 5b5a269bd363e0886c17d855c2aab241 042dd055cd289215835a58507c9531f808e1648a 1cf30e59d21d4ae560af7143f5913efcc8222bcaa4fcc7508eb802b5faa9e94e Loading...

		Size	First Seen	Last Seen
	#1 Write - ec42928e73884d6f21c845bf2ad73b5a	4.4 kB	2025-06-11 17:46	2025-06-11 17:46
Pretty Observations First Seen2025-06-11 17:46 Last Seen2025-06-11 17:46 Times Seen1 Hash ec42928e73884d6f21c845bf2ad73b5a aae1045443b4b185534d6ca2566c267dc52fc46b feaf0873f6108a7f1acaeff5a7e49684cd262eab3ca6c662a3d3b9fcd5fe5fe6 Loading...

HTTP Transactions (74)

URL IP Response Size

GET undefined/QjRPRDYjViwpCSMJLWJDMFhyYQQEEX0CUnFbKHxCcwx8LQc0VihqVS5bOiBQMFshMBgsUTthBAReAilSCFckIGQBdywRUwdtAAhjexF9AncEfjgVBRthCT5FGn0efH0OdhopZDpQIQx1CHMeF3sAfwkzbiZ2Dg50OHFqdnATTHZhBAB2CHxxEmIVJVMUZT0RQSlBG3ZwGnccNGYmXB4DehB2eQZdBw0OLV4YYyUzVQsFLAZ/AEMmEl0HDAp3RiR3CwlUCQV7A1QHdQ0GBi4BGXdjAWA1cFQJYhYNZiVyJgVwIVoNKX8DYnwsdSNlBQdTKHYmBXAhEX0GcTtfChEEb0wNBmQmYioVRjp2JA4AD3MGBWA4RwodUQdZKgFwOHwJIFEUBxoHdwFDHQhwc3cqPmRzdSMeAxNaFgdgL0wOIAcTewA8VSpsHX1FE3UKAGAKBSwgThNnKwF7ZF48K1gyCS0KAxRCfhx6IQ

0.0.0.0

0 B

URL GET
undefined/QjRPRDYjViwpCSMJLWJDMFhyYQQEEX0CUnFbKHxCcwx8LQc0VihqVS5bOiBQMFshMBgsUTthBAReAilSCFckIGQBdywRUwdtAAhjexF9AncEfjgVBRthCT5FGn0efH0OdhopZDpQIQx1CHMeF3sAfwkzbiZ2Dg50OHFqdnATTHZhBAB2CHxxEmIVJVMUZT0RQSlBG3ZwGnccNGYmXB4DehB2eQZdBw0OLV4YYyUzVQsFLAZ/AEMmEl0HDAp3RiR3CwlUCQV7A1QHdQ0GBi4BGXdjAWA1cFQJYhYNZiVyJgVwIVoNKX8DYnwsdSNlBQdTKHYmBXAhEX0GcTtfChEEb0wNBmQmYioVRjp2JA4AD3MGBWA4RwodUQdZKgFwOHwJIFEUBxoHdwFDHQhwc3cqPmRzdSMeAxNaFgdgL0wOIAcTewA8VSpsHX1FE3UKAGAKBSwgThNnKwF7ZF48K1gyCS0KAxRCfhx6IQ
IP
0.0.0.0:0
ASN
#0

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /QjRPRDYjViwpCSMJLWJDMFhyYQQEEX0CUnFbKHxCcwx8LQc0VihqVS5bOiBQMFshMBgsUTthBAReAilSCFckIGQBdywRUwdtAAhjexF9AncEfjgVBRthCT5FGn0efH0OdhopZDpQIQx1CHMeF3sAfwkzbiZ2Dg50OHFqdnATTHZhBAB2CHxxEmIVJVMUZT0RQSlBG3ZwGnccNGYmXB4DehB2eQZdBw0OLV4YYyUzVQsFLAZ/AEMmEl0HDAp3RiR3CwlUCQV7A1QHdQ0GBi4BGXdjAWA1cFQJYhYNZiVyJgVwIVoNKX8DYnwsdSNlBQdTKHYmBXAhEX0GcTtfChEEb0wNBmQmYioVRjp2JA4AD3MGBWA4RwodUQdZKgFwOHwJIFEUBxoHdwFDHQhwc3cqPmRzdSMeAxNaFgdgL0wOIAcTewA8VSpsHX1FE3UKAGAKBSwgThNnKwF7ZF48K1gyCS0KAxRCfhx6IQ HTTP/1.1
Host: undefined
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET megaup.net/themes/spirit/assets/frontend/js/countdown.min.js

5.34.214.148

200 OK

5.4 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/countdown.min.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (4136), with CRLF line terminators
Size
5.4 kB (5360 bytes)
Hash
76a923d3d69255c45cd24bf9b100244f
eb3c96f9901692f1a03500ea632963a16afdb985
8f195573d6fa06641814b476fea2b92579c983cac46d683f356238207692c9f5

HTTP Headers

GET /themes/spirit/assets/frontend/js/countdown.min.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-14f0"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/css/theme.css

5.34.214.148

200 OK

207 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/theme.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
assembler source, ASCII text, with CRLF line terminators
Size
207 kB (206626 bytes)
Hash
06cc8983a538a05dddf526b3b7e732aa
2414173a1660589ebbba8bdc6e3d1237df6063db
27e49bfa89404d352fa4627719f2a9a3ea5c2759c2bc74e7567ff98b5a996758

HTTP Headers

GET /themes/spirit/assets/frontend/css/theme.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Tue, 11 Feb 2025 18:30:52 GMT
vary: Accept-Encoding
etag: W/"67ab975c-32722"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i

142.250.178.106

200 OK

39 kB

URL GET
fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i
IP
142.250.178.106:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint1C:09:46:89:AD:F3:B6:3E:B4:89:F7:49:AC:15:E7:4E:A6:D2:AA:73
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
ASCII text, with very long lines (1572)
Size
39 kB (39341 bytes)
Hash
0812d3cfd3d7800435f05536b513ecfd
e70839be86f9de0d31aa6b5f0903da7c1fc7c286
00e20cfbdec23113781e1620e51b3e336b15acd9a3c026a184390736b26dab70

HTTP Headers

GET /css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 11 Jun 2025 17:46:06 GMT
date: Wed, 11 Jun 2025 17:46:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/css/jquery.steps.css

5.34.214.148

200 OK

6.0 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/jquery.steps.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
6.0 kB (6019 bytes)
Hash
25cfe48e07622a00154b677afcbaeb47
23e3ae1bd04ad1d00d25d30e39815104ceeae52f
709debbdebf13d8d6c85571caee6e44629142518e9336ed1aa01d6e94ab4d056

HTTP Headers

GET /themes/spirit/assets/frontend/css/jquery.steps.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-1783"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET fonts.googleapis.com/icon?family=Material+Icons

142.250.178.106

200 OK

565 B

URL GET
fonts.googleapis.com/icon?family=Material+Icons
IP
142.250.178.106:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint1C:09:46:89:AD:F3:B6:3E:B4:89:F7:49:AC:15:E7:4E:A6:D2:AA:73
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
ASCII text
Size
565 B (565 bytes)
Hash
736c83e15fc300de505f6ce9762a9396
31c0f11ada78e92970ff42d990116d77c169c6d7
c31266310101d0b1607937a7baf07f1601b7637bd2373176696488a07d7b4302

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 11 Jun 2025 17:46:06 GMT
date: Wed, 11 Jun 2025 17:46:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/images/logo/logo-whitebg.png

5.34.214.148

200 OK

7.1 kB

URL GET
megaup.net/themes/spirit/assets/images/logo/logo-whitebg.png
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
PNG image data, 203 x 40, 8-bit/color RGBA, non-interlaced
Size
7.1 kB (7137 bytes)
Hash
5d15526be10b904a6b48d1af04a10cc3
c09b6874359ac6d71db95593618a9acb55baa984
894d25472e0f890edf235e8f66fbeda7ea75043632924ecb82691d76bd7db018

HTTP Headers

GET /themes/spirit/assets/images/logo/logo-whitebg.png HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: image/png
content-length: 7137
last-modified: Sat, 08 Feb 2025 04:50:36 GMT
vary: Accept-Encoding
etag: "67a6e29c-1be1"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
accept-ranges: bytes
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=UA-108868042-1

142.250.74.168

200 OK

284 kB

URL GET
www.googletagmanager.com/gtag/js?id=UA-108868042-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07
ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT

File type
JavaScript source, ASCII text, with very long lines (5972)
Size
284 kB (283952 bytes)
Hash
f8d4ded001101c87de8be01373efab27
9cae4837a4587edc59fe1a2236c3e239f64a802f
3c7564c560f624caca159c5f100603ab0176156a9264a8feb30e03fcfebb1a83

HTTP Headers

GET /gtag/js?id=UA-108868042-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 11 Jun 2025 17:46:06 GMT
expires: Wed, 11 Jun 2025 17:46:06 GMT
cache-control: private, max-age=900
last-modified: Wed, 11 Jun 2025 16:03:57 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 100198
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET ukankingwithea.com/

104.21.64.1

200 OK

27 B

URL GET
ukankingwithea.com/
IP
104.21.64.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:15:28:2A:F2:F8:5D:3A:DE:6D:1D:DC:CF:6D:06:BA:00:3A:63:70
ValidityTue, 29 Apr 2025 13:46:48 GMT - Mon, 28 Jul 2025 14:44:24 GMT

File type
ASCII text, with no line terminators
Size
27 B (27 bytes)
Hash
09481ecab04f237e129f639f888ff92d
07aa00a4a1f22b65218ba2363a75428c78184531
9e46c43a78194cf6547d7bd2e6ef66808037c2061a9dd2164a93728b38ebb5c5

HTTP Headers

GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 11 Jun 2025 17:46:07 GMT
content-type: text/plain
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: https://megaup.net
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=l%2BJaD2NBUYkzKqoDudNdzX6MDgld5e1TKfuYsSHzTvjjxDuQi0NF3kwi4i1KBwusE%2F4Ot2lMK0fTjFyDMESW75hvCn%2B1FRPitg5jQVdI9fE%3D"}]}
content-encoding: br
set-cookie: csu=2022426636708114@1@1749663967; SameSite=None; Secure; Max-Age=31104000
cf-ray: 94e2ed161c2b569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/css/custom.css

5.34.214.148

200 OK

8.9 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/custom.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
assembler source, ASCII text, with CRLF line terminators
Size
8.9 kB (8936 bytes)
Hash
68443327ebd1d8f35857bbb29d3ce6df
d34e37d8cebc246854f05dde78abc32b5ad5d9fe
98cf7514d65d87963ee938b6f83493b4429f8005a5f6814ba226a7b89c80aa45

HTTP Headers

GET /themes/spirit/assets/frontend/css/custom.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Tue, 11 Feb 2025 19:56:14 GMT
vary: Accept-Encoding
etag: W/"67abab5e-22e8"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiNEZQgVh6HNpZvmLuG1wDQoeN8HHWsANsAG0pfRlNFgUOvTBs6zyite5OqOmrH9bbLy6FWnHQ

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiNEZQgVh6HNpZvmLuG1wDQoeN8HHWsANsAG0pfRlNFgUOvTBs6zyite5OqOmrH9bbLy6FWnHQ
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiNEZQgVh6HNpZvmLuG1wDQoeN8HHWsANsAG0pfRlNFgUOvTBs6zyite5OqOmrH9bbLy6FWnHQ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:qD3P3z6zjrTj9KONB2TO0kXENhlQig:MyFAJ8DAB0em8T6H;Path=/;Expires=Fri, 11-Jun-2027 17:46:08 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 17:46:08 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiOpfubGDe8Lu3r_TvVJX2ON5RGjoSl3l-cnydpU0VATU3BSBjRGHEATouAYfsksGmvahB6v&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-133460592%3A1749663968028867
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-Z4X9ZPsAyFSh1LgQYH1mMA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 414
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET epics3.net/epic/a/img/70/124/391/pSQrl5fl19lR0BAvqavUEXbz7soxdbpA4piU1ZpM.png

193.108.118.133

200 OK

76 kB

URL GET
epics3.net/epic/a/img/70/124/391/pSQrl5fl19lR0BAvqavUEXbz7soxdbpA4piU1ZpM.png
IP
193.108.118.133:443
ASN
#63023 AS-GLOBALTELEHOST

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerLet's Encrypt
Subjectepics3.net
Fingerprint08:96:C7:16:93:80:A1:C0:87:BD:37:C3:59:43:BC:97:DD:E9:B1:AC
ValidityThu, 15 May 2025 20:04:35 GMT - Wed, 13 Aug 2025 20:04:34 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
76 kB (76175 bytes)
Hash
5700d0b8a43d33538c3714b2d723c7cf
135461cd9c6a56030a4660908153ed1f9b5ef7cc
2f4619c6786796e83b7e6755acdf2d3739b8751c7bf8335f1f75e487046881bf

HTTP Headers

GET /epic/a/img/70/124/391/pSQrl5fl19lR0BAvqavUEXbz7soxdbpA4piU1ZpM.png HTTP/1.1
Host: epics3.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-length: 76175
content-type: image/png
etag: "5700d0b8a43d33538c3714b2d723c7cf"
last-modified: Tue, 25 Jun 2024 19:56:42 GMT
server: MinIO
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-bucket-region: eu-west-1
x-amz-id-2: 93ade867426f22c9af24553fc581cd6e641795b673c146950d7049946d0205dd
x-amz-request-id: 18480E1CB31DCBF9
x-ratelimit-limit: 17888
x-ratelimit-remaining: 17888
x-xss-protection: 1; mode=block
x-amz-meta-mm-source-mtime: 2024-06-25T19:56:41.809Z
date: Wed, 11 Jun 2025 17:46:11 GMT
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

48 kB

URL GET
fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48332, version 1.0
Size
48 kB (48332 bytes)
Hash
5734e133a619a6ae6ee21a6c00a95eba
57c0ac17302d07bd4f968240098afe5ed53d4ad2
d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a

HTTP Headers

GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:33:41 GMT
expires: Wed, 10 Jun 2026 02:33:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
age: 141145
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 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

0.0.0.0

0 B

URL GET
undefined/QXJDRXcgECAoSCBPIWMCMx5+YEUHV3EDE3IdJH0DcEpwLEY3ECRrFC0dNiERMx0tMVkvFzdgRQdADnQTMigXCyYOMwoBMwQRZnc1AjQkCTUGNCUTNjIkCT1DACQScUECIwkWJSgWAAZGGzogFC4WKgV1GRQjKxA0O0YzABolQxosPi4UFAAzETcNDSQVPBETJRcUDSI+AjYrEA4AFRoKNi83DQQhBD0adRgTI3IyTxQjCQ4kEjsCBiEDKw0XDwUgLw8GACMzDyArAQIHNRgwBhMbDTM7HxsZN3IAICsZCgYcEzMgKUIXKhYhDhkeFgY2ch4gFDYDCiApWnQkEQMYdCUvACAAMBUPITY8DxwhKTMCDTE4Ki8TNRMqCSM9ADsCHEcLJAQtLS0qAg8gFDY0ASYANHIfITknAjI5LCoFFCAAJSAOMwQ0FAgmDBYFIjITKhUcPwklJw4yAEYAYx0yHS01SiwVeywyNiYFcDkMPBERJw
IP
0.0.0.0:0
ASN
#0

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /QXJDRXcgECAoSCBPIWMCMx5+YEUHV3EDE3IdJH0DcEpwLEY3ECRrFC0dNiERMx0tMVkvFzdgRQdADnQTMigXCyYOMwoBMwQRZnc1AjQkCTUGNCUTNjIkCT1DACQScUECIwkWJSgWAAZGGzogFC4WKgV1GRQjKxA0O0YzABolQxosPi4UFAAzETcNDSQVPBETJRcUDSI+AjYrEA4AFRoKNi83DQQhBD0adRgTI3IyTxQjCQ4kEjsCBiEDKw0XDwUgLw8GACMzDyArAQIHNRgwBhMbDTM7HxsZN3IAICsZCgYcEzMgKUIXKhYhDhkeFgY2ch4gFDYDCiApWnQkEQMYdCUvACAAMBUPITY8DxwhKTMCDTE4Ki8TNRMqCSM9ADsCHEcLJAQtLS0qAg8gFDY0ASYANHIfITknAjI5LCoFFCAAJSAOMwQ0FAgmDBYFIjITKhUcPwklJw4yAEYAYx0yHS01SiwVeywyNiYFcDkMPBERJw HTTP/1.1
Host: undefined
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET megaup.net/themes/spirit/assets/frontend/fonts/font-awesome/fa-solid-900.woff2

5.34.214.148

200 OK

80 kB

URL GET
megaup.net/themes/spirit/assets/frontend/fonts/font-awesome/fa-solid-900.woff2
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 80148, version 331.17301
Size
80 kB (80148 bytes)
Hash
c500da19d776384ba69573ae6fe274e7
6290834672aba86d5b6c1c73b30b57c9c53996f7
cfe3b7382e477059da11be2099914b94f0e2a4f08240c60542c376957b8d9658

HTTP Headers

GET /themes/spirit/assets/frontend/fonts/font-awesome/fa-solid-900.woff2 HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://megaup.net/themes/spirit/assets/frontend/css/font-awesome.min.css
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:07 GMT
content-type: font/woff2
content-length: 80148
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: "62594310-13914"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
accept-ranges: bytes
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png

5.34.214.148

200 OK

590 B

URL GET
megaup.net/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
590 B (590 bytes)
Hash
ed3d11830b3e136b384f2a0b8082f235
3b75f2a64d528165f108d62e8c30d464b76945d7
1aef6752088fe69a166d3a84375431e1041dde8fa3f9ccbde26accb220feb4a5

HTTP Headers

GET /themes/spirit/assets/frontend/img/favicon/favicon-16x16.png HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:07 GMT
content-type: image/png
content-length: 590
last-modified: Thu, 13 Feb 2025 17:42:00 GMT
vary: Accept-Encoding
etag: "67ae2ee8-24e"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
accept-ranges: bytes
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/css/socicon.css

5.34.214.148

200 OK

9.8 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/socicon.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
9.8 kB (9838 bytes)
Hash
910a42ce112991b31b30a735f1006a5f
6c8b4769270f1c86bb1c7a6b54325465395ba614
010e6ffb18715ededb10c4ae5a8518475c138fb63b83ec1c125d09b714ccdd8b

HTTP Headers

GET /themes/spirit/assets/frontend/css/socicon.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-266e"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/css/iconsmind.css

5.34.214.148

200 OK

103 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/iconsmind.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
103 kB (102727 bytes)
Hash
c9b1c618a7b12bd7ecf6034164b29164
f7a4a8bbc3aab1d7bb44659c40a8702f3aa56c99
fc190f724340fc20fd1d175f49c70e70f4acfdd9303ae4f68d9765a2a5958d9b

HTTP Headers

GET /themes/spirit/assets/frontend/css/iconsmind.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-19147"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET gelnhamforma.com/SzFLaEdkDigbei5nHl0kDWcFCgYNcxFYcix1HiY0GGYaJBUceG0cLi8Mc1pycgB6TjciVXZbdW1CPwkzPkJ2WWEiXy0Hem1Hdlhpch95RnFtRHZZYT9BKg96ehc7HDMnDHpfc3IHfVt+fQdzUXc

172.67.138.200

204 No Content

0 B

URL GET
gelnhamforma.com/SzFLaEdkDigbei5nHl0kDWcFCgYNcxFYcix1HiY0GGYaJBUceG0cLi8Mc1pycgB6TjciVXZbdW1CPwkzPkJ2WWEiXy0Hem1Hdlhpch95RnFtRHZZYT9BKg96ehc7HDMnDHpfc3IHfVt+fQdzUXc
IP
172.67.138.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectgelnhamforma.com
FingerprintFA:30:7C:3A:4A:AE:C3:DD:81:AA:0B:5F:82:5E:36:8F:E4:76:9E:40
ValidityWed, 11 Jun 2025 05:36:22 GMT - Tue, 09 Sep 2025 06:34:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /SzFLaEdkDigbei5nHl0kDWcFCgYNcxFYcix1HiY0GGYaJBUceG0cLi8Mc1pycgB6TjciVXZbdW1CPwkzPkJ2WWEiXy0Hem1Hdlhpch95RnFtRHZZYT9BKg96ehc7HDMnDHpfc3IHfVt+fQdzUXc HTTP/1.1
Host: gelnhamforma.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 11 Jun 2025 17:46:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=SrKZN6abUuSsteUMpfd5ZWkbFr3Fn0E9VEeT%2BlGe5%2BXAP5FCo3iXNJXd9IEzGfml1CieQLzR2HQ24J%2Bz6VSH1yWmPU8kEyV4JfHaZqR4"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 94e2ed117c205690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintB1:06:D8:49:F1:03:BE:43:D7:79:D9:25:25:FE:92:54:6C:93:0B:54
ValidityMon, 12 May 2025 08:44:47 GMT - Mon, 04 Aug 2025 08:44:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:KtEVPYGBteg9XSzPGRmCGM3XtzRrJw:yFGuuA-JlcKZR1Nx; Expires=Fri, 11-Jun-2027 17:46:07 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 17:46:07 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiPJT586LS_NT62GrDnKmJjiVmt1s1Iw95eR1jQhloC8uHhI8xhj-b1G4VcY32yzWbyX12Ty3w
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-Xxqo4a3uIbEyaTo3kLmOgQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-opener-policy: unsafe-none
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET ukankingwithea.com/asd100.bin

104.21.64.1

404 Not Found

159 B

URL GET
ukankingwithea.com/asd100.bin
IP
104.21.64.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:15:28:2A:F2:F8:5D:3A:DE:6D:1D:DC:CF:6D:06:BA:00:3A:63:70
ValidityTue, 29 Apr 2025 13:46:48 GMT - Mon, 28 Jul 2025 14:44:24 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
159 B (159 bytes)
Hash
fb9666f93e418b95fea8fdbc20e80af9
d4eefca1b299cc266a80e83c9e39c4261cb87583
c6252ea6e785c1dc0d44dab86653a7209eb507e45b70d138ce515576743b64f7

HTTP Headers

GET /asd100.bin HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 11 Jun 2025 17:46:07 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 0
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZZla3XbRQnpbJ3xU%2BvVSCN71jVmnN%2B7L4lfO71nmnnQDv9pQXRd2%2Fbu0CUFSoGs0ZJD8RquFpXaD8YPMXS6r5EvhESYMcKfjHHb1Ho%2FbLQE%3D"}]}
content-encoding: br
cf-ray: 94e2ed161c29569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/css/bootstrap.min.css

5.34.214.148

200 OK

77 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/bootstrap.min.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (65319), with CRLF line terminators
Size
77 kB (76922 bytes)
Hash
9b67b9ffbfcbe226a8c413fa740fd91c
7837bd0c312897e46311aaf472947f3e23d75df2
2642f94894419d1cebdc4a010b9380a7403063dd6d28ea8a80bd5ebd01186732

HTTP Headers

GET /themes/spirit/assets/frontend/css/bootstrap.min.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-12c7a"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/img/background.jpg

5.34.214.148

200 OK

86 kB

URL GET
megaup.net/themes/spirit/assets/frontend/img/background.jpg
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1200, components 3
Size
86 kB (86513 bytes)
Hash
1b0874b56457a14258e3bd22805266c6
26ff3d095376d43cb78388e700707cdaf6ac75eb
5c5e0d52eb281e1ceae07f53c931982e8e014b9a535df9c98246157167e29285

HTTP Headers

GET /themes/spirit/assets/frontend/img/background.jpg HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:06 GMT
content-type: image/jpeg
content-length: 86513
last-modified: Tue, 11 Feb 2025 07:35:38 GMT
vary: Accept-Encoding
etag: "67aafdca-151f1"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
accept-ranges: bytes
X-Firefox-Spdy: h2

GET gelnhamforma.com/VEhrU1p7dwggZwUfAz8IEyQRBhwGMT4LDA0eBSsLMCReBzwCeE0nMzB1UmdjbH5fdSo9LFZiYnI7HzIuITtWYnw9Jg08Z3I+VmJ0ZGZZfW9yPVZifCA4CjRnZW4bJy44dVpkbm1+XWBjYn5SYmM

172.67.138.200

204 No Content

0 B

URL GET
gelnhamforma.com/VEhrU1p7dwggZwUfAz8IEyQRBhwGMT4LDA0eBSsLMCReBzwCeE0nMzB1UmdjbH5fdSo9LFZiYnI7HzIuITtWYnw9Jg08Z3I+VmJ0ZGZZfW9yPVZifCA4CjRnZW4bJy44dVpkbm1+XWBjYn5SYmM
IP
172.67.138.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectgelnhamforma.com
FingerprintFA:30:7C:3A:4A:AE:C3:DD:81:AA:0B:5F:82:5E:36:8F:E4:76:9E:40
ValidityWed, 11 Jun 2025 05:36:22 GMT - Tue, 09 Sep 2025 06:34:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /VEhrU1p7dwggZwUfAz8IEyQRBhwGMT4LDA0eBSsLMCReBzwCeE0nMzB1UmdjbH5fdSo9LFZiYnI7HzIuITtWYnw9Jg08Z3I+VmJ0ZGZZfW9yPVZifCA4CjRnZW4bJy44dVpkbm1+XWBjYn5SYmM HTTP/1.1
Host: gelnhamforma.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 11 Jun 2025 17:46:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TsYOsZg98xz3naFwY25N4yOYVLQkoj9zuBSw2kboY6NrJlC%2FSOPAQgb1K%2FM8C6tvMGkBGy6d6YJtpvorJGTQOEipMuhaJ6y1gpvy7aGh"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 94e2ed119c5b5690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiPJT586LS_NT62GrDnKmJjiVmt1s1Iw95eR1jQhloC8uHhI8xhj-b1G4VcY32yzWbyX12Ty3w

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiPJT586LS_NT62GrDnKmJjiVmt1s1Iw95eR1jQhloC8uHhI8xhj-b1G4VcY32yzWbyX12Ty3w
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiPJT586LS_NT62GrDnKmJjiVmt1s1Iw95eR1jQhloC8uHhI8xhj-b1G4VcY32yzWbyX12Ty3w HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:E7t9REDg9l8Rr6xlYn2anC2dneqUhQ:d_Xc-wouJ6BqTUS8;Path=/;Expires=Fri, 11-Jun-2027 17:46:08 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 17:46:08 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiOyGZhQGICqlMmWqZaHEAH2sxdlU9VNcWO4wIykh0kl75dwabIp5cEbtJWXNgBB3lsF3Br9&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1728318869%3A1749663968036826
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-RoRz_P458mch_p5J9qbGFw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 413
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

POST gelnhamforma.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

172.67.138.200

204 No Content

0 B

URL POST
gelnhamforma.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
IP
172.67.138.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectgelnhamforma.com
FingerprintFA:30:7C:3A:4A:AE:C3:DD:81:AA:0B:5F:82:5E:36:8F:E4:76:9E:40
ValidityWed, 11 Jun 2025 05:36:22 GMT - Tue, 09 Sep 2025 06:34:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST 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 HTTP/1.1
Host: gelnhamforma.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/3 204 No Content
date: Wed, 11 Jun 2025 17:46:11 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UeZs0%2FPTkHjQdB3oCsk9XhUmAdVIUZpHL%2B0LOdsbwAa8TdUt6N9xOco%2FC8sTdqCmB19fRbkvD1L4C2PMNOmDMRKoVj9%2ByT7MQGj%2Fprml7hed%2FVgfEg3qUNW1Pwqxxj3WRx2l"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
cf-cache-status: DYNAMIC
cf-ray: 94e2ed2d2cd656bb-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5028&min_rtt=817&rtt_var=4074&sent=65&recv=75&lost=0&retrans=0&sent_bytes=7798&recv_bytes=5916&delivery_rate=327454&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=b8e9c54147b0cd9c&ts=4424&inflight_dur=86&x=80"

GET megaup.net/themes/spirit/assets/frontend/js/granim.min.js

5.34.214.148

200 OK

11 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/granim.min.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (10573), with CRLF line terminators
Size
11 kB (10635 bytes)
Hash
714368d20c70f8c91b0a596e128dac07
563954ec3a896fc129d014f01836245829f6d01d
e70b27194b8793b68cccee28a6d8a1e39aae2ce5d28d5e71ac204d7a3ac164e3

HTTP Headers

GET /themes/spirit/assets/frontend/js/granim.min.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-298b"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET megaup.net/sw.js

5.34.214.148

200 OK

103 kB

URL GET
megaup.net/sw.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
103 kB (103036 bytes)
Hash
9ee51131e416458b88d6da4e6e6959ca
a558b24bcf81763754e35a5fa5e46c6d6ad5f8d4
db3608f955dd3404bc375f0a0a7a5c8e23515e7ad1a0b9078c246e92e4050734

HTTP Headers

GET /sw.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Tue, 20 Dec 2022 22:15:30 GMT
vary: Accept-Encoding
etag: W/"63a23402-1927c"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/js/scripts.js

5.34.214.148

200 OK

115 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/scripts.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (914), with CRLF line terminators
Size
115 kB (114862 bytes)
Hash
ce260d2170faf98639ab8e0e3758f1e2
32eeb82a44bf0bce2df78eafae9f2e9ff8d72e1f
ac331833ebf1c06b0f8565caaeb4760c2184bd89d1cb5574c3947a8d0b6dca1c

HTTP Headers

GET /themes/spirit/assets/frontend/js/scripts.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-1c0ae"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

48 kB

URL GET
fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48332, version 1.0
Size
48 kB (48332 bytes)
Hash
5734e133a619a6ae6ee21a6c00a95eba
57c0ac17302d07bd4f968240098afe5ed53d4ad2
d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a

HTTP Headers

GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:33:41 GMT
expires: Wed, 10 Jun 2026 02:33:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
age: 141145
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST gelnhamforma.com/ZDY4MUNLCVtCfj5bakAaHmxraRUuZXp3BTZuVHATMlpuaBUDcx5FKgALAAN2XQcJFzMNUgUCcUJFTFA3EUUFA3NUAR5YLQJZBQNlEgsIH3pKBBYHZRELCgFxVgIKB3VXAA8Be1UHDBc3FFdfDHJCRkxFL1kHDwV6UgALCHVcDgsC

172.67.138.200

204 No Content

0 B

URL POST
gelnhamforma.com/ZDY4MUNLCVtCfj5bakAaHmxraRUuZXp3BTZuVHATMlpuaBUDcx5FKgALAAN2XQcJFzMNUgUCcUJFTFA3EUUFA3NUAR5YLQJZBQNlEgsIH3pKBBYHZRELCgFxVgIKB3VXAA8Be1UHDBc3FFdfDHJCRkxFL1kHDwV6UgALCHVcDgsC
IP
172.67.138.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectgelnhamforma.com
FingerprintFA:30:7C:3A:4A:AE:C3:DD:81:AA:0B:5F:82:5E:36:8F:E4:76:9E:40
ValidityWed, 11 Jun 2025 05:36:22 GMT - Tue, 09 Sep 2025 06:34:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /ZDY4MUNLCVtCfj5bakAaHmxraRUuZXp3BTZuVHATMlpuaBUDcx5FKgALAAN2XQcJFzMNUgUCcUJFTFA3EUUFA3NUAR5YLQJZBQNlEgsIH3pKBBYHZRELCgFxVgIKB3VXAA8Be1UHDBc3FFdfDHJCRkxFL1kHDwV6UgALCHVcDgsC HTTP/1.1
Host: gelnhamforma.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/3 204 No Content
date: Wed, 11 Jun 2025 17:46:08 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PnImq1w%2BlE9PBQMDxt3hPPA3Ous5Yqlfy5NIaA26284LeOS%2BpQPEATqt2yDF89hFZas1g7t4pWPkGIJ4EGAd1wvLTBg9AT5H3JB6ebRCGmbxznANHSSaKDuXlu1TXW119l0K"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
cf-cache-status: DYNAMIC
cf-ray: 94e2ed1d3c0556bb-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5367&min_rtt=817&rtt_var=4528&sent=63&recv=73&lost=0&retrans=0&sent_bytes=7174&recv_bytes=4901&delivery_rate=327454&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=b8e9c54147b0cd9c&ts=1877&inflight_dur=63&x=80"

GET rnmop.com/ie?v=4&c=bLRLtlhFvCXpsfwsaGsbGw-PrAKykeRVElVb8O35y8Eko2rMlOjmpJiDvCzCAhlgcE-h53lhgZyB5cIjNW54BA50TJJlRx9KGR8Td9e1uYo9FTcOhEKIoG6rhnqU0l-kkj8tYS5Rf1a76tfrKUBUscaXJY79BSXsz4YI0v1_uSLIqB7KTxxkf27MZe80tdpXMQYDww62H4CJGSRLVw91ug_LVnHnepvFl9WEY514AuVnUIgT1kF0sB0rX8_SrGVnR_SNO5lzfiiWzR1h-6oxh2jEuCYjWlyGFk2zYKTh48dmimWcwBkZaFyQz34BGlqvWJef-0yxx57OWtO6TlhW015sfJm_pGdX3-QjOTTbMc4iNw2pO6XL7HV1mNSwIWQidSDOr0DWD2sd3sa2R-iXEkT5Qaj_lhIehurLEa1SpZDUUKXlEQ500NNfOwn5X5aGUl4KpwARk1XnDUAL1NKknYR-Lbjwu0ts&v1=79&v2=71516

176.9.142.103

301 Moved Permanently

59 kB

URL GET
rnmop.com/ie?v=4&c=bLRLtlhFvCXpsfwsaGsbGw-PrAKykeRVElVb8O35y8Eko2rMlOjmpJiDvCzCAhlgcE-h53lhgZyB5cIjNW54BA50TJJlRx9KGR8Td9e1uYo9FTcOhEKIoG6rhnqU0l-kkj8tYS5Rf1a76tfrKUBUscaXJY79BSXsz4YI0v1_uSLIqB7KTxxkf27MZe80tdpXMQYDww62H4CJGSRLVw91ug_LVnHnepvFl9WEY514AuVnUIgT1kF0sB0rX8_SrGVnR_SNO5lzfiiWzR1h-6oxh2jEuCYjWlyGFk2zYKTh48dmimWcwBkZaFyQz34BGlqvWJef-0yxx57OWtO6TlhW015sfJm_pGdX3-QjOTTbMc4iNw2pO6XL7HV1mNSwIWQidSDOr0DWD2sd3sa2R-iXEkT5Qaj_lhIehurLEa1SpZDUUKXlEQ500NNfOwn5X5aGUl4KpwARk1XnDUAL1NKknYR-Lbjwu0ts&v1=79&v2=71516
IP
176.9.142.103:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerLet's Encrypt
Subjectnimrute.com
FingerprintE2:D9:3C:CF:D5:57:A7:A2:2A:60:4E:99:80:79:B1:7A:F2:04:4F:7D
ValidityMon, 05 May 2025 05:34:31 GMT - Sun, 03 Aug 2025 05:34:30 GMT

File type

Size
59 kB (59035 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ie?v=4&c=bLRLtlhFvCXpsfwsaGsbGw-PrAKykeRVElVb8O35y8Eko2rMlOjmpJiDvCzCAhlgcE-h53lhgZyB5cIjNW54BA50TJJlRx9KGR8Td9e1uYo9FTcOhEKIoG6rhnqU0l-kkj8tYS5Rf1a76tfrKUBUscaXJY79BSXsz4YI0v1_uSLIqB7KTxxkf27MZe80tdpXMQYDww62H4CJGSRLVw91ug_LVnHnepvFl9WEY514AuVnUIgT1kF0sB0rX8_SrGVnR_SNO5lzfiiWzR1h-6oxh2jEuCYjWlyGFk2zYKTh48dmimWcwBkZaFyQz34BGlqvWJef-0yxx57OWtO6TlhW015sfJm_pGdX3-QjOTTbMc4iNw2pO6XL7HV1mNSwIWQidSDOr0DWD2sd3sa2R-iXEkT5Qaj_lhIehurLEa1SpZDUUKXlEQ500NNfOwn5X5aGUl4KpwARk1XnDUAL1NKknYR-Lbjwu0ts&v1=79&v2=71516 HTTP/1.1
Host: rnmop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: fasthttp
date: Wed, 11 Jun 2025 17:46:14 GMT
content-length: 0
location: https://img.vmmcdn.com/get/1684855/238426_icon.png
x-app-id: 42
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/js/jquery.dataTables.min.js

5.34.214.148

200 OK

70 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/jquery.dataTables.min.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (768), with CRLF line terminators
Size
70 kB (69754 bytes)
Hash
6fda19caa29287e6f584f0557fdeb6d4
40f58160090cd1f022704ee1352b343adb9e73b9
8ef749c3869991924150dc932c48cd57bf69ac25a378bb2e14f8e1733c17406f

HTTP Headers

GET /themes/spirit/assets/frontend/js/jquery.dataTables.min.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-1107a"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET ukankingwithea.com/

104.21.64.1

200 OK

27 B

URL GET
ukankingwithea.com/
IP
104.21.64.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:15:28:2A:F2:F8:5D:3A:DE:6D:1D:DC:CF:6D:06:BA:00:3A:63:70
ValidityTue, 29 Apr 2025 13:46:48 GMT - Mon, 28 Jul 2025 14:44:24 GMT

File type
ASCII text, with no line terminators
Size
27 B (27 bytes)
Hash
7ee1dbdd56c6d7e081f11476255a2d35
48115fe3e97d21a9e3cf29d1c67de91bd4832ad5
728ce68abf71615a8f156c3bee7240f6721d69d65bda686e5f3be3eaedbe626d

HTTP Headers

GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 11 Jun 2025 17:46:07 GMT
content-type: text/plain
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: https://megaup.net
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4RYYHjoaMXA2SMQa7BQ7Tlze0t9LGkPnqlFUxohO48jwrAUpWHtaCAPTxDk9r3nVaSWQsKPeW99ZHjMtl5LZAiyatYo41saA5dDBioSopPU%3D"}]}
content-encoding: br
set-cookie: csu=2069802981550002@1@1749663967; SameSite=None; Secure; Max-Age=31104000
cf-ray: 94e2ed161c24569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiOpfubGDe8Lu3r_TvVJX2ON5RGjoSl3l-cnydpU0VATU3BSBjRGHEATouAYfsksGmvahB6v&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-133460592%3A1749663968028867

142.250.147.84

403 Forbidden

0 B

URL GET
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiOpfubGDe8Lu3r_TvVJX2ON5RGjoSl3l-cnydpU0VATU3BSBjRGHEATouAYfsksGmvahB6v&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-133460592%3A1749663968028867
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiOpfubGDe8Lu3r_TvVJX2ON5RGjoSl3l-cnydpU0VATU3BSBjRGHEATouAYfsksGmvahB6v&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-133460592%3A1749663968028867 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 17:46:08 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: script-src 'nonce-Bt1CLlbdea4Ufb42d3N9Bw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.Kmu9ycRrjV8.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET tomlldahehun.org/multi?cs=SEtNd2R8e3hCXH1zeUNQfXl%2FRlM&abt=0&red=1&sm=76&k=streaming%20vtuber%20training&v=1.0.60.4&sts=0&prn=0&emb=0&tid=876318&rxy=1280_1024&u=2022426636708114&agec=1749663967&fs=1&ref=https%3A%2F%2Fmegaup.net%2Fd8c63c29d76352e25144d61989b40393%2FStreaming.ON.VTuber.Training.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A134.0)%20gecko%2F20100101%20firefox%2F134.0&tzd=0&uloc=&if=0&_wm4L=1749663968838&crc=1

54.240.174.25

200 OK

3.9 kB

URL GET
tomlldahehun.org/multi?cs=SEtNd2R8e3hCXH1zeUNQfXl%2FRlM&abt=0&red=1&sm=76&k=streaming%20vtuber%20training&v=1.0.60.4&sts=0&prn=0&emb=0&tid=876318&rxy=1280_1024&u=2022426636708114&agec=1749663967&fs=1&ref=https%3A%2F%2Fmegaup.net%2Fd8c63c29d76352e25144d61989b40393%2FStreaming.ON.VTuber.Training.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A134.0)%20gecko%2F20100101%20firefox%2F134.0&tzd=0&uloc=&if=0&_wm4L=1749663968838&crc=1
IP
54.240.174.25:443
ASN
#16509 AMAZON-02

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerAmazon
Subjecttomlldahehun.org
Fingerprint6B:F0:7B:63:2B:19:E1:74:83:15:1A:BF:1B:B4:E6:71:68:14:57:3D
ValiditySun, 06 Apr 2025 00:00:00 GMT - Tue, 05 May 2026 23:59:59 GMT

File type
ASCII text, with very long lines (3855), with no line terminators
Size
3.9 kB (3855 bytes)
Hash
8d4b9336f076ccc87eca9d60653a8bf9
dd0179621d0199be468aceacc6de52d5a2b25179
64f3ef19a954d36b82df122542c88ab134c51945c0a4383b7b84049e28065ea7

HTTP Headers

GET /multi?cs=SEtNd2R8e3hCXH1zeUNQfXl%2FRlM&abt=0&red=1&sm=76&k=streaming%20vtuber%20training&v=1.0.60.4&sts=0&prn=0&emb=0&tid=876318&rxy=1280_1024&u=2022426636708114&agec=1749663967&fs=1&ref=https%3A%2F%2Fmegaup.net%2Fd8c63c29d76352e25144d61989b40393%2FStreaming.ON.VTuber.Training.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A134.0)%20gecko%2F20100101%20firefox%2F134.0&tzd=0&uloc=&if=0&_wm4L=1749663968838&crc=1 HTTP/1.1
Host: tomlldahehun.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain
content-length: 1883
date: Wed, 11 Jun 2025 17:46:09 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=uJink32GxogD5zhMH/2ix8DLnsLjW7G9FyF5sC7WP32khFJdKI5mOMtdoU9BeSJm7DGL26jRBkDtu6M4KWecf8WgvzPIPZ7vSVYycVRkfNujTLyvYcjnXPRmJB39; Expires=Wed, 18 Jun 2025 17:46:08 GMT; Path=/
AWSALBCORS=uJink32GxogD5zhMH/2ix8DLnsLjW7G9FyF5sC7WP32khFJdKI5mOMtdoU9BeSJm7DGL26jRBkDtu6M4KWecf8WgvzPIPZ7vSVYycVRkfNujTLyvYcjnXPRmJB39; Expires=Wed, 18 Jun 2025 17:46:08 GMT; Path=/; SameSite=None
csu=073e3138-8ec3-4d4a-8e41-54c92f76f170
csu=2022426636708114
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://megaup.net
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VI6_a0xE8MuVvkObzE3ECP5oi3w0XGhQN2hQAr6ww75lbjcTyR9hfg==
X-Firefox-Spdy: h2

GET epicdn.net/cdn/?id=yAL0RwEQfBj3lgIiAjEyKIcDMK0GOgEwQgJlbkpQTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTM0LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTM0LjBSB0Rlc2t0b3BaB1dpbmRvd3NiB0ZpcmVmb3hohgF6DDkxLjkwLjQyLjE1NIIBBFdpRmmKAQ5CbGl4IFNvbHV0aW9uc5IBAk5PmAHM7L8BsQEtQxzr4jYaP9IBA0NQQ9oBBkluUGFnZeIBA0RTUOoBCDE3MjM3Mzg5kgIKMTc0OTY2Mzk2OaoCEzIwMjUtMDYtMTEgMTc6NDY6MDmyAj1hL2ltZy83MC8xMjQvMzkxL3BTUXJsNWZsMTlsUjBCQXZxYXZVRVhiejdzb3hkYnBBNHBpVTFacE0ucG5nyAMz

0.0.0.0

0 B

URL GET
epicdn.net/cdn/?id=yAL0RwEQfBj3lgIiAjEyKIcDMK0GOgEwQgJlbkpQTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTM0LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTM0LjBSB0Rlc2t0b3BaB1dpbmRvd3NiB0ZpcmVmb3hohgF6DDkxLjkwLjQyLjE1NIIBBFdpRmmKAQ5CbGl4IFNvbHV0aW9uc5IBAk5PmAHM7L8BsQEtQxzr4jYaP9IBA0NQQ9oBBkluUGFnZeIBA0RTUOoBCDE3MjM3Mzg5kgIKMTc0OTY2Mzk2OaoCEzIwMjUtMDYtMTEgMTc6NDY6MDmyAj1hL2ltZy83MC8xMjQvMzkxL3BTUXJsNWZsMTlsUjBCQXZxYXZVRVhiejdzb3hkYnBBNHBpVTFacE0ucG5nyAMz
IP
0.0.0.0:0
ASN
#0

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectepicdn.net
Fingerprint70:6C:11:94:70:2F:92:D9:42:A9:FC:3B:E5:9B:12:5C:CE:19:B1:28
ValidityMon, 28 Apr 2025 11:17:32 GMT - Sun, 27 Jul 2025 12:14:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn/?id=yAL0RwEQfBj3lgIiAjEyKIcDMK0GOgEwQgJlbkpQTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTM0LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTM0LjBSB0Rlc2t0b3BaB1dpbmRvd3NiB0ZpcmVmb3hohgF6DDkxLjkwLjQyLjE1NIIBBFdpRmmKAQ5CbGl4IFNvbHV0aW9uc5IBAk5PmAHM7L8BsQEtQxzr4jYaP9IBA0NQQ9oBBkluUGFnZeIBA0RTUOoBCDE3MjM3Mzg5kgIKMTc0OTY2Mzk2OaoCEzIwMjUtMDYtMTEgMTc6NDY6MDmyAj1hL2ltZy83MC8xMjQvMzkxL3BTUXJsNWZsMTlsUjBCQXZxYXZVRVhiejdzb3hkYnBBNHBpVTFacE0ucG5nyAMz HTTP/1.1
Host: epicdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET gelnhamforma.com/bHp0U2xDRRcgUSIAHGI2Xk4wEjldLSwSLSIrIgE0Lg0YGzkAEVInBQhHTGFZVUtFdRwFHklgXkoJADIYGQlJYVxcTVI6AgoVSWFKGkdEfVVCSFplShlHRXUYHBsTbl1KCgAnAFFLQ2dVWkxHalpaQk1h

172.67.138.200

204 No Content

0 B

URL GET
gelnhamforma.com/bHp0U2xDRRcgUSIAHGI2Xk4wEjldLSwSLSIrIgE0Lg0YGzkAEVInBQhHTGFZVUtFdRwFHklgXkoJADIYGQlJYVxcTVI6AgoVSWFKGkdEfVVCSFplShlHRXUYHBsTbl1KCgAnAFFLQ2dVWkxHalpaQk1h
IP
172.67.138.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectgelnhamforma.com
FingerprintFA:30:7C:3A:4A:AE:C3:DD:81:AA:0B:5F:82:5E:36:8F:E4:76:9E:40
ValidityWed, 11 Jun 2025 05:36:22 GMT - Tue, 09 Sep 2025 06:34:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /bHp0U2xDRRcgUSIAHGI2Xk4wEjldLSwSLSIrIgE0Lg0YGzkAEVInBQhHTGFZVUtFdRwFHklgXkoJADIYGQlJYVxcTVI6AgoVSWFKGkdEfVVCSFplShlHRXUYHBsTbl1KCgAnAFFLQ2dVWkxHalpaQk1h HTTP/1.1
Host: gelnhamforma.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 11 Jun 2025 17:46:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JKD8s73%2FzD4HwMdwdpDjuxOMiVdv9MlMLJFJuyWBbWcIhZmw1SErgJ%2Bwt7sDbypNtyqtncAD5%2FgMlu9oes8ofHX0PHCOMfMkpxFG%2ByLU"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 94e2ed119c585690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/js/jquery.steps.min.js

5.34.214.148

200 OK

14 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/jquery.steps.min.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13686), with CRLF line terminators
Size
14 kB (13862 bytes)
Hash
0eef6fe46d14f860d5666d2c7b13a564
7ab5f7deaca2f71efbc3bf9f5ba27b89d4697dbe
95a14a4473ff130eb29f3cc02e135978505655e3c931b6c3726dedd4f558f843

HTTP Headers

GET /themes/spirit/assets/frontend/js/jquery.steps.min.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-3626"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

48 kB

URL GET
fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48332, version 1.0
Size
48 kB (48332 bytes)
Hash
5734e133a619a6ae6ee21a6c00a95eba
57c0ac17302d07bd4f968240098afe5ed53d4ad2
d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a

HTTP Headers

GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:33:41 GMT
expires: Wed, 10 Jun 2026 02:33:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
age: 141145
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET aterhouseoyope.com/MjVBc1ZTVyIeaVMII1UjQFl8VmR0EHM1MgFaJksiAw1yGmdEVyZdNV5aNBcwQFovB3hcUDVWZHRRICQbA2YGNh12czIGDloFCiYOZGIZQh93VgcXBncFIgcUA2QOJhUKdAkxG1B/JiIyYGN5RBJVVhUwF0FBBSIMBlAVGB5+YBQ2BEoFGyYOZGcVBG9nfyYpA2BjAB4XXmcSNi9ZcwJCYnBXKSYMdnN0QhRadBsiFWN7AhQ+anoEEDVzUiYfElp4CiQFY3QVNRBIUxRKDGBSJUcFYAEKJC9FegkbF2NQLTYedE0DRQNkXRU0ZVpwFhoTY1AtNjNxWWwHcwB3FyYuY1FzQgJlZzI3MHdnIDoEcAMUISVkcAkAMWVzADEMXnMAITFWAQMUIXNtKBcTZUwUOzN0dxsmIWABFDYuYHcSRx91QhsnHEpZDCYOfAAUH2d8dxZHA2RzCFU8QVovA2txeSUWGwNtLz0mfg

18.165.140.17

200 OK

3.1 kB

URL GET
aterhouseoyope.com/MjVBc1ZTVyIeaVMII1UjQFl8VmR0EHM1MgFaJksiAw1yGmdEVyZdNV5aNBcwQFovB3hcUDVWZHRRICQbA2YGNh12czIGDloFCiYOZGIZQh93VgcXBncFIgcUA2QOJhUKdAkxG1B/JiIyYGN5RBJVVhUwF0FBBSIMBlAVGB5+YBQ2BEoFGyYOZGcVBG9nfyYpA2BjAB4XXmcSNi9ZcwJCYnBXKSYMdnN0QhRadBsiFWN7AhQ+anoEEDVzUiYfElp4CiQFY3QVNRBIUxRKDGBSJUcFYAEKJC9FegkbF2NQLTYedE0DRQNkXRU0ZVpwFhoTY1AtNjNxWWwHcwB3FyYuY1FzQgJlZzI3MHdnIDoEcAMUISVkcAkAMWVzADEMXnMAITFWAQMUIXNtKBcTZUwUOzN0dxsmIWABFDYuYHcSRx91QhsnHEpZDCYOfAAUH2d8dxZHA2RzCFU8QVovA2txeSUWGwNtLz0mfg
IP
18.165.140.17:443
ASN
#16509 AMAZON-02

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerAmazon
Subjectaterhouseoyope.com
Fingerprint90:CA:41:82:FB:13:BA:E5:00:6F:41:7D:23:C2:5F:3E:AC:39:64:C5
ValidityWed, 14 May 2025 00:00:00 GMT - Fri, 12 Jun 2026 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3061), with no line terminators
Size
3.1 kB (3061 bytes)
Hash
120ad1ed3e8b10f0e81ab6dff31259af
fd443b7894d84e8375c09dc92b209fa87f3d41b4
acd5874aa4dc20161aaf636fe2de98af52733f1f70348ea7cff073d4de678dc7

HTTP Headers

GET /MjVBc1ZTVyIeaVMII1UjQFl8VmR0EHM1MgFaJksiAw1yGmdEVyZdNV5aNBcwQFovB3hcUDVWZHRRICQbA2YGNh12czIGDloFCiYOZGIZQh93VgcXBncFIgcUA2QOJhUKdAkxG1B/JiIyYGN5RBJVVhUwF0FBBSIMBlAVGB5+YBQ2BEoFGyYOZGcVBG9nfyYpA2BjAB4XXmcSNi9ZcwJCYnBXKSYMdnN0QhRadBsiFWN7AhQ+anoEEDVzUiYfElp4CiQFY3QVNRBIUxRKDGBSJUcFYAEKJC9FegkbF2NQLTYedE0DRQNkXRU0ZVpwFhoTY1AtNjNxWWwHcwB3FyYuY1FzQgJlZzI3MHdnIDoEcAMUISVkcAkAMWVzADEMXnMAITFWAQMUIXNtKBcTZUwUOzN0dxsmIWABFDYuYHcSRx91QhsnHEpZDCYOfAAUH2d8dxZHA2RzCFU8QVovA2txeSUWGwNtLz0mfg HTTP/1.1
Host: aterhouseoyope.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
content-length: 1206
date: Wed, 11 Jun 2025 17:46:07 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=FuDo0UguPRTw5USL2srgqljF/gwR4LLwcj1Hex+xSiFhRap0n3TT1PXNI+K/3BIkV6TiK+4XOCMwCyEMHauY3Yof4ruj6l5fNut284P0T/HS7nZQ1IzBNCjIhWJ+; Expires=Wed, 18 Jun 2025 17:46:07 GMT; Path=/
AWSALBCORS=FuDo0UguPRTw5USL2srgqljF/gwR4LLwcj1Hex+xSiFhRap0n3TT1PXNI+K/3BIkV6TiK+4XOCMwCyEMHauY3Yof4ruj6l5fNut284P0T/HS7nZQ1IzBNCjIhWJ+; Expires=Wed, 18 Jun 2025 17:46:07 GMT; Path=/; SameSite=None
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 ed113afe82d7408b289f57e64cd9d9aa.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL51-P3
x-amz-cf-id: 3DDVNN-tzTuWEMclrv1gzeAyAfo2qKs8sNEENO24ysSJ-MC--re_cg==
X-Firefox-Spdy: h2

GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiOyGZhQGICqlMmWqZaHEAH2sxdlU9VNcWO4wIykh0kl75dwabIp5cEbtJWXNgBB3lsF3Br9&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1728318869%3A1749663968036826

142.250.147.84

403 Forbidden

0 B

URL GET
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiOyGZhQGICqlMmWqZaHEAH2sxdlU9VNcWO4wIykh0kl75dwabIp5cEbtJWXNgBB3lsF3Br9&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1728318869%3A1749663968036826
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiOyGZhQGICqlMmWqZaHEAH2sxdlU9VNcWO4wIykh0kl75dwabIp5cEbtJWXNgBB3lsF3Br9&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1728318869%3A1749663968036826 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 17:46:08 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-s5igRcUrDttHjCABkTYrfQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.Kmu9ycRrjV8.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET megaup.net/themes/spirit/assets/images/logo/logo.png

5.34.214.148

200 OK

5.9 kB

URL GET
megaup.net/themes/spirit/assets/images/logo/logo.png
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
PNG image data, 203 x 40, 8-bit/color RGBA, non-interlaced
Size
5.9 kB (5900 bytes)
Hash
fa360a47a62ae74a0a3d8c0f3e6f7f12
168c72a918b04b735f8e0f8a72223a16f0eda358
1d3a3c84dd36871d1009693761f441537117d5ee62c8e775d7d52c77d4c46de4

HTTP Headers

GET /themes/spirit/assets/images/logo/logo.png HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: image/png
content-length: 5900
last-modified: Sat, 08 Feb 2025 04:50:36 GMT
vary: Accept-Encoding
etag: "67a6e29c-170c"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
accept-ranges: bytes
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/js/flickity.min.js

5.34.214.148

200 OK

54 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/flickity.min.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32032), with CRLF line terminators
Size
54 kB (53873 bytes)
Hash
8c1e666176ac7bdce67d58b45823ffac
75947e4316427ce0c5e33300aeb4dc4d7d54dd09
c0b706b9b1ca12b631496228a0eb0fe15ccb14f21ab554f6c4b4f20474e4d3a6

HTTP Headers

GET /themes/spirit/assets/frontend/js/flickity.min.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-d271"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/js/datepicker.js

5.34.214.148

200 OK

21 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/datepicker.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (12692), with CRLF line terminators
Size
21 kB (20975 bytes)
Hash
8cfe207a6a21c7495cfb751c761217a6
35d686a6c4ecc9946c35444ce93e110cb0e1611c
804e3c2608de23694fa71684178e2f9815115d56ee022ec770e1fcb208847acc

HTTP Headers

GET /themes/spirit/assets/frontend/js/datepicker.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-51ef"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v43/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2

142.250.74.35

200 OK

19 kB

URL GET
fonts.gstatic.com/s/opensans/v43/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19276, version 1.0
Size
19 kB (19276 bytes)
Hash
266d9ceb5c3c51971e2a9e13b7ec5883
091a3b35321cb3e7b11034a091964e795c4b74ac
f93e2585efd0318f328e3431482382c66dfe89ac387060e88116cdd18a18b933

HTTP Headers

GET /s/opensans/v43/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19276
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:38:25 GMT
expires: Wed, 10 Jun 2026 02:38:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 17:52:30 GMT
content-type: font/woff2
age: 140861
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET theharityhild.buzz/NXhUd3FOWicALkAKOFVLFxAgAwFGQntYHFAfNQIBGxYxA15GD3odAhdUdgQcU1puRl0XCzkBUw9aYFlCF1R2AxBSJz0TUw9abERDA0tnVV0XCyEVLlwcZlVLFx5sREJWSGAVXAMdZBVcARw2R1wMTGxAXFNOMRIUVh03FBJWHXYK

0.0.0.0

0 B

URL GET
theharityhild.buzz/NXhUd3FOWicALkAKOFVLFxAgAwFGQntYHFAfNQIBGxYxA15GD3odAhdUdgQcU1puRl0XCzkBUw9aYFlCF1R2AxBSJz0TUw9abERDA0tnVV0XCyEVLlwcZlVLFx5sREJWSGAVXAMdZBVcARw2R1wMTGxAXFNOMRIUVh03FBJWHXYK
IP
0.0.0.0:0
ASN
#0

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /NXhUd3FOWicALkAKOFVLFxAgAwFGQntYHFAfNQIBGxYxA15GD3odAhdUdgQcU1puRl0XCzkBUw9aYFlCF1R2AxBSJz0TUw9abERDA0tnVV0XCyEVLlwcZlVLFx5sREJWSGAVXAMdZBVcARw2R1wMTGxAXFNOMRIUVh03FBJWHXYK HTTP/1.1
Host: theharityhild.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET ukankingwithea.com/asd100.bin

104.21.64.1

404 Not Found

159 B

URL GET
ukankingwithea.com/asd100.bin
IP
104.21.64.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:15:28:2A:F2:F8:5D:3A:DE:6D:1D:DC:CF:6D:06:BA:00:3A:63:70
ValidityTue, 29 Apr 2025 13:46:48 GMT - Mon, 28 Jul 2025 14:44:24 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
159 B (159 bytes)
Hash
fb9666f93e418b95fea8fdbc20e80af9
d4eefca1b299cc266a80e83c9e39c4261cb87583
c6252ea6e785c1dc0d44dab86653a7209eb507e45b70d138ce515576743b64f7

HTTP Headers

GET /asd100.bin HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 11 Jun 2025 17:46:07 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cache-control: max-age=14400
cf-cache-status: EXPIRED
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=EN%2Bx5%2FizIBfzBbJ%2F%2F%2BIOkn1Bu%2FRGfBGPVZNdsNrQsPl5gXGR09UyiTxl5nfENsGE8e%2BEH%2FzhiJVnDDbB4KdfkUjP2rfDeqAEfKt1pJS1e7A%3D"}]}
content-encoding: br
cf-ray: 94e2ed161c1f569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET img.vmmcdn.com/get/1684855/238426_icon.png

46.4.121.113

200 OK

59 kB

URL GET
img.vmmcdn.com/get/1684855/238426_icon.png
IP
46.4.121.113:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerLet's Encrypt
Subjectimg.vmmcdn.com
Fingerprint80:06:97:89:A7:1D:CD:83:B1:41:F8:CA:CE:6A:15:04:EB:BE:E6:BF
ValidityTue, 15 Apr 2025 20:58:33 GMT - Mon, 14 Jul 2025 20:58:32 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
59 kB (59035 bytes)
Hash
669eb036e71ef2df4b1a7d3fa9e5ebb7
6a8686b1ce7276b8c6732245e340dbe38b30eb04
89edf6961767b760b3ff755a803457eee41b5f2df863cdeca95165bf4a126732

HTTP Headers

GET /get/1684855/238426_icon.png HTTP/1.1
Host: img.vmmcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.1
date: Wed, 11 Jun 2025 17:46:15 GMT
content-type: image/png
content-length: 59035
last-modified: Sun, 18 Dec 2022 10:47:54 GMT
cache-control: public, max-age=604800
etag: "639eefda-e69b"
x-proxy-cache: HIT
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-request-headers: x-requested-with
access-control-allow-headers: x-requested-with
accept-ranges: bytes
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/css/flickity.css

5.34.214.148

200 OK

2.5 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/flickity.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.5 kB (2521 bytes)
Hash
244d315064064270eabbbb7ac9f6c700
21ad53d3efbb40154293190173ee0c497ed7651c
ff5fe542e37297733305fb7e68a41b3269a681d64145945f2131a646044c016a

HTTP Headers

GET /themes/spirit/assets/frontend/css/flickity.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-9d9"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

48 kB

URL GET
fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48332, version 1.0
Size
48 kB (48332 bytes)
Hash
5734e133a619a6ae6ee21a6c00a95eba
57c0ac17302d07bd4f968240098afe5ed53d4ad2
d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a

HTTP Headers

GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:33:41 GMT
expires: Wed, 10 Jun 2026 02:33:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
age: 141145
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631

5.34.214.148

200 OK

4.3 kB

URL GET
megaup.net/themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 4292, version 1.0
Size
4.3 kB (4292 bytes)
Hash
ae072782b361d2afdbf43db08d3cfb73
f3db2e65b53d97491672f8631e21d6d05905cc88
31205df908aed9881f6d2d3ae7d38975252bf99e38268978b4236dc3c314754b

HTTP Headers

GET /themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631 HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://megaup.net/themes/spirit/assets/frontend/css/stack-interface.css
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:06 GMT
content-type: font/woff2
content-length: 4292
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: "62594310-10c4"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
accept-ranges: bytes
X-Firefox-Spdy: h2

GET gelnhamforma.com/Ym9KaTVNUCkaCAFcGABRJjUPOAQGLAhZcyM6DyB2MAQYPmQFImwdXAZSfV8EU1d8T0ULC3dYExEbKx1AEVJ7T1wMCSVUExRSe0cGVkF5XxtXST9UBEQbOghSX15sGUEWA3dYAlZWfF8GW1l8UQJQ

172.67.138.200

204 No Content

0 B

URL GET
gelnhamforma.com/Ym9KaTVNUCkaCAFcGABRJjUPOAQGLAhZcyM6DyB2MAQYPmQFImwdXAZSfV8EU1d8T0ULC3dYExEbKx1AEVJ7T1wMCSVUExRSe0cGVkF5XxtXST9UBEQbOghSX15sGUEWA3dYAlZWfF8GW1l8UQJQ
IP
172.67.138.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectgelnhamforma.com
FingerprintFA:30:7C:3A:4A:AE:C3:DD:81:AA:0B:5F:82:5E:36:8F:E4:76:9E:40
ValidityWed, 11 Jun 2025 05:36:22 GMT - Tue, 09 Sep 2025 06:34:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Ym9KaTVNUCkaCAFcGABRJjUPOAQGLAhZcyM6DyB2MAQYPmQFImwdXAZSfV8EU1d8T0ULC3dYExEbKx1AEVJ7T1wMCSVUExRSe0cGVkF5XxtXST9UBEQbOghSX15sGUEWA3dYAlZWfF8GW1l8UQJQ HTTP/1.1
Host: gelnhamforma.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 11 Jun 2025 17:46:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=pxVEB6MVpzt0KPkp6Y73yNHx8ds9kk2I7g8OoZpnlHoP8VsFSLY52pS7yRjuqFy71w8rR%2BrB54kdT4AeZgozaeIctGxVtQMEbegJqdv0"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 94e2ed117c1f5690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET gelnhamforma.com/MUFZSXkefjo6RGUHPTwcXDVtE0hFEQx6FUcWMnwfVBYPKioANn89EFV8YX5PAnBhbwlYJWR7QBcyLSgNRDJkeF9YLz8mRBc3ZHhXAW9veVcFZyx0SBc1KSgeDHB/OQ1FLWR4TgV4b39KCHdvcEkF

172.67.138.200

204 No Content

0 B

URL GET
gelnhamforma.com/MUFZSXkefjo6RGUHPTwcXDVtE0hFEQx6FUcWMnwfVBYPKioANn89EFV8YX5PAnBhbwlYJWR7QBcyLSgNRDJkeF9YLz8mRBc3ZHhXAW9veVcFZyx0SBc1KSgeDHB/OQ1FLWR4TgV4b39KCHdvcEkF
IP
172.67.138.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectgelnhamforma.com
FingerprintFA:30:7C:3A:4A:AE:C3:DD:81:AA:0B:5F:82:5E:36:8F:E4:76:9E:40
ValidityWed, 11 Jun 2025 05:36:22 GMT - Tue, 09 Sep 2025 06:34:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /MUFZSXkefjo6RGUHPTwcXDVtE0hFEQx6FUcWMnwfVBYPKioANn89EFV8YX5PAnBhbwlYJWR7QBcyLSgNRDJkeF9YLz8mRBc3ZHhXAW9veVcFZyx0SBc1KSgeDHB/OQ1FLWR4TgV4b39KCHdvcEkF HTTP/1.1
Host: gelnhamforma.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 11 Jun 2025 17:46:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=50tTZ8rAeQ5Sy59ruGejb7XhpBkHMLSHh8WazJS1fV0qVD14x7SkzJ584NDV50xNq8XwswAQyk80lqbBLMjv2963OfdLoy1lGJEJLqpN"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 94e2ed118c3a5690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/css/mu-waiting-upload.css

5.34.214.148

200 OK

739 B

URL GET
megaup.net/themes/spirit/assets/frontend/css/mu-waiting-upload.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
739 B (739 bytes)
Hash
a19cdfde4cca33ccafc0b8bfd518bebb
df1830e07033d0ae31288f62892121778fc7c765
a347474d3c97d5440c2f06c86c314eb1e9c2a20e2b84e8367d57743fe77a8115

HTTP Headers

GET /themes/spirit/assets/frontend/css/mu-waiting-upload.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Mon, 17 Feb 2025 00:39:28 GMT
vary: Accept-Encoding
etag: W/"67b28540-2e3"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET undefined/RlFhbmUnMwIDWidsA0gQND1cS1cAdFMoAXU+BlYRd2lSB1QwMwZABio+FAoDND4PGksoNBVLVwAXNwUrLwQbBVQKEBZfJy8YECwIchA4ABUnCzBfEgspIFw9dCIULB8UCCgUKwsBNxkMHAAGCTMsNhs2HTUQLhYwKRAmLzwAOBUfIXQLDSgMKjUAXSsDAVAJUQwXWF89AjYGNlcPNy8XBgczBl8SCDYvGzMCOlQtH38HL1w/FxcwFlElYQUGJh5lUS0fdzUuOjQUNQYaCAoDO1wmdAsYOwt2GwJdJCE1BhoICBASVyF0Gww7NwMyOyYoJwswXx8lEkwsVwVjOBYjDggqKFYMAzsWASswCgoNBQUkAyQSOTYNVgM6OD8JKDJQJAwFBgUDMAEfBz4fAxkvODwzCw0vMwUWN10xARwHJ1ZzBUcEFik/EVMtfzw3JDYfHzQnXHBh

0.0.0.0

0 B

URL GET
undefined/RlFhbmUnMwIDWidsA0gQND1cS1cAdFMoAXU+BlYRd2lSB1QwMwZABio+FAoDND4PGksoNBVLVwAXNwUrLwQbBVQKEBZfJy8YECwIchA4ABUnCzBfEgspIFw9dCIULB8UCCgUKwsBNxkMHAAGCTMsNhs2HTUQLhYwKRAmLzwAOBUfIXQLDSgMKjUAXSsDAVAJUQwXWF89AjYGNlcPNy8XBgczBl8SCDYvGzMCOlQtH38HL1w/FxcwFlElYQUGJh5lUS0fdzUuOjQUNQYaCAoDO1wmdAsYOwt2GwJdJCE1BhoICBASVyF0Gww7NwMyOyYoJwswXx8lEkwsVwVjOBYjDggqKFYMAzsWASswCgoNBQUkAyQSOTYNVgM6OD8JKDJQJAwFBgUDMAEfBz4fAxkvODwzCw0vMwUWN10xARwHJ1ZzBUcEFik/EVMtfzw3JDYfHzQnXHBh
IP
0.0.0.0:0
ASN
#0

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /RlFhbmUnMwIDWidsA0gQND1cS1cAdFMoAXU+BlYRd2lSB1QwMwZABio+FAoDND4PGksoNBVLVwAXNwUrLwQbBVQKEBZfJy8YECwIchA4ABUnCzBfEgspIFw9dCIULB8UCCgUKwsBNxkMHAAGCTMsNhs2HTUQLhYwKRAmLzwAOBUfIXQLDSgMKjUAXSsDAVAJUQwXWF89AjYGNlcPNy8XBgczBl8SCDYvGzMCOlQtH38HL1w/FxcwFlElYQUGJh5lUS0fdzUuOjQUNQYaCAoDO1wmdAsYOwt2GwJdJCE1BhoICBASVyF0Gww7NwMyOyYoJwswXx8lEkwsVwVjOBYjDggqKFYMAzsWASswCgoNBQUkAyQSOTYNVgM6OD8JKDJQJAwFBgUDMAEfBz4fAxkvODwzCw0vMwUWN10xARwHJ1ZzBUcEFik/EVMtfzw3JDYfHzQnXHBh HTTP/1.1
Host: undefined
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET megaup.net/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png

5.34.214.148

200 OK

536 B

URL GET
megaup.net/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
PNG image data, 57 x 57, 8-bit colormap, non-interlaced
Size
536 B (536 bytes)
Hash
0019444f6b6df5b4b5ed32b6b469caab
4232370d10ab54ef9bda57aa9dcb813036047b35
0509f6df067face535f028cd86200748952227161f8f244aa7864e7848553562

HTTP Headers

GET /themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:07 GMT
content-type: image/png
content-length: 536
last-modified: Thu, 13 Feb 2025 17:40:08 GMT
vary: Accept-Encoding
etag: "67ae2e78-218"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
accept-ranges: bytes
X-Firefox-Spdy: h2

GET ukankingwithea.com/

104.21.64.1

200 OK

27 B

URL GET
ukankingwithea.com/
IP
104.21.64.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:15:28:2A:F2:F8:5D:3A:DE:6D:1D:DC:CF:6D:06:BA:00:3A:63:70
ValidityTue, 29 Apr 2025 13:46:48 GMT - Mon, 28 Jul 2025 14:44:24 GMT

File type
ASCII text, with no line terminators
Size
27 B (27 bytes)
Hash
b9d2c4334733ca1447129e5ec9cbee58
970953797b866d7e3b2581d84bab7dc883e37608
82e37ff52e4204f6b7dfa67f1cabc020f6c2454fef09b6efce0a93b9b2ed031e

HTTP Headers

GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 11 Jun 2025 17:46:07 GMT
content-type: text/plain
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: https://megaup.net
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MRZv%2BKQ7TH5nnTQvUL9zlzRZEVcw0RQHHMO3GmXDzp7pOpq9LrFPTF5MFDdJZweIrFad2RmTNPjot4Idb9KI93gfLdmXcnrTltzmQptMpE8%3D"}]}
content-encoding: br
set-cookie: csu=1745761121266208@1@1749663967; SameSite=None; Secure; Max-Age=31104000
cf-ray: 94e2ed15fc07569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET tomlldahehun.org/floater?cs=OFlhdXgMYFlESg9sVUZBCGhTQE8&abt=0&red=1&sm=83&k=streaming%20vtuber%20training&v=0.9.2.6&sts=0&prn=0&emb=0&tid=825911&rxy=1280_1024&u=2022426636708114&agec=1749663967&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&ref=https%3A%2F%2Fmegaup.net%2Fd8c63c29d76352e25144d61989b40393%2FStreaming.ON.VTuber.Training.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A134.0)%20gecko%2F20100101%20firefox%2F134.0&tzd=0&uloc=&if=0&aa=oi1_&_BEs6=1749663968835&crc=1

54.240.174.25

200 OK

8.4 kB

URL GET
tomlldahehun.org/floater?cs=OFlhdXgMYFlESg9sVUZBCGhTQE8&abt=0&red=1&sm=83&k=streaming%20vtuber%20training&v=0.9.2.6&sts=0&prn=0&emb=0&tid=825911&rxy=1280_1024&u=2022426636708114&agec=1749663967&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&ref=https%3A%2F%2Fmegaup.net%2Fd8c63c29d76352e25144d61989b40393%2FStreaming.ON.VTuber.Training.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A134.0)%20gecko%2F20100101%20firefox%2F134.0&tzd=0&uloc=&if=0&aa=oi1_&_BEs6=1749663968835&crc=1
IP
54.240.174.25:443
ASN
#16509 AMAZON-02

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerAmazon
Subjecttomlldahehun.org
Fingerprint6B:F0:7B:63:2B:19:E1:74:83:15:1A:BF:1B:B4:E6:71:68:14:57:3D
ValiditySun, 06 Apr 2025 00:00:00 GMT - Tue, 05 May 2026 23:59:59 GMT

File type
ASCII text, with very long lines (8402), with no line terminators
Size
8.4 kB (8402 bytes)
Hash
eca6978486378a6bc018c3309737d6c8
615e2725aa09f7d83dbec17d5a2b89ac8950239c
7febc86da337e4f94514413ac58f80d65cb0bed068707e109f8547b1d6dd321f

HTTP Headers

GET /floater?cs=OFlhdXgMYFlESg9sVUZBCGhTQE8&abt=0&red=1&sm=83&k=streaming%20vtuber%20training&v=0.9.2.6&sts=0&prn=0&emb=0&tid=825911&rxy=1280_1024&u=2022426636708114&agec=1749663967&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&ref=https%3A%2F%2Fmegaup.net%2Fd8c63c29d76352e25144d61989b40393%2FStreaming.ON.VTuber.Training.rar&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A134.0)%20gecko%2F20100101%20firefox%2F134.0&tzd=0&uloc=&if=0&aa=oi1_&_BEs6=1749663968835&crc=1 HTTP/1.1
Host: tomlldahehun.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 5822
date: Wed, 11 Jun 2025 17:46:09 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=rO05D2UeNeLCcVoOOKav90hhIGl3aWMLSdXi7nGpjcrIV6nGzHKdJjI+5GqYOLfOx7dwHsCSlprbJXsdUuwdnv9jQQrNkKnpwJX/Y/She/vZjyTVd8TBYEQARSEc; Expires=Wed, 18 Jun 2025 17:46:08 GMT; Path=/
AWSALBCORS=rO05D2UeNeLCcVoOOKav90hhIGl3aWMLSdXi7nGpjcrIV6nGzHKdJjI+5GqYOLfOx7dwHsCSlprbJXsdUuwdnv9jQQrNkKnpwJX/Y/She/vZjyTVd8TBYEQARSEc; Expires=Wed, 18 Jun 2025 17:46:08 GMT; Path=/; SameSite=None
csu=2af5cbc0-8c3c-4784-b608-d639cc07618b
csu=2022426636708114
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://megaup.net
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gTlCKRUR5OKJyl38VFdRXEa0ObJ1T-Ass7ABvtVoyiHcfGYPDdI_yA==
X-Firefox-Spdy: h2

GET megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar

5.34.214.148

200 OK

80 kB

URL User Request GET
megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (51690)
Size
80 kB (79752 bytes)
Hash
14bb59220a590c332f700d8b04a6f34c
5f2f5f85793319fa30cd2b51aebbe444628fc88c
78cfe6b201727b901743152d5f9e1f56f90f624ed983b4fc0d1661f4bec39b1b

HTTP Headers

GET /d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: filehosting=hipi64roincggphqforj5a5v1o; expires=Thu, 12 Jun 2025 17:46:05 GMT; Max-Age=86400; path=/; domain=megaup.net; secure; HttpOnly; SameSite=None
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: https://megaup.net
access-control-allow-headers: Content-Type, Content-Range, Content-Disposition, Content-Description
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, no-cache, private
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET d3og8t183i1vbg.cloudfront.net/?itgod=761186

3.167.7.138

200 OK

490 kB

URL GET
d3og8t183i1vbg.cloudfront.net/?itgod=761186
IP
3.167.7.138:443
ASN
#0

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint8F:00:F1:34:A7:1E:27:1C:CF:CD:A6:53:8B:C4:82:B0:68:BC:C8:72
ValidityMon, 05 May 2025 00:00:00 GMT - Thu, 23 Apr 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (38488)
Size
490 kB (489869 bytes)
Hash
5daeed44c81bc938e572eb47d5bf1955
c911e0d1d12d37fced2606974a3f9578d1a0cd24
a44eb12c2d1f1932b2412a83ac11408c8a882b4d9008944a061af0088ae6cbef

HTTP Headers

GET /?itgod=761186 HTTP/1.1
Host: d3og8t183i1vbg.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 152107
date: Wed, 11 Jun 2025 17:46:06 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 bac2c08263be93278e77355a3ca67ff6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: WP_mttNn2Pgsi48xaDPZNeCCNI0im_UZqwZXkSfqFHoT4PIUEe26IQ==
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-Z9TE2LW16Q&cx=c&gtm=457e56a1h2za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104617979~104617981~104661466~104661468~104736442~104736444

142.250.74.168

200 OK

341 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-Z9TE2LW16Q&cx=c&gtm=457e56a1h2za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104617979~104617981~104661466~104661468~104736442~104736444
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07
ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT

File type
JavaScript source, ASCII text, with very long lines (6004)
Size
341 kB (341161 bytes)
Hash
b5170fcd63e34dfc7cbca40223d1e36e
9983374e3a507582fde4ecc512c11b4de9ee843e
c776a02b079afc709a7d0bc81ff8f46647a81280763ce271e7642d4721cffdc1

HTTP Headers

GET /gtag/js?id=G-Z9TE2LW16Q&cx=c&gtm=457e56a1h2za200&tag_exp=101509157~103116026~103200004~103233427~103351869~103351871~104573694~104617979~104617981~104661466~104661468~104736442~104736444 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 11 Jun 2025 17:46:07 GMT
expires: Wed, 11 Jun 2025 17:46:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 119479
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET megaup.net/themes/spirit/assets/frontend/css/lightbox.min.css

5.34.214.148

200 OK

3.9 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/lightbox.min.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
3.9 kB (3889 bytes)
Hash
30265c8089a8f3e871d0873ef6a5b944
2804a2fe5a6a956626ce6a46adf6b1a0676ee13d
f9f33dca7f9a5a735a0a03502993e0a092df81d820beb1ed4071e4611a9630ed

HTTP Headers

GET /themes/spirit/assets/frontend/css/lightbox.min.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-f31"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/js/typed.min.js

5.34.214.148

200 OK

3.9 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/typed.min.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3949), with no line terminators
Size
3.9 kB (3949 bytes)
Hash
2f6185a8a32a50b2b3e04849f44359d4
0e5501588c5c0d1c9462f34b0d56c21abff5bfef
914df93a9770d8a0e132b6ce3e8f1cfba0e0fae8f3b9002a3f0eb47c3d0cc97b

HTTP Headers

GET /themes/spirit/assets/frontend/js/typed.min.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-f6d"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

48 kB

URL GET
fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48332, version 1.0
Size
48 kB (48332 bytes)
Hash
5734e133a619a6ae6ee21a6c00a95eba
57c0ac17302d07bd4f968240098afe5ed53d4ad2
d7a547581722aa055a7fb5b9912aebf3f3e928e1db3e5af9e54cf158cb4c4c4a

HTTP Headers

GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:33:41 GMT
expires: Wed, 10 Jun 2026 02:33:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:06:59 GMT
content-type: font/woff2
age: 141145
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2

142.250.74.35

200 OK

27 kB

URL GET
fonts.gstatic.com/s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 26596, version 1.0
Size
27 kB (26596 bytes)
Hash
dae1850484b86d299c31bc08aaa563cf
dca808d6d16965c40bfba4e4b3c8a819f843890d
8f80f993e523f2e6c2d097552740fd26331658da23ffad31d26edcdd3aeec370

HTTP Headers

GET /s/opensans/v43/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 04 Jun 2025 22:51:35 GMT
expires: Thu, 04 Jun 2026 22:51:35 GMT
cache-control: public, max-age=31536000
age: 586471
last-modified: Wed, 28 May 2025 17:52:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintB1:06:D8:49:F1:03:BE:43:D7:79:D9:25:25:FE:92:54:6C:93:0B:54
ValidityMon, 12 May 2025 08:44:47 GMT - Mon, 04 Aug 2025 08:44:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:Cb1PW4EkBXsasm7YHG-kGcRrkN64IQ:_kMMBUdydoTX3rgN; Expires=Fri, 11-Jun-2027 17:46:07 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 17:46:07 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiNEZQgVh6HNpZvmLuG1wDQoeN8HHWsANsAG0pfRlNFgUOvTBs6zyite5OqOmrH9bbLy6FWnHQ
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce--U6QlelnzV_y35uYeKqGgw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET d3og8t183i1vbg.cloudfront.net/?itgod=761186

3.167.7.138

200 OK

490 kB

URL GET
d3og8t183i1vbg.cloudfront.net/?itgod=761186
IP
3.167.7.138:443
ASN
#0

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint8F:00:F1:34:A7:1E:27:1C:CF:CD:A6:53:8B:C4:82:B0:68:BC:C8:72
ValidityMon, 05 May 2025 00:00:00 GMT - Thu, 23 Apr 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (38488)
Size
490 kB (489869 bytes)
Hash
520ef875f1fcd0f5df6e1e2f9729e200
442a64e7a2c587b5750ad6757cbbb47e38dd53ce
10101c671927de5405cb52f4be14af83b9f210db3d58e4d632cedb831deadd3e

HTTP Headers

GET /?itgod=761186 HTTP/1.1
Host: d3og8t183i1vbg.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 152105
date: Wed, 11 Jun 2025 17:46:07 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://megaup.net
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: _qNtgz7cPnCdfp0FK0vYp5onEyskzluIjI0tiEpIWhkyzutxX1vXPQ==
X-Firefox-Spdy: h2

POST gelnhamforma.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

172.67.138.200

204 No Content

0 B

URL POST
gelnhamforma.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
IP
172.67.138.200:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectgelnhamforma.com
FingerprintFA:30:7C:3A:4A:AE:C3:DD:81:AA:0B:5F:82:5E:36:8F:E4:76:9E:40
ValidityWed, 11 Jun 2025 05:36:22 GMT - Tue, 09 Sep 2025 06:34:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST 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 HTTP/1.1
Host: gelnhamforma.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/
Origin: https://megaup.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/3 204 No Content
date: Wed, 11 Jun 2025 17:46:15 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U8weBG75A%2Be6AhxE92zFL9F9CTDZln1lvL6mrtvpmxZ4hsehTLYhoaa6vfXQatsaeheNK19yaNJZRVnK%2Be6ytas7RfeKGY8sOxpfsyqybeY%2FmCPHfMQWg%2BJLuzapqDBhiph6"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
cf-cache-status: DYNAMIC
cf-ray: 94e2ed461e2556bb-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4798&min_rtt=817&rtt_var=3514&sent=67&recv=77&lost=0&retrans=0&sent_bytes=8429&recv_bytes=7003&delivery_rate=327454&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=b8e9c54147b0cd9c&ts=8408&inflight_dur=109&x=80"

GET megaup.net/themes/spirit/assets/frontend/css/stack-interface.css

5.34.214.148

200 OK

3.2 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/stack-interface.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
3.2 kB (3160 bytes)
Hash
4541b29b6040bc31b760f98e914fd1d7
0521a4f98cdf5e1fde3eeb9cae64fd39075cd9ba
6910b6609166588208a24355d3c3666140dd0d7fcb3884b31eedb72773e44794

HTTP Headers

GET /themes/spirit/assets/frontend/css/stack-interface.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-c58"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js

5.34.214.148

200 OK

87 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32030), with CRLF line terminators
Size
87 kB (86713 bytes)
Hash
5b5a269bd363e0886c17d855c2aab241
042dd055cd289215835a58507c9531f808e1648a
1cf30e59d21d4ae560af7143f5913efcc8222bcaa4fcc7508eb802b5faa9e94e

HTTP Headers

GET /themes/spirit/assets/frontend/js/jquery-3.1.1.min.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-152b9"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/js/smooth-scroll.min.js

5.34.214.148

200 OK

6.0 kB

URL GET
megaup.net/themes/spirit/assets/frontend/js/smooth-scroll.min.js
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (4887), with CRLF line terminators
Size
6.0 kB (6028 bytes)
Hash
c9e3a210d83398f301b3a7049c259676
8e227bb40fe120841829a7fef0ffeb091d179a91
aeda362b1d693480453b895cbcf8b92629f58240c42ba8c643f0d5d338baf805

HTTP Headers

GET /themes/spirit/assets/frontend/js/smooth-scroll.min.js HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: application/javascript
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-178c"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

104.21.112.1

301 Moved Permanently

76 kB

URL GET
epicdn.net/cdn/?id=yAL0RwEQfBj3lgIiAjEyKIcDMK0GOgEwQgJlbkpQTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTM0LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTM0LjBSB0Rlc2t0b3BaB1dpbmRvd3NiB0ZpcmVmb3hohgF6DDkxLjkwLjQyLjE1NIIBBFdpRmmKAQ5CbGl4IFNvbHV0aW9uc5IBAk5PmAHM7L8BsQEtQxzr4jYaP9IBA0NQQ9oBBkluUGFnZeIBA0RTUOoBCDE3MjM3Mzg5kgIKMTc0OTY2Mzk2OaoCEzIwMjUtMDYtMTEgMTc6NDY6MDmyAj1hL2ltZy83MC8xMjQvMzkxL3BTUXJsNWZsMTlsUjBCQXZxYXZVRVhiejdzb3hkYnBBNHBpVTFacE0ucG5nyAMz
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerGoogle Trust Services
Subjectepicdn.net
Fingerprint70:6C:11:94:70:2F:92:D9:42:A9:FC:3B:E5:9B:12:5C:CE:19:B1:28
ValidityMon, 28 Apr 2025 11:17:32 GMT - Sun, 27 Jul 2025 12:14:28 GMT

File type

Size
76 kB (76175 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn/?id=yAL0RwEQfBj3lgIiAjEyKIcDMK0GOgEwQgJlbkpQTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTM0LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTM0LjBSB0Rlc2t0b3BaB1dpbmRvd3NiB0ZpcmVmb3hohgF6DDkxLjkwLjQyLjE1NIIBBFdpRmmKAQ5CbGl4IFNvbHV0aW9uc5IBAk5PmAHM7L8BsQEtQxzr4jYaP9IBA0NQQ9oBBkluUGFnZeIBA0RTUOoBCDE3MjM3Mzg5kgIKMTc0OTY2Mzk2OaoCEzIwMjUtMDYtMTEgMTc6NDY6MDmyAj1hL2ltZy83MC8xMjQvMzkxL3BTUXJsNWZsMTlsUjBCQXZxYXZVRVhiejdzb3hkYnBBNHBpVTFacE0ucG5nyAMz HTTP/1.1
Host: epicdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Wed, 11 Jun 2025 17:46:11 GMT
content-length: 0
location: https://epics3.net/epic/a/img/70/124/391/pSQrl5fl19lR0BAvqavUEXbz7soxdbpA4piU1ZpM.png
server: cloudflare
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5pXXqhRcLdKKfiKKIuJaI8aek2Buhj2CiCtSpoUI6L%2B7Musu%2F4Y%2BJGcnFOjCLJu9mV6W8ynbLlZ76p0WOnxTQQeOecYegiKn"}]}
cf-ray: 94e2ed2dfc3b0b59-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET megaup.net/themes/spirit/assets/frontend/css/font-awesome.min.css

5.34.214.148

200 OK

59 kB

URL GET
megaup.net/themes/spirit/assets/frontend/css/font-awesome.min.css
IP
5.34.214.148:443
ASN
#42532 SIA VEESP

Requested by
https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
Certificate
IssuerSectigo Limited
Subject*.megaup.net
Fingerprint9F:EA:CB:17:3E:61:7E:D0:A0:8D:E9:C3:CB:DD:EE:6D:C5:EC:80:3E
ValidityTue, 22 Oct 2024 00:00:00 GMT - Thu, 31 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (58929), with CRLF line terminators
Size
59 kB (59119 bytes)
Hash
879812fc22af75aa3ae7b5666ca4f4b8
df27469a952b7ee36cc03db471c6198f577186a8
c5d7f0d9e646698b20734ce6dcc2c0a8ecf6ebe27b4b7625bfcf42c4416fb7ed

HTTP Headers

GET /themes/spirit/assets/frontend/css/font-awesome.min.css HTTP/1.1
Host: megaup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://megaup.net/d8c63c29d76352e25144d61989b40393/Streaming.ON.VTuber.Training.rar
DNT: 1
Connection: keep-alive
Cookie: filehosting=hipi64roincggphqforj5a5v1o
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 17:46:05 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 10:04:00 GMT
vary: Accept-Encoding
etag: W/"62594310-e6ef"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (52)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML