{"report_id":"af9d68af-809e-4b09-8e71-a17dc8ade30a","version":6,"status":"done","tags":[],"date":"2023-09-10T20:58:50Z","url":{"schema":"http","addr":"megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"title":"ADVCWAR1P2-REBCAMP-(USA)-NSwTcH-[BASE]-NSP-Ziperto.part1.rar - MegaUp"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-28T07:36:14Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"static.a-ads.com","ip":{"addr":"213.239.209.209","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2012-07-07","domain_rank":34827,"first_seen":"2013-06-01 18:47:05","last_seen":"2023-09-09 19:01:41","alert_count":0,"request_count":1,"received_data":621876,"sent_data":460,"comment":"","tags":null,"fingerprints":null},{"fqdn":"keydawnawe.com","ip":{"addr":"142.91.159.89","port":0,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"domain_registered":"2020-10-08","domain_rank":586690,"first_seen":"2020-10-08 16:33:32","last_seen":"2023-09-09 21:54:36","alert_count":0,"request_count":1,"received_data":1457,"sent_data":404,"comment":"","tags":null,"fingerprints":null},{"fqdn":"parrecleftne.xyz","ip":{"addr":"52.85.242.51","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2022-11-18","domain_rank":0,"first_seen":"2022-12-18 10:40:16","last_seen":"2023-09-09 21:54:37","alert_count":0,"request_count":1,"received_data":736,"sent_data":457,"comment":"","tags":null,"fingerprints":null},{"fqdn":"accounts.google.com","ip":{"addr":"142.250.74.109","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":81,"first_seen":"2016-03-20 13:44:49","last_seen":"2023-09-10 21:01:04","alert_count":0,"request_count":5,"received_data":9523,"sent_data":2973,"comment":"","tags":null,"fingerprints":null},{"fqdn":"empafnyfiexpectt.info","ip":{"addr":"188.114.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"domain_registered":"2023-08-27","domain_rank":0,"first_seen":"2023-09-04 12:22:49","last_seen":"2023-09-04 12:22:49","alert_count":5,"request_count":5,"received_data":2719,"sent_data":3279,"comment":"","tags":null,"fingerprints":null},{"fqdn":"platform.bidgear.com","ip":{"addr":"172.67.74.36","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2011-08-30","domain_rank":30367,"first_seen":"2016-07-27 13:51:48","last_seen":"2023-09-09 20:47:46","alert_count":0,"request_count":1,"received_data":1379,"sent_data":435,"comment":"","tags":null,"fingerprints":null},{"fqdn":"aticalfelixstownrus.info","ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2023-08-27","domain_rank":0,"first_seen":"2023-09-04 10:20:31","last_seen":"2023-09-04 11:42:41","alert_count":0,"request_count":8,"received_data":11901,"sent_data":5589,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.r2m02.amazontrust.com","ip":{"addr":"54.230.80.227","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2007-05-11","domain_rank":0,"first_seen":"2022-10-12 16:01:39","last_seen":"2023-09-10 22:21:45","alert_count":0,"request_count":1,"received_data":942,"sent_data":340,"comment":"","tags":null,"fingerprints":null},{"fqdn":"hw-cdn2.adtng.com","ip":{"addr":"209.197.3.25","port":0,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"domain_registered":"2018-07-20","domain_rank":11917,"first_seen":"2020-02-20 17:50:17","last_seen":"2023-09-09 20:47:48","alert_count":0,"request_count":1,"received_data":17258,"sent_data":443,"comment":"","tags":null,"fingerprints":null},{"fqdn":"megaup.net","ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"domain_registered":"2004-06-24","domain_rank":179052,"first_seen":"2017-09-01 20:45:15","last_seen":"2023-09-09 14:32:39","alert_count":0,"request_count":33,"received_data":1492580,"sent_data":19173,"comment":"","tags":null,"fingerprints":null},{"fqdn":"dmmzkfd82wayn.cloudfront.net","ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2008-04-25","domain_rank":0,"first_seen":"2021-03-18 18:00:47","last_seen":"2023-09-09 21:54:36","alert_count":0,"request_count":7,"received_data":196036,"sent_data":4201,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":75,"first_seen":"2013-05-22 04:07:37","last_seen":"2023-09-10 20:35:27","alert_count":0,"request_count":2,"received_data":150262,"sent_data":871,"comment":"","tags":null,"fingerprints":null},{"fqdn":"hw-cdn2.ang-content.com","ip":{"addr":"205.185.208.20","port":443,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"domain_registered":"2018-11-15","domain_rank":165651,"first_seen":"2019-03-25 23:41:04","last_seen":"2023-09-09 20:47:48","alert_count":0,"request_count":3,"received_data":263144,"sent_data":1436,"comment":"","tags":null,"fingerprints":null},{"fqdn":"static.servingserved.com","ip":{"addr":"151.139.128.10","port":0,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"domain_registered":"2023-07-05","domain_rank":0,"first_seen":"2023-07-11 16:07:12","last_seen":"2023-09-09 22:29:07","alert_count":0,"request_count":2,"received_data":13920,"sent_data":870,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.sectigo.com","ip":{"addr":"104.18.15.101","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-08-16","domain_rank":487,"first_seen":"2019-11-29 12:50:24","last_seen":"2023-09-10 18:42:49","alert_count":0,"request_count":1,"received_data":963,"sent_data":330,"comment":"","tags":null,"fingerprints":null},{"fqdn":"altowriestwispy.com","ip":{"addr":"172.255.6.217","port":0,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"domain_registered":"2021-02-24","domain_rank":951913,"first_seen":"2021-02-24 11:44:10","last_seen":"2023-09-09 21:54:36","alert_count":0,"request_count":1,"received_data":1456,"sent_data":409,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":175,"first_seen":"2018-07-01 08:43:07","last_seen":"2023-09-10 18:13:14","alert_count":0,"request_count":2,"received_data":1399,"sent_data":666,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery.fileupload-resize.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"23a8f0c0a8e9febbf563aef9fb28f2b0","sha1":"a0d188d6535c31b9bce7d874e4731f3a0bd2a220","sha256":"2d6f1126fbf381ae50f1264f82d5d2c55c400067557abf21387ab4c72af624cf","sha512":"f6a0152781a6771d5a14b620708277d488378b10d45ebf7af3d811dca57e09423fd04e7be323e76ecb34cf03cd7db697cdabaed0f8e7699a41423f2b680feb31","ssdeep":"96:oUYxqdjVr2mk6d6/Ln+HtNkiD2m31vPtVRb7VBQYJdUdAZ5g1e5+uoPrrqF:oPiymOLn+cM33RbTJdU2Z5yeguoiF","tlshash":"2202341e3a66317a496321c87fee60c8b659726d1132c710bd4c538e376b927e0e67ec","size":8063,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.873526Z","times_seen":2732,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/isotope/jquery.isotope.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"38c5167c8052d0c73892c3742b16e903","sha1":"213ef9210b4a5c4e73a242e832a08f4abef69a74","sha256":"743b919a337dfbb6d1e8648d0793532d47f8af48059e17f7e32ae8738c7614a7","sha512":"a2846b069959c3f7ef7d045ab897be48909c077a5e93ad8e012a41826df33e0d4385d844597f44bb3af13e2716ddee76adcc9bc4fd89f84b2e83b3d4dcd7a138","ssdeep":"384:1NeN/o4+J2jv0pLWu4A9kvpB8SgDC1aEPtc7RPajcw:hJ2jan9kvpCB7w","tlshash":"1772838d738133218187b2a141bf110f7137aaf66a468cacb63bc5daae7550d2077e7d","size":16045,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-06T04:02:43.714907Z","times_seen":2959,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/retina/retina.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"d3e2d6e7887add1872c197bab95a16b7","sha1":"fe996175492409ca9e5b4f42911c5a69e8b2698c","sha256":"4b75d94f66a12f86bb0c238861680cc589c4463ba29be6889ed6dbeb5594aa19","sha512":"63f81f4ec4fee992eadeddc42815c3a5df5e67cdefbb60993528354c78219462b6fc1b9cb0d11333df87a453f34248e89a8ef5980789a912a88ffcb96f0a2178","ssdeep":"","tlshash":"db215069b69131370142a911403f6da27b36b0fd12834178bb0dc9e7ec31e38966efa9","size":1326,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-08T07:08:33.987355Z","times_seen":2996,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dmmzkfd82wayn.cloudfront.net/zRzdJMjYkWCdUCTNeLQ8OdQJwAwdhXTpdWDcKKFVBLwEudkQ0fTtQAg4RPUhSegdvXlcpUHQUUylUdAMQJlMrDwJhQzldXXpCJ1ZTIV4nV1JhQigPWyhNIF5aJhJ7dANpB2wABm9PeAMTdHVsAAYrXidHTmIFeUoOcWh/BhN0dWwABjVBbAF3dgdwHAZuEn-sCUSJUIl0TdXF7Agd3B3gCB2IFeVRfNVIvXU5iBQ8DB3YZeRRDegY","fqdn":"dmmzkfd82wayn.cloudfront.net","domain":"dmmzkfd82wayn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c1d49e41fd784aae771a043c51dfad32","sha1":"cac445981968a86af1766f78b45bcd46aae890c8","sha256":"f098854a595582f24bb236364d899bd81e58e183e083e4981c7993c8c8f910cf","sha512":"ce7bd609946331a1ecb63be2759353ed5cceddecb5ca7d50b32c32af05105587ca2562397a4a182bda60e0f4870e51adf87fba40212c14452e512aefa4de5f62","ssdeep":"","tlshash":"82f09ee16314d8eadc26eaa271a8f4d7bb8e62ce25409f14521a05e98f1950fd442611","size":490,"data":"","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery.iframe-transport.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"bbf8d80f1841d07cbee13abcfe0a5ba2","sha1":"a69ad62ab8a001e0ea8ea106ac404ac0af88984c","sha256":"4f3f67c68965b4076cc7bc531f648c3a15aa30c1b9cede0486afd4eb4353f8c1","sha512":"459a3691a039e0ad04bd5711823e0ef579ddb7b7e603f802fad21134ed993194ad7e6f83acd00b70b3eaf57e9be01fd6677570cde9635ec1284e5cedc8875e3b","ssdeep":"96:uQYCMNvKUWO38itw7rg8LJfNm/7qZ57Jo0463x:uzMUtJts88Nwqr3x","tlshash":"261213872c2213310aa37bd91beaa0587639b3247125cb70bdee17861785506d2e17ee","size":9255,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.806064Z","times_seen":2934,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"ee8dc81feee7d814fa552fdaf04b50e2","sha1":"b65b136a141dfae39fb0f0f65108708681c1a7fb","sha256":"f3f0a2caa1f4e1835c6ffcc98c47d05c4873659ebc1231e488c7e7ac616245c2","sha512":"0889158e3aa7c246d4922eb1b7046017d3404b86fd088cea08e7ff6e1ac4f4429a30673f6519dd8033c1459673601c83af509b9362afd0500f1475de148b9c45","ssdeep":"768:yf5ADJryRurmWLctQZCwc2e49Ctna3sA3g1/AYb60SMmesa9aDvAxTIUxX8GucXA:huurzCZN4xsPyYxmuUAdIO8Gugpif","tlshash":"d043f73f97185c7b0fd2e6d47c462ad376d0909883819c0dbcb8c62d32eede5699b492","size":58931,"data":"","first_seen":"2023-08-13T11:08:31Z","last_seen":"2024-08-21T08:52:15.956352Z","times_seen":64,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/sticky/jquery.sticky.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"72e348954c20cc27df3e9d9bd3a4905f","sha1":"e50ad79ab0949f7e40e8d0dc4ed38476220f79f0","sha256":"9c9f251d98edd1208a6c45aee90ff4011ed964e87e8bb622ae7a45249f1dae43","sha512":"45dbedd4c37e7d9add86523f5203f885f7c5801100beaec34068d0d78baddd3d421990f8e35a84437913263b3b99227b4af95628ffffb5d2ed82d241bed43606","ssdeep":"96:+gRWOQ8nCGOYOx6TOkDFChbkXUWV/QFEfhMpWF:hAOfXOYq6TOkDFChbkXUlFEpVF","tlshash":"76916747b3226035465faaee9ff9938c32673291d27399147d1d8a460357bb280f0bf5","size":4249,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-01T20:07:09.244278Z","times_seen":2678,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"domTimer","is_inline":false,"md5":"e9fabede7e9d799ca35d72f186e38f23","sha1":"be59bb31e389891c47ddbaca6ceec3b0e58a89dc","sha256":"22bd245d99fdbbb851b614ac2c888e658be2ec4394cac1564daf888d39f33227","sha512":"7962692bc1c6b83bb1378138a3eeb02c11b4d150b64906b140255a919b0eb6b7efd760041745d7322228f009b9e15a4dda47a2304e9304be60ec7db979ae8534","ssdeep":"","tlshash":"52c0000cc0c0f330c000c030000003030c300000c000030ccc3cc0c0000f00f0cc0030","size":148,"data":"","first_seen":"2023-04-15T12:15:51Z","last_seen":"2024-08-21T07:35:29.273019Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery.fileupload-validate.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e083d9e4a3e014b760d70ad0f1e85cb","sha1":"dbc0b1b973f8f77b74baadc0a696e001234f8ac5","sha256":"217bffe44b964e10fe120949b9a143b665a8c03a57ab348713de7d8b2878345e","sha512":"df2c351d5c58319f68b1b276e6e87c0a1b166e01038187842e1bf670bc72a5c6b6ef3bbf4f92a6a6cbe473d7e26bb8888649d2e25e4bcde0f06ef7f0add78687","ssdeep":"48:mtMZNCDY/dvZ7k8hk9KCTU54t8wudDXTUwKlpPkALcrnk5KyR74BalGhy:yMUYDhaTU5OQPKl2AAr6plQy","tlshash":"e281388f761651b14e9327e99b9ca0456174f3196034d268bc0cd3d93b8b4b6a1d1bf8","size":4074,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.874226Z","times_seen":2934,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"2fedc852e7d51f8a2ceddbb0225550d6","sha1":"9189e8f10ae2208e7f57c5a06593b2dec60d6452","sha256":"2577a2ec04e553ea92b5c74f9ef7f69631c906111e6ce6e5722318cfa31ce9b8","sha512":"667d010f8444e110c57bcbb01d1db662569bf3884978a668cf7858c37ad41af6b5ce28d7ba3e7ba3f5b353d90486c1b95b296c36a8bd4ba6d4e4105d102eec0b","ssdeep":"","tlshash":"e161a8ab1e98fab743450e5b3b3c911dc714c60e2651790827c47878ac52e61ffb9ab4","size":3337,"data":"","first_seen":"2023-09-09T06:34:48Z","last_seen":"2024-08-21T07:14:56.227722Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/rs-plugin/js/jquery.themepunch.revolution.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"35045d45f7d1dde1f90457c5d73700c5","sha1":"a7fcee0ab1da615e828e51967c474ae91d768569","sha256":"d72616e59f2ba832c54a0e734cdf0a79cb8730f81a07b5de43864c15a240e221","sha512":"6845d70397a4fb6d9a75c0d6f066270b91566f134cfdf2fcd44d1c9a598592a00581f1a8dccbc7147c53aa7f5da397b8a16d716ae4e88e805fecdddd52b46d8c","ssdeep":"3072:7hXjjqv/V7QCpOgV7TOwSV7T/reUo+oPXaGZ6ZgsvOqnG3csrj/SZA4:xjjqnV7ggV7DSV7/e0nG3cs3aH","tlshash":"dc14d6c8774f2c2f8aa7330b697d18ccd03cd576811251b6b6e6f46967cc448a3a6adc","size":197554,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-01T20:07:09.065586Z","times_seen":2662,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google-analytics.com/analytics.js","fqdn":"www.google-analytics.com","domain":"google-analytics.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f24128d0c9cba7be2916c693427a3483","sha1":"1b6397d496ea896ebc2018b01b995cee4f166029","sha256":"58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8","sha512":"c4950733b44e258bbc817ce6396f002caec1e11a6413fd0038c9baef2d5f1d992b1fd0ec52515aba52faedb52c28b996a7fc063f28a0f45f3aab5e2f91bf5be5","ssdeep":"96:gr5xyIhZ6pQ/d/bTQcFeqZVxNnR36Hc9lDJlQC8dA9Sa5fLtUB5roNiEP:gr58IhZ6pg/bTXVx9t689fN8INtEONig","tlshash":"7ea1cd9b39e650310332bfe91bfaa559b22937605220c161be0c915b7399233d3e1bec","size":4691,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-05-08T08:53:14.746784Z","times_seen":852601,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery-ui.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"ec9758d9508e2fd22ddbdc6d5a28f214","sha1":"0ed7df6cc32be8f9687cda3cd6e109e5de44339e","sha256":"ba0103f765802f299bc7dca5c35d9a00359a0abb10cac136f43caf9c0bf98b7c","sha512":"eb1c05921adc80474acf15d80c04344236031d6de5f05a36c0d03663fba22da3ae31cf07bba7f3b048d3ca9154d3e995202378ce8defb83a294a2ad3f06d6ad4","ssdeep":"6144:HH8aL8lYTUdtP5u5R5x56BHHWi/Jn3qnj9Pj3iEXPW6l/plqEp4lH8aciVAbsuBD:PTStP5u5R5x56Bnj/Jn3Ej9Pjg5y","tlshash":"2994a689f39c266a867a325d5c2e02cd723c8076d601587fbc5d59dc29d883c42bbfb9","size":435844,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-08T06:27:20.389548Z","times_seen":6615,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"3b2b645f4222d68b24139ab42b921eb7","sha1":"e813ac1c41c9f62adc5ee1f9fa6dc3f7e026ce73","sha256":"61ef162ae03bee7f5b25796e12c5f138ced23cd0f7828609326709437fb6dfce","sha512":"a4933258a5c712bc9ffed4e72497c257c7e6605357d07355273dcdbe4bef1667f9500545a3163bfd537e8144b03ba62b476bc06227a46e303ba16686cf650062","ssdeep":"","tlshash":"9f01dc1e34e7c4845533763a03feb68466baa80bb44ecd147a8ea880ef614049e1929f","size":822,"data":"","first_seen":"2024-08-21T07:06:43.160155Z","last_seen":"2024-08-21T07:06:43.160155Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/nav/jquery.nav.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"1ebf524053e3259b38cd33a44bff9685","sha1":"4b073458bfd8526583eaca302f5d21bd1d8b31f5","sha256":"10815e9b5addf60315886f7216b0530fd58fa8580ca6a81687f14ffee517c619","sha512":"eb10aca3c7f790fb2f061689c584271a05ce56b0c0f0877cfe7ddd32dff156433cda84c780bec7b47694c04cba33aaabce5e4523818a1fd1c1c8bfea24516abb","ssdeep":"192:FIZRWftohx7HRDYAEUvOE64occ6tXS6LCRH5:FIZgfuHHRDnEI64rc6tXS6Le","tlshash":"70d11236663e3631ccab2b3da4179285363b9d5bb00d113239b57c80e4dde29e263e65","size":5447,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-01T20:07:09.06894Z","times_seen":2672,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"8ec8c820ff45305a7b04aad827b761d2","sha1":"c047c301824ee4b197bc4d2bd1d51f17efde9026","sha256":"b670357679792925767158a737daa9b9a7a19212624d162d9e4e2bc81f2d4944","sha512":"25de24fdc3925d23587d4f82c4fc1fcfa7c50b1ba889e842292fd3365de6d2d4b13377f5982865a03514082686d50b37f69a35f004a089a5b6d725e0c1834d4b","ssdeep":"","tlshash":"63010229ff27687153d656fed1bbb104d8917151d411d00a40cedc18aa3cd99d83440a","size":774,"data":"","first_seen":"2023-09-03T02:31:54Z","last_seen":"2024-08-21T07:35:29.273747Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"e6096ea93da6ec531ec81c8acaf77ebf","sha1":"810f3bf61851063ec1162938e7ca55b512fc537c","sha256":"b37b9a8b330d400b682e4eeec2c10a326aa384766815b355cdb472263abd00d6","sha512":"b92584a3479f4e978b8b1251760af9d09fea7237bf19eacc56ffadb9cf98c844c87ce5a0b1449ec21ba0f11df458bf60bc38033f5d6206ba2419f936d2179b7e","ssdeep":"1536:XhmLghNU9aMDoGgqYp3ygubrRn0mQcg+40nDenFtv3Wf5rKevn:XhmchNUjDoGgqYp33ubrNvQcg+40nDMK","tlshash":"c2532ad8a1436078cd8ad190546fb80bb0663697c4faef586cb2fe456cbc1478096ff9","size":63744,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2024-08-21T09:37:42.901797Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.adtng.com/get/10012456?time=1614803572912\u0026apb=ooddNHdLHTPHNVS4ASOpprpmtrdTbbZNLTK6V1Esqp6pXVTTOpmdQ6ap0rpXSunqoppdRNTRPTO6iamieml0rpnSuldK6V0zpXSumc6ujO6uzfi3TTTfeXWWzPW6q663euvSeWZ0rv9.czijBuZznSuldK6V0rpXSuldK6au6miy6qahwfY-","fqdn":"a.adtng.com","domain":"adtng.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"70706313fb93351e8f1040eaabd75e27","sha1":"ced0e6419eeb845fec13844780ee3431cbe6b63c","sha256":"3c3f577d6cf858ea89de2dfdecbefc739187b49010823b1b6ed1b5a5ae304a50","sha512":"d7ad5720d402fbfe9b48320728b80f2ba7daac7f857b41e3ef02edd3dff7736a318c3da3c95e23ed1d03e7f83ab7399c6e493b3456c984bcdb43bd5c2e36550e","ssdeep":"192:0rMA8yf+yXDvqzaFASuxeCUMyyX8H9t3JqysSCbSzlM+isWDs7ObNw:0rMA8yf+c6sAOCeVoysUz7Oby","tlshash":"9272d6be7243b851a66b296280ef210e3f3599a3b81cc84084d6d5d57d34dbd937be2c","size":16188,"data":"","first_seen":"2023-03-07T01:02:45Z","last_seen":"2024-08-21T09:44:32.264328Z","times_seen":922,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-108868042-1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4c3777d3d4843e0f047131db74aba1db","sha1":"2447eba2a64e695369eff7c64d706d9e111a0ca3","sha256":"0cb4777a8a28b9198b06d1155626f801c6fdcfaf33ff9d8a278e273ccba9f836","sha512":"dc161c2bb1bafe421833663771947b202a553d3154d14f7afb1b1ef55aedde7c79a55f38e44909c44979e90e489ea1c32b0cde2db971ef9031da678786c3692d","ssdeep":"3072:y069zayXPCBrFFiKp0nUm4k05oHgzZXFWsX9eBvlPsMaBHUp:3UXKVCt16oHgzZ1BX9Yas","tlshash":"8b04e5d8b393b16682a3b4b4503f010bb17a6d92f85cccd4e189d5d42eb8a99417bf7c","size":187291,"data":"","first_seen":"2023-09-10T19:51:48Z","last_seen":"2023-09-11T04:26:07Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery-1.11.0.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fc25e27d42774aeae6edbc0a18b72aa","sha1":"b66ed708717bf0b4a005a4d0113af8843ef3b8ff","sha256":"b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682","sha512":"87d90a665c15d71ac872bd8bc003d9863964c7ec7ada6370b902b93c0bbd7770fe25730d946c7c6a465baa95efa74bc0e78af3f83aea615af35060cc8702a6c1","ssdeep":"1536:EPpEy5BMibZGOj/bEe8v+/UWf4IhvAuCh/jqkODZ2D5N9Rag0MOIdSZAgtgoX5Yn:bIO/e2D5c4LgtImLja98HrK","tlshash":"cc93e8d9b6d2706297b730a851bf510bb17698eab80c4c60f058d8e47eb4e8d507bf2d","size":96381,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-08T08:51:45.302279Z","times_seen":25077,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/canvas-to-blob.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"f1b353d74742a0d0d8dba4a82f07c050","sha1":"a1b03792ee014e57e16a27cf343aaad13af08666","sha256":"233a048b5eab2ecc75e2f72bf9a65de6ac06e697746156ade5b144305d76ca3a","sha512":"07d8a774ffbf52cf7f90c03b3b8d615d331235c7ccf4f750dd9aeec8a935addfd8fba582d795a97c9b9010c37d1710dfdc1ed8c86342e9a80335ee7149c6b3e0","ssdeep":"","tlshash":"86110084f1922461919b225c40ef4cc9f2b68d2146c414a0c2599fcc5b74efea3faf58","size":1032,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.853596Z","times_seen":2741,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/zeroClipboard/ZeroClipboard.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"d31e0426a59b32581835680633809ea3","sha1":"98caf983b9349fcf2a32d6512f998ea9a557a90e","sha256":"c7fe89a030ea54a29616f0a473366e07d109dfb775f2afa050c2de82e3606fba","sha512":"49edd2ac8f4e60397a150b5b033a9096cb9702a4d81f2456a39870ad60cd2f3d7268c755130cef05254e3a448180a153882cbcdb8ed93ab272975da0f0b13774","ssdeep":"384:hl+ANBtIu13EPgC/5l3IkOxteCYMKtpfhtw7gD7ml7D0Qg0ONj8yegeiOpR8yeHF:/BOu13EPgC/5l3TOxteCVKnfhtw7gDSg","tlshash":"0f622d087afa197bd147703e4b5f600c3638815ba648dd44bc9ceae02f64d24a5fbf98","size":15314,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-06T19:29:55.550775Z","times_seen":2889,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-Z9TE2LW16Q\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"48d40988c629057f932cff26e09be78f","sha1":"5e4df07274b8131d5956c909e6ea878b6e2690af","sha256":"230c181f68eb015fac89edaa4f71723c8006e4bb73a42f7994044a993dcbcda6","sha512":"fca83e74bbed9bf52a6d82316c3b0af8158fc4fe2053cb8c3c35124f970067ce2530cf3bc6a13a88657695d482040081489c6f5967add603d3ad8d5c544985a4","ssdeep":"6144:qUXKN5Gyldd1lSHgzZ11a6wod1neNUb9aIg:X85Gylx3wA1nef","tlshash":"232407d9b3c2706682a6f4b5503f014ba57b6ca2b85cccd8f189c9d02eb4a994177f7c","size":226490,"data":"","first_seen":"2023-09-10T18:53:31Z","last_seen":"2023-09-10T22:58:52Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eventHandler","is_inline":false,"md5":"32b877ce91cb6ec0da746bbb78289340","sha1":"53b76e03f4c11bcf201daa086ab80af5c04cdae6","sha256":"4e203fca68fb538525a6becc21237e2985ac55a295fc4ff3c4d75478874d7658","sha512":"b9f7f96b8d7a0c7a4df2cd289d7b0c90ec7c4c820ce49b6302a40a65f30826afc70efccd43c30a390baadfdd56ffe75447e32506bd8b92732b2a0e3b62434df3","ssdeep":"","tlshash":"1f5000f3030c0f000003fc0000000000000300c0f03000000000000000000000000000","size":8,"data":"","first_seen":"2023-04-10T17:50:31Z","last_seen":"2026-05-07T04:29:58.905344Z","times_seen":2145,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dmmzkfd82wayn.cloudfront.net/?kzmmd=761186","fqdn":"dmmzkfd82wayn.cloudfront.net","domain":"dmmzkfd82wayn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8ceeb49f6ab8a24fa570e59f173264d1","sha1":"2d927bd73f7500caa6db57a28b12b609a83cea19","sha256":"43e25cef8336393afeb61a0cd87c15efdd66ee3a73a9c7d63561cfd6abfda2d9","sha512":"735ddfc51898667040f50fb2546831d1f5b81948db8542187c24427b84cbf39e864aed2564894c3c5cd7ad140dd22495fdcd5f81ffb7aa99a620742c3d020241","ssdeep":"12288:Wi0yYh7VNo6n04cuhvT8ThyF8Ep0omOmJuyg0wi0yYh7VI:Wi0dJVNo6n008ThyF8Ep0omO6Xg0wi06","tlshash":"edd46d59ba523529836374f540bf134eb23e466af80449d4b49ad8d06ef8e4503bffac","size":620792,"data":"","first_seen":"2023-09-10T22:33:57Z","last_seen":"2023-09-10T22:58:52Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.adtng.com/get/10012456?time=1614803572912\u0026apb=ooddNHdLHTPHNVS4ASOpprpmtrdTbbZNLTK6V1Esqp6pXVTTOpmdQ6ap0rpXSunqoppdRNTRPTO6iamieml0rpnSuldK6V0zpXSumc6ujO6uzfi3TTTfeXWWzPW6q663euvSeWZ0rv9.czijBuZznSuldK6V0rpXSuldK6au6miy6qahwfY-","fqdn":"a.adtng.com","domain":"adtng.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"45f28394bb241fd85cd7f805fd2c731b","sha1":"72b9f6c9fe86e2bf3acf408064ff9e67fbaad268","sha256":"7ad0a67bb70d657269e6e02a763e5b7f7dd4e30ab1e21fc1266f2cd2f5a4a27a","sha512":"ba9a7474c2c73c5322c59a93c45f9011be4cb29d31283e620126a557adb420f1793d6c68f848648062f4ecc6bc980f2d5d79e08c51ef04a75ad3ce7dfd703dc5","ssdeep":"","tlshash":"6e2121fb250280fd713729c58f2b3f8471a9a3055d98c440c41edeb5fa4585bf4326e9","size":1293,"data":"","first_seen":"2024-08-21T07:06:43.166218Z","last_seen":"2024-08-21T07:06:43.166218Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hw-cdn2.adtng.com/delivery/intersection_observer/IntersectionObserver.js","fqdn":"hw-cdn2.adtng.com","domain":"adtng.com","tld":"com"},"ip":{"addr":"209.197.3.25","port":0,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"48c80c7c28b5b00a8b4ff94a22b72fe3","sha1":"d57303c2ad2fd5cedc5cb20f264a6965a7819cee","sha256":"6e9be773031b3234fb9c2d6cf3d9740db1208f4351beca325ec34f76fd38f356","sha512":"c7381e462c72900fdbb82b5c365080efa009287273eb5109ef25c8d0a5df33dd07664fd1aed6eb0d132fa6a3cb6a3ff6b784bffeeca9a2313b1e6eb6e32ab658","ssdeep":"192:/u+H3An7ybVSpBjen6K1GegJjgF+TDg91wTr1PH3kV/LQB3OJIuq/Y4RBF4B3ve:/vAvUxEtkmZZY4RBF4hve","tlshash":"4572954c7250f0f743c39522413f120ff3369898b15a90687369d8fa6cb889e6267f79","size":16885,"data":"","first_seen":"2023-03-07T01:02:45Z","last_seen":"2026-05-07T04:29:58.758542Z","times_seen":2391,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"ee618c67e37ba00c51dd0f8a15fadd0f","sha1":"744bfd9a50c3bd7720efbf479f82ff8993347a47","sha256":"3f8490eea2419103d5ce0c44a77dd106e27711f78862b516beda6b08c17cd185","sha512":"0aaa2616d72d4291ac79a70cb6d038d5041f054711bdefdd509041e5f5cd1a66cd8a95f0947495119ee7e3d879a1f56b7147e2bd94dfd3637c1bb7e0c98dbb1f","ssdeep":"","tlshash":"64e001262002903e282618557f6e6a0af84f9c29aa98a1520f064131d0a781be900cda","size":238,"data":"","first_seen":"2023-09-03T02:31:54Z","last_seen":"2024-08-21T07:35:29.283379Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/clipboardjs/clipboard.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"55db0ff82a3b6b247844ae0d07d85fc6","sha1":"9bc5c7dc92ef0b31d212a66bbdff591e484f427c","sha256":"404b016f5c9a369726eec56a280c93478da17a52ed0f1fee116838330772ec70","sha512":"1629c5ce3ffa898e5354079549676595161bb73eca975b76a6af4ecb992eedca31184848c704c6e8ac6c6efc7c0b96ed44ab00ef3b2dde6a61374d4c058b0b82","ssdeep":"192:K0Gfh/1JmtuV6qDpOJ4GQUrAg9fvsx1tkvcRIIS7e1t:nGZ+kV6Kh8E2fot+Iaef","tlshash":"df128688f290b1b1929b607b417f420fb372d45da02e50a4b65de4f5ad78aad4227f3c","size":8854,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.860083Z","times_seen":3673,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.adtng.com/get/10012456?time=1614803572912\u0026apb=ooddNHdLHTPHNVS4ASOpprpmtrdTbbZNLTK6V1Esqp6pXVTTOpmdQ6ap0rpXSunqoppdRNTRPTO6iamieml0rpnSuldK6V0zpXSumc6ujO6uzfi3TTTfeXWWzPW6q663euvSeWZ0rv9.czijBuZznSuldK6V0rpXSuldK6au6miy6qahwfY-","fqdn":"a.adtng.com","domain":"adtng.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"e3eaead0c8fd371936aa1c41788ff3f0","sha1":"97403852c85147afbfc436c60c4ed95fa9ddd4cf","sha256":"f776d6ce0053641611d8950f2b9d7e9c33ee3719b74a683ca7142465d0f43a62","sha512":"b91567815d3b61add7e1abbb7809de0a7178a55d596e0d9f043278bb493b9f3d3c7e080d1f418578c53b2aa367dd1fa855d5a4edc180379ae86e56414e53350e","ssdeep":"","tlshash":"10114f4228405a6cb02662737e2e6ba45367069328c304b5aac3cd8f18700fbe89037a","size":1054,"data":"","first_seen":"2024-08-21T07:06:43.168502Z","last_seen":"2024-08-21T07:06:43.168502Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery.dataTables.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"737f853e9fd6a31d62f5028e88663c9f","sha1":"cf144f2ab49f53a69fbfe10d3588fc23437d2736","sha256":"6c3ca64b7acfdd29b3ca6f1b9b46696369abd462d4546182085c347f72211841","sha512":"c148b09fba278ea4a75f57817a8be87abd06f9a6d9a46a23619a32a4bcd4ca4ac89e73d969ecd359bfb2b6b09c7a25e6f5bec05b9435928f585847c47026d91c","ssdeep":"1536:9Wbx6yktBJR6wIsJLl8Td/7oHfCkYQJtpG3:EOMoa","tlshash":"7763ea1923043e2ecbef70d401af8e5e647069719a895070a169f8be2d76d7910fee7c","size":69604,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T23:57:06.640953Z","times_seen":5613,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/SmoothScroll/SmoothScroll.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"ffa5849037af7c5e6fc1971877859645","sha1":"deb7c1eca1d4ed43dfbf33442047136d5a5f41a9","sha256":"8fa669071ed5fb03e9954ba360885e7ba95fb77ae5448dfc313c3c01202b46aa","sha512":"0aa82ab0804da9c2cc5df51b5a46fecea2cad1fcdefac18130bb910c2ad4eb5ba68df54cc34f7a8b893d01e0b256839d657aef8f8318e32433c0929d1a8dfec1","ssdeep":"192:ZqaMynq1A7BP8HdC6ibNlko/io/pbhZE2o:vFqOlgdC6ilxG2o","tlshash":"66f1247bb912207596177faa07ee811a3576314001a7ea6b3d0cc45b1b58b70a2f6ffc","size":7391,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-28T03:31:18.073783Z","times_seen":2693,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.magsrv.com/ad-provider.js","fqdn":"a.magsrv.com","domain":"magsrv.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"0d65d2af9888847a0995c06bffbb6f1f","sha1":"bdcd31715ffc48a61b59a8337502d174e1fb81a7","sha256":"93e8a7072d356d288d3ea294046246618c560100f528f062c64be7f504151991","sha512":"4aff66898432c3fadeff8e08fe348467dd80fc1bc3d56cbdbed5a02a6cd2ca0a6e9fe2b993c643dd9bd427f42af6c32c076e7abf8b7119ba39655254c597f93a","ssdeep":"1536:EO6Z8AzEToR5L4xFG7kKZcxOxw8hwMjNOKVhMfhcgAHZ1Z8r1Z1AdOpkCOZkMD+J:LVyp28VOkPD+Y38C02KV3Q4Ql485I","tlshash":"3ea34b892b92703452d3a12d69ff57093331407ee90e4894bf4ee8a427aded65173bbc","size":107304,"data":"","first_seen":"2023-09-07T20:08:23Z","last_seen":"2023-09-18T13:24:01Z","times_seen":181,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"08a72ecd78e05b8ae48c7f4d49f72807","sha1":"fd2fc992454dd3f4fa504e1d079539dd24056950","sha256":"fc158b597b54f1c32d11ede2d269a63fc51a8fd3ac173c20e38953982e0071d1","sha512":"d7f75bbb1a93e7b7c0bedd3fa4e5dc38224d741ba0c4388d9e35d999ea7118bb49aff8fb00d009882c6c1563327a8a8035addb0157a599e812f2b104bdd4a0a8","ssdeep":"","tlshash":"b1418c7a1c2447f2039243f3f73a28cddf43c696b5148897dc246c96586092dfa63eb2","size":2204,"data":"","first_seen":"2023-04-15T12:15:51Z","last_seen":"2024-08-21T09:37:42.905556Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/custom/custom.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"2d40e9899d9667475ee4a7d5d9731311","sha1":"6e3b230480bc36ce2e9b0622a48af5924535a72b","sha256":"a72e6ce7c10983fcd6773f0db77f049b7a85039d3e7212a12ad56fbb8d70a6e6","sha512":"853026bb54a8884baa86d039bef045bcb24de596df4c4defc060dc8a4628cdd0274b8a0aae821b3b378b1775f4772ee332113fb62b21a78bceeb69cf99c352e2","ssdeep":"48:IjcnEj1+HNc2ozMpcwkPoM2dXFsGNMkapisii1iMwGCKQEqh9O2lwmbKtxCKR5EF:1Zd1uqAtGwAs6Vp","tlshash":"e5b1fe7c6e1f7cb90993253b683e94c015af3c4a240242217d4db858d3deb28ca7ade5","size":5152,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-01T20:07:09.15513Z","times_seen":2670,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/gauge.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"aafe893df6f86140460a76d58dcecfe2","sha1":"fe1a74890dc8f040f5f681041663b96d983163f6","sha256":"2d9574ce1b6890bd6ccf1ef3d04fe1328f35c5bbced7b6b331459119ef4fe480","sha512":"0af0c5d095719622b6555f20180eea104c913dc391440da688fbe90e15ef95fc344e96c6026a101cc9843f67b38b028bb0dcfc3daa0d7ece328e795ca67e04df","ssdeep":"384:2YOQ4fji+TgW3nFcnwNUsLyrqK9dVSK9fa/cZ+O45wIh1CX4:2YR+EKvYJ9Z+twIh1CX4","tlshash":"f182a38a726b1629dbc796ea101f035d933bf669044951acb570d2fb187ee01823fbf4","size":17848,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-04T01:05:04.172186Z","times_seen":2708,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"altowriestwispy.com/tysaSHG1FMaM/18410","fqdn":"altowriestwispy.com","domain":"altowriestwispy.com","tld":"com"},"ip":{"addr":"172.255.6.217","port":0,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"5340000c00300000000000000000f000000c00000c000300c000000c00030c000c0000","size":5,"data":"","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-05-08T07:04:09.064913Z","times_seen":14272,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/animation/jquery.appear.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"c2474adb496ade0e96aa9400a3974307","sha1":"9ab48147ecad83275d147a61dea8df8a968e5a0e","sha256":"fa77538239ff2758ff9fa8ef646cad3e9ca818dd13fbf15ff3ca8a8bee173c69","sha512":"06206b23a91b29c1cd11541ae21c8a4562066fc197cdc3ff3f9e0cdb693697dd9f6fd2a8c533d2c05a494eb268820e701107d3e0302a9e8a55a4e0e9cd6e878b","ssdeep":"","tlshash":"7e3112aa34db3e6647f7712f7a1fb2462121943b16829082d9eade3c3df2c417813e14","size":1478,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-08T07:27:19.118703Z","times_seen":3885,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"keydawnawe.com/gwZ1U5hjA8ii/32575","fqdn":"keydawnawe.com","domain":"keydawnawe.com","tld":"com"},"ip":{"addr":"142.91.159.89","port":0,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"4fc71bf68a1d477bd1523733e34d1e90","sha1":"15119105cffbe108b6cf290146ab02c9aa8517ba","sha256":"74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce","sha512":"e8e5f5430841f9cdaad492efce3fed11992913ad2b714b27c6fd147c55b2c56dc1b896635f24c2b180d4215c70ba9a042847d7d9cf3ff8a67b636a4c0ca1ce3d","ssdeep":"","tlshash":"4350003303c00000cc300000300300000000000000000c00c000000000000000000303","size":6,"data":"","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-05-07T13:26:00.258624Z","times_seen":10641,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"platform.bidgear.com/ads.php?domainid=5593\u0026sizeid=12\u0026zoneid=6192","fqdn":"platform.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"172.67.74.36","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8e5953f5e79f282d1a5e8f2a8aa86973","sha1":"38dcfc04740bebd58cee0d6da78e9d2c544df20c","sha256":"da1daef9cc7d7dd9dc582bc9bb48701a0f984b851bf43ff8637d809c8fe779e7","sha512":"9b195ec55ed3b753257e57e1c575bad2694f1db16a8add1c7781b764f910f34ec6d57beadeec849dfa95cc7ad9ffb2d1381aa8f31306b73b19e6958c52279e9f","ssdeep":"","tlshash":"112175107e23ea3a42fb6ad6d476f71cd452b129dd26d88600df8535f564eec5d208c8","size":1330,"data":"","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/rs-plugin/js/jquery.themepunch.plugins.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"04426bc66c09c8881b5b329310e903e9","sha1":"ff7f2f64ed5938023a91050e27f22f77becba78c","sha256":"ebf4e570b96d611fa540bb8745ba518a1005d50c4589a2c2cf3a60a97151a184","sha512":"9c87ee7ad099489801e0d6f8b241b7b6e77a7acd612cc5102716fe80e22a70f12181f927bd75c1bf145256de3eb56165878b28a2b45665231cb0b1848121275f","ssdeep":"1536:ItIeDCPRC0ebI00ZH1sWwTSww1fZbls9prC8BfTGnKDFtWm88:IWEIC9I0gH1s5TSww1pm9p2CtWY","tlshash":"778319ce7261702006e720e6553f0a47b237a999b40d456cf258c9ce3d7c98a62bff76","size":85185,"data":"","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-05-08T03:58:02.317259Z","times_seen":3054,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/load-image.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"29c8a390a6c8038b015af4fda1af1c38","sha1":"516b1c42416ad647530192872785a5b3b35bd471","sha256":"b49885ee9e161e5595dfe428642255234d8d557c85699bb8bba72499717498c5","sha512":"c90051dfe89e0e643f8bc0244b55682c267c0fb9eb6c58d86cb5198b2bb2b4d9ad5cd6357aff66f39b207e9f461a216c91919e8fcad4dbc23e5638d140e384c6","ssdeep":"","tlshash":"b051db6c725874e522250993226f8649f518f4a6574f74205714d4ccb4becef837ef09","size":2546,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.823827Z","times_seen":2742,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery.fileupload-process.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"8f27159561d43ede851b9b84f63cd727","sha1":"c4672cc17326d35d092741dad007ee72b2c13095","sha256":"f6626568ee243b737cdfc12efc464eb97d786bdcce590a0326427e11f360293f","sha512":"63dc471e42c751f05753b4e182fa9fa3a6c17154de71e8cfa5725d87371fa6761a6237adf4113068c107a8457bde35fae6a3d8e95872f0012e9dc06d003adb5e","ssdeep":"48:mvMZsCDY/dHZC8hiXjuFI7v06svN9/IkQIQxqb8ZMqCDLARk1al8lc5MQOFqK4Ms:v7YjtQ8aIb81Cn0QXlVgt","tlshash":"76b1dd0bb51e113246db3ae1a7be414b7aa8f22d0332c5343d6cd7c64f5446692d2aef","size":5302,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.844619Z","times_seen":2733,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"2c5344f3c45196fa90087fa5091fe077","sha1":"87ccb6407143d5f6e903e8ca63433d19b62d3dca","sha256":"b3d346aab31b4ed5487d72996581dbff3bb212be0b8cb54e141d3b6204757375","sha512":"e229c1739e508f9d2b1fa910a74f48afbc5c8da8182950fb8d24153cb54e745f7f5cf2be9695f07dfb2c30d7eb69d3a40cf070bd063e8232f231bb66ae225168","ssdeep":"","tlshash":"f4f0262750aa44d0d9372c769b7e431d6123e2037e5bb8007b4daa581f1f01f42ba3dc","size":544,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-01T20:07:09.355941Z","times_seen":2566,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/nav/jquery.scrollTo.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"1e4ba2a9c6f022f7c920cd2e76d95bd4","sha1":"f15cbf023a4a1e1c810eff679cc9b35b81a6f2c2","sha256":"afff7cdd8f6f0ca43b26573840f5ec5d3302dc1fc2b2209a1163e3978c9d012c","sha512":"972050054ab1c3c8f4e6ea8edeb48800fc6a9f90cd736b35fbba35bd9a42856a55be6c539a4dde51cb9a97efa5a156009af8fc57263dfb34e27b92de601c73b2","ssdeep":"","tlshash":"a55197947159310443d6b89a31ab6709ba7c69e7b01b6e506008c8d9ad38777053bfbd","size":2433,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-08T09:00:46.628999Z","times_seen":2919,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/sandbox%20eval%20code","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"92b651082ce234f66bb544e678befda3","sha1":"14c21c55ddce43b6f677caadf51d4ab98c6a3df8","sha256":"25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded","sha512":"b4fcbc037e0a3d91db2a624921e96b878e9e18dd998ad5649d77d7d053faf28b09c8725a0542aef702310bf85f3037b70985c274db8acabd021efb171d41f361","ssdeep":"","tlshash":"69c02be3f74421ae2f1156f2b810e043a2c62b015ae7c402f00e003f2440fea4eee1e8","size":147,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-05-08T08:53:14.751745Z","times_seen":854258,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aticalfelixstownrus.info/QmlxU0ojCxI+dSNUE3U/MAVMdngETEMVLi8ECzgsJlFDJCs7B18wJi0cFTU4LQcFfSQnHVRhDDg7CzcADwMoOB0BDSQQHgwMPQJyDQ0gGT0DHhU7EhYZFQQOISI6FRwAJQYWPyYCIGMsFh0gEi12OyEGIhEMFjc8GgUSIx8KOCQGMy48FRIHEyMdHjgGHjs7GzgFFQsSMio7YhAWICdnJBRYOzsbKw4hBDMqJzgVfyMjGRl9Jig/IwhwHjARJ3s5FBIHFg05BTkDKCghEisNOQcnCy8UBiUNCiY7b3AvMzsEcg0mJAsAAycRKAMvQjctJh45EhA3LB9+OQE8IhkfCwVBBy4aL0YSLSZaM2AtAStDGgwnPyM1BBQgBwsfdwAzAnIGK0IKECc7IxcvJTBXOTktBwFuKyUeGWUtBhsCGTggXTg","fqdn":"aticalfelixstownrus.info","domain":"aticalfelixstownrus.info","tld":"info"},"ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0e2cc7a933670a4b11c63a827a2502a6","sha1":"b59fe51f5db91b9d2e95c02e57f9504f7ee908f2","sha256":"c8da29b128fbe1b0c597f079c70f6350d468bb337af97c9b2f2cfe28428a997b","sha512":"bdfd58d2ffa509400bc18d5a70775f4de47275dbd01302affbf5cf1f2cc6110f3955896c3b955466d7fbd8bf0c4d3a7e2fba51909470ae114a6a1310e2a7cc17","ssdeep":"","tlshash":"7b51f28d34f3b08183b67025513bb89afa388a94934cda18863c86bcbc711ed6317f4c","size":2978,"data":"","first_seen":"2024-08-21T07:06:43.174284Z","last_seen":"2024-08-21T07:06:43.174284Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery.tmpl.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"411df7e2bc659d35015f7fdb7432b331","sha1":"848575bfa595b60987cf60ce9efca64ede45a20b","sha256":"9509c1e67bedbaded059d0aa8d5cee65cee3c9e3f43a5952a7a233cbc10810ae","sha512":"b0cebabb6b349bef206566c5c3bdb0671a63e37f2614d8e400050a16a649c80bdecf68f4fe39bec93a5e6e1b6221c7d91234c057da31daae294b078f42a26c7d","ssdeep":"","tlshash":"6911adca3465e086c1d57d20607fcc2970aa58ebe2995628c286c7a83e314be9037fb4","size":971,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.869257Z","times_seen":2751,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery.fileupload-ui.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"6d74ec0b03e02825fef8093d64629489","sha1":"de746f1c7aeb0927541e1d55bdea4672bb47aa73","sha256":"5d4a5378ed9f8bf68dbfb6246761e6d44e2b11fa626d8b4f8d1d6a779f037cd2","sha512":"a61efb4485d6107a74edf5dd6f3cf66d3e7cdb2c7469a3e5fddb3a1005133fbe7b2d4cbc15eabf7cd10e25bf9a344287530701d712bafccbdbade6d114b2ae42","ssdeep":"192:jherScJi1x5JyGKvJKmaAiWCfK4hsaMCSC/N2aoItnEiu7x8MKWpKuTKErCmE+N9:Naqb2aLhsapa5iTDwwYwpGJ","tlshash":"02b2ff0d7aa7a114826770bedbaf540a3225e42f190acd193c5c53c4df9493ca2f6bf9","size":25071,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.811008Z","times_seen":2726,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/global.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"b62957c3c4788544cad00a761303b836","sha1":"0436c4efedfe2075b24a87ff969034b2e258e609","sha256":"ef8a1ff709899584c91496da397de0b0fcab774e3b6d258ccca9997e592e84d3","sha512":"e04864ea59a92688ac5cd2eaaf92a75e9b5fe0a98cd9235afac14ee54dec2ebd2f14f2538708726b852b6b5e7b2e69b5bf8e3acc0b9d3b3ffcea1b34a03d2703","ssdeep":"","tlshash":"bf611008a9f292a18a37a86e07cf961971599503000cdc557c8cabf4afd553acdfbcf4","size":3417,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2025-04-01T17:36:27.456224Z","times_seen":2491,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"dbc6f821e8ff7c4828576a426ee2d4e8","sha1":"f043b3149f201934cfc9ff603023868202ac2141","sha256":"68db8c28a54f45ff784d9386fb96e04dc8131f033f5f68307876dc2f1652ea59","sha512":"52367de364d9ace4ac9b8153c94f9d61db6f3321d48cc988a69c63c3bafb68fb828cac5e6545e80bb98ff384186877f11fcc5a7863a32eefa7f466ab29aaeafb","ssdeep":"","tlshash":"06c02bc8350a0cb185f727008b3ffb00f406325498d05d33480973085d20f03d754800","size":155,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T12:02:11.58964Z","times_seen":5371,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/js/jquery.fileupload.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b85ba9fdc07788f5208002e4588c1e2a","sha1":"f4a5b283e901f573f1237b6a096da4c295e8a65b","sha256":"f809de94a782db6c7c5bc85db8bc8f6b05b1a473f736080b3ea8377fd6ed35cc","sha512":"7bb50a5b8a823b51badfba73950f0337d1b44e15306ee1c89ad60e3a71ebce0330668ab05faad288541dca0d02902b3a89a599a437f1b789e063944654ad387e","ssdeep":"768:vch0r9GOvPOhSF7pzC89Na9UNdO3gDe2VOk4:U4v0SDzC19OXDe2VE","tlshash":"9a43430d3ee7221584a771e89b9f64057634e42f290add153c4d87c4ef48938e2f2bea","size":56276,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.818133Z","times_seen":2724,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/sw.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ee51131e416458b88d6da4e6e6959ca","sha1":"a558b24bcf81763754e35a5fa5e46c6d6ad5f8d4","sha256":"db3608f955dd3404bc375f0a0a7a5c8e23515e7ad1a0b9078c246e92e4050734","sha512":"c15181f56e6a1d9644315da37a99789bd77c9bca734094caf065e54d9b525fc5d1268821e707398529a616c78140e6bd4c594cbc3618335d40b757214b4b1c58","ssdeep":"1536:vSpw5PMhOhJ6ZbaL7l65oQ668X4BtmG9vpjthaoytu/W:vSpwVJ6EXX4rvttkbtuu","tlshash":"31a309497252389617d7e03e177fa5cb6d7a4a09bc698d974051c3c02d2a0cec6e3fba","size":103036,"data":"","first_seen":"2023-03-09T23:12:43Z","last_seen":"2026-05-08T05:58:39.805616Z","times_seen":6651,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/bootstrap/bootstrap.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"ba847811448ef90d98d272aeccef2a95","sha1":"5814e91bb6276f4de8b7951c965f2f190a03978d","sha256":"898d05a17f2cfc5120ddcdba47a885c378c0b466f30f0700e502757e24b403a1","sha512":"bced99d9331614757643273441a2b8921103382949ab0e510f386c453ec2a2359da39680d8a169e6bcbe7531844eaf5f598560f0d133d3fa3a9f6c7502b148df","ssdeep":"768:jryxMjJYkskKzykVtCb+9C8agZMdyKHfivbOCtFKH:3HbjZC7w","tlshash":"f1d26506b2303161079fb2f5515f020b733a6a7ee906907c38b99ae63d79c587167f39","size":29110,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-08T08:54:04.74757Z","times_seen":27665,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"megaup.net/themes/flow/frontend_assets/js/isotope/custom-isotope.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"76cff321a3da409f04f1b9d25319ab78","sha1":"f9de6b54f2eeeb85ea43693bee32dc930a252649","sha256":"9930043ffb4753c135a12f6be97e24ef56fdfd5aaf1af6a204d99937a7ba8ef2","sha512":"b256243244379bc8bd3d2496a71ac10a98b496bfad598e8b20cffc2d583a4915137f92208c08a82e011442d36279b0a699aed67edffe1b854ffaf2ba24f978de","ssdeep":"","tlshash":"dd419b597c0e37302e9330fd1e4b90885a79f6639106c896bd8ecbc4f7e400dd166e9a","size":1821,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-01T20:07:09.302132Z","times_seen":2672,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hw-cdn2.ang-content.com/delivery/vortex/vortex-simple-1.0.0.js","fqdn":"hw-cdn2.ang-content.com","domain":"ang-content.com","tld":"com"},"ip":{"addr":"205.185.208.20","port":443,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5e5817bcf4c82c7c85d1d88636d221ce","sha1":"b5c32cc6c931c33c1297884016e13d3b9a5bf261","sha256":"6f0e50ac39121175ca0427c4e87cdfa2520b526c8497e23cffbca726eb6ca42c","sha512":"08176e8fd06443f72738a279e22a28b4fd340e22d1abbf9a04f131286598cf1be98a79cbe776b37380fa3d6d396e431e3d8ba38f0b73fb0f3261b8753dccf706","ssdeep":"96:gfMHxJ7yWjtnYajBoq972unh1CzeOQ0es7rh69C2b4GhO78mslpUsvc:Pj7yunVLZs7rK4PVujvc","tlshash":"2cb17812167264361ef82561815f3e2e169246614b8b6ca1c3c5fe4cfdf6e23144bef3","size":5027,"data":"","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-05-07T04:29:58.76093Z","times_seen":2373,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":[{"md5":"57143c38ff308b700bda81d33fffdc1c","sha1":"7a4357101b77e5e514797ea16df9f31d0c1711df","sha256":"0f13250dac3eba96683a13d9c0c14c812448cc2f499a6ad6637a17adf094884d","sha512":"e56a943392cc582280091998b2b17c234ed1f5211742ac0bf7527e10611334a1b65ab69c121b7cea349e8b4f147cb8ae6aeaf6c3b8ab702baa8a53257924a41c","ssdeep":"","tlshash":"ab900254a7941457d4642115524a3152752441488911a1d8124555782109a1319402a5","size":47,"data":"","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-06T11:28:49.297701Z","times_seen":169,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"write":[{"md5":"0d1ef904b9132c363cd584f3177315d2","sha1":"b71046e3c43df3b3e5b5f30422e49bff3ae9dc4a","sha256":"5ffcc4eb6d731e4812b4be30400ab9d8afc4f3f479ff15eb2cafac13d2aec119","sha512":"171b058e8b767e92929e4328701d92ae732f20008352d10b635bb4a1ceb4070ad52cbe3b43303a7958cd613f74b593d8ad63df787ea852a5b858ed7bd80994d2","ssdeep":"","tlshash":"b42198117e13e43a42f779ead4b6f70cd452b128d952c84640dfc631f564de84c20888","size":1294,"data":"","first_seen":"2024-08-21T07:06:43.178439Z","last_seen":"2024-08-21T07:06:43.178439Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"49b59e9bbbaf79a3dea1a57bc8a8711f","sha1":"4380999b5effa585d765d221da4c08fc7a8a78aa","sha256":"7099c376b71a5e3a328dcb31f3b3cf69d967eb96788b1fe2103020d510b70962","sha512":"ea2893803af7923aa2abd1a074edb724c2a77859d91ad4b820a8b4bf728e4c595096129b6d937a371bd0f89acf242ef8fc6760fb619366c77b6a1bad45ca5e00","ssdeep":"","tlshash":"dfe0a3ba5317690ef3028214b5e8149cfa20559ab3d0f70311ecf63071d455b4db91df","size":431,"data":"","first_seen":"2024-08-21T07:06:43.179408Z","last_seen":"2024-08-21T07:06:43.179408Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"88201f2597fe853b7fb3017e3c277efc","sha1":"bab8363d982d782ed82825cfee5c917c30f8fb48","sha256":"1aea9bc064a67c2caaec0a29ce8d2d3613d84fa9d5d7965e196c8fd2cbbdf644","sha512":"e840002042fa49b970898efb11d10a49421e0b2fac8013bf3c56019edb89f843f31c942b6c83496c667725dbd240c4c74b2a1e1aac55a360ff220fef4c703594","ssdeep":"48:MX6clUAZWCRcGYqY9pC/Z/KJlStAR4b7eMrxpqYhUKOahgrXMSxJJseKzwSAVvfl:MX6cKAwR+9KJlSPTU7r8SLuHAVPWG","tlshash":"b39186a35560320565238e44f7c8ab99232e856262328feff7913144cf87b15278d27f","size":4364,"data":"","first_seen":"2024-08-21T07:06:43.180696Z","last_seen":"2024-08-21T07:06:43.180696Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"http","addr":"ocsp.sectigo.com/","fqdn":"ocsp.sectigo.com","domain":"sectigo.com","tld":"com"},"ip":{"addr":"104.18.15.101","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:31.363174774Z","timestamp":1694379511363,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: ocsp.sectigo.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Sep 2023 20:58:31 GMT\r\nContent-Type: application/ocsp-response\r\nContent-Length: 471\r\nConnection: keep-alive\r\nLast-Modified: Fri, 08 Sep 2023 11:25:47 GMT\r\nExpires: Fri, 15 Sep 2023 11:25:46 GMT\r\nEtag: \"52d9791efec987c6186b5f408baad2a2aa5454d1\"\r\nCache-Control: max-age=398672,s-maxage=1800,public,no-transform,must-revalidate\r\nX-CCACDN-Proxy-ID: mcdpinlb2\r\nX-Frame-Options: SAMEORIGIN\r\nCF-Cache-Status: DYNAMIC\r\nServer: cloudflare\r\nCF-RAY: 804a96e97d865691-OSL\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"b792399de8f3acb71b02281612e6bfcd","sha1":"52d9791efec987c6186b5f408baad2a2aa5454d1","sha256":"f4bf0f64844b5fc10c923c460e60f34905669c695c47a0871a10e15f19863e5d","sha512":"ecea1aeae5d9d67fb1a9d649713a4edddb6299bb1d2aaeb0ad5fc145cbdde87c75d6a57c0b299995bffd8c877d46e503518428878ff1bc5f6d26f870c70d8732","ssdeep":"","tlshash":"fcf0dc2afd945b961d89ef1a03faff593825e22c34e5542b24a9a24985392386838478","first_seen":"2023-09-08T14:29:26Z","last_seen":"2023-09-11T04:26:07Z","times_seen":38,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/images/main_logo_inverted.png","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:31.967051776Z","timestamp":1694379511967,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/images/main_logo_inverted.png HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: image/png\r\ncontent-length: 7137\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-1be1\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":7137,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 203 x 40, 8-bit/color RGBA, non-interlaced\\012- data","md5":"5d15526be10b904a6b48d1af04a10cc3","sha1":"c09b6874359ac6d71db95593618a9acb55baa984","sha256":"894d25472e0f890edf235e8f66fbeda7ea75043632924ecb82691d76bd7db018","sha512":"a54311ad6980495f4f4084489b5e78ceed681f810c75c33dcf062ad2cbe9d78758e4dc45d8a69eec3d1e3d6ba555f205c217900f01a228a4fb51d299133d6aa5","ssdeep":"192:JS0tKg9E05T7QszTovb+0BPQF0NHdvo6nD4F:3XE05paTPusHtouD4F","tlshash":"f8e19d5b04316098f7dea8818fcd7417af68d16dc8933578c0d0a4ef8479d29a7b9497","first_seen":"2023-04-07T01:23:06Z","last_seen":"2026-05-08T05:58:39.822589Z","times_seen":7685,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/images/loading_small.gif","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:31.999736162Z","timestamp":1694379511999,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/images/loading_small.gif HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: image/gif\r\ncontent-length: 184355\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-2d023\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":184355,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 64 x 64\\012- data","md5":"b0dd5b3af9c4c0644d7bddee83716209","sha1":"30002468d0266b893b3559b8d0d260c6cbf0ad7c","sha256":"2418224bb4d12c122ef3c54d2ee9edb5f6f28d539e91a166b0215553f8c7609d","sha512":"30b979509dab0ca3482c9d04909d7465ec88d94e0da8b1315554e593307d44f69d06343962ea7ece20ca5cd85515689d92e31702a0e5904a97e5137425da54f0","ssdeep":"3072:UqFI6Jsdc/zx61e5900tjC5erRJK5H7F6/8ULb6xU/6q214ycwuKQUKn2FA:TtJsdcbx6c5EerRU9J6kUncgH2QAFA","tlshash":"4604df6fa009936a053d62f130f31f463b7d99f295c1c51799aebf9e3c1078e2085aa7","first_seen":"2023-04-07T18:32:22Z","last_seen":"2025-04-01T17:36:27.429361Z","times_seen":2486,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"dmmzkfd82wayn.cloudfront.net/?kzmmd=761186","fqdn":"dmmzkfd82wayn.cloudfront.net","domain":"dmmzkfd82wayn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.073099174Z","timestamp":1694379512073,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /?kzmmd=761186 HTTP/1.1\r\nHost: dmmzkfd82wayn.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 190806\r\ndate: Sun, 10 Sep 2023 20:33:33 GMT\r\naccess-control-allow-origin: *\r\ncache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform\r\ncontent-encoding: gzip\r\npragma: no-cache\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: mQ2YZm40xPmm0MwHu5ZLIHv0pqKdGmuTRqf5Fgn997vsIMxCltNWhA==\r\nage: 1498\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":190806,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (15948)","md5":"8ceeb49f6ab8a24fa570e59f173264d1","sha1":"2d927bd73f7500caa6db57a28b12b609a83cea19","sha256":"43e25cef8336393afeb61a0cd87c15efdd66ee3a73a9c7d63561cfd6abfda2d9","sha512":"735ddfc51898667040f50fb2546831d1f5b81948db8542187c24427b84cbf39e864aed2564894c3c5cd7ad140dd22495fdcd5f81ffb7aa99a620742c3d020241","ssdeep":"12288:Wi0yYh7VNo6n04cuhvT8ThyF8Ep0omOmJuyg0wi0yYh7VI:Wi0dJVNo6n008ThyF8Ep0omO6Xg0wi06","tlshash":"edd46d59ba523529836374f540bf134eb23e466af80449d4b49ad8d06ef8e4503bffac","first_seen":"2023-09-10T22:33:57Z","last_seen":"2023-09-10T22:58:52Z","times_seen":2,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/js/global.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.224643816Z","timestamp":1694379512224,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/js/global.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-d59\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1593,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"b62957c3c4788544cad00a761303b836","sha1":"0436c4efedfe2075b24a87ff969034b2e258e609","sha256":"ef8a1ff709899584c91496da397de0b0fcab774e3b6d258ccca9997e592e84d3","sha512":"e04864ea59a92688ac5cd2eaaf92a75e9b5fe0a98cd9235afac14ee54dec2ebd2f14f2538708726b852b6b5e7b2e69b5bf8e3acc0b9d3b3ffcea1b34a03d2703","ssdeep":"","tlshash":"bf611008a9f292a18a37a86e07cf961971599503000cdc557c8cabf4afd553acdfbcf4","first_seen":"2023-03-07T01:02:10Z","last_seen":"2025-04-01T17:36:27.456224Z","times_seen":2491,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/js/jquery.fileupload-ui.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.280912823Z","timestamp":1694379512280,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/js/jquery.fileupload-ui.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-61ef\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":5327,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"6d74ec0b03e02825fef8093d64629489","sha1":"de746f1c7aeb0927541e1d55bdea4672bb47aa73","sha256":"5d4a5378ed9f8bf68dbfb6246761e6d44e2b11fa626d8b4f8d1d6a779f037cd2","sha512":"a61efb4485d6107a74edf5dd6f3cf66d3e7cdb2c7469a3e5fddb3a1005133fbe7b2d4cbc15eabf7cd10e25bf9a344287530701d712bafccbdbade6d114b2ae42","ssdeep":"192:jherScJi1x5JyGKvJKmaAiWCfK4hsaMCSC/N2aoItnEiu7x8MKWpKuTKErCmE+N9:Naqb2aLhsapa5iTDwwYwpGJ","tlshash":"02b2ff0d7aa7a114826770bedbaf540a3225e42f190acd193c5c53c4df9493ca2f6bf9","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.811008Z","times_seen":2726,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/js/load-image.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.351401119Z","timestamp":1694379512351,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/js/load-image.min.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-9f2\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1645,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (2546), with no line terminators","md5":"29c8a390a6c8038b015af4fda1af1c38","sha1":"516b1c42416ad647530192872785a5b3b35bd471","sha256":"b49885ee9e161e5595dfe428642255234d8d557c85699bb8bba72499717498c5","sha512":"c90051dfe89e0e643f8bc0244b55682c267c0fb9eb6c58d86cb5198b2bb2b4d9ad5cd6357aff66f39b207e9f461a216c91919e8fcad4dbc23e5638d140e384c6","ssdeep":"","tlshash":"b051db6c725874e522250993226f8649f518f4a6574f74205714d4ccb4becef837ef09","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.823827Z","times_seen":2742,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-108868042-1","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","date":"2023-09-10T20:58:32.067Z","timestamp":1694379512067,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 14 Aug 2023 08:16:28 GMT","end":"Mon, 06 Nov 2023 08:16:27 GMT"},"fingerprint":{"sha1":"E6:F7:82:C1:10:AC:08:76:A1:97:70:B7:56:B7:EF:92:30:BA:1E:12","sha256":"31:8C:88:B2:F2:3A:CA:89:46:6A:03:A1:A7:BF:E0:54:61:71:D0:11:D9:00:D5:2A:60:78:1D:A2:83:16:9D:FC"}}},"request":{"raw":"GET /gtag/js?id=UA-108868042-1 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\nexpires: Sun, 10 Sep 2023 20:58:32 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Sun, 10 Sep 2023 18:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 68355\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":68355,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (4179)","md5":"4c3777d3d4843e0f047131db74aba1db","sha1":"2447eba2a64e695369eff7c64d706d9e111a0ca3","sha256":"0cb4777a8a28b9198b06d1155626f801c6fdcfaf33ff9d8a278e273ccba9f836","sha512":"dc161c2bb1bafe421833663771947b202a553d3154d14f7afb1b1ef55aedde7c79a55f38e44909c44979e90e489ea1c32b0cde2db971ef9031da678786c3692d","ssdeep":"3072:y069zayXPCBrFFiKp0nUm4k05oHgzZXFWsX9eBvlPsMaBHUp:3UXKVCt16oHgzZ1BX9Yas","tlshash":"8b04e5d8b393b16682a3b4b4503f010bb17a6d92f85cccd4e189d5d42eb8a99417bf7c","first_seen":"2023-09-10T19:51:48Z","last_seen":"2023-09-11T04:26:07Z","times_seen":6,"resource_available":true,"data":null}},"time_used":708,"timings":{"blocked":268,"dns":14,"connect":14,"send":0,"wait":20,"receive":14,"ssl":371},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"keydawnawe.com/gwZ1U5hjA8ii/32575","fqdn":"keydawnawe.com","domain":"keydawnawe.com","tld":"com"},"ip":{"addr":"142.91.159.89","port":0,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.405075558Z","timestamp":1694379512405,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /gwZ1U5hjA8ii/32575 HTTP/1.1\r\nHost: keydawnawe.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 10 Sep 2023 20:58:32 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://megaup.net\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nX-Frame-Options: SAMEORIGIN\r\nSet-Cookie: GL_UI4=eJw9jU1Sg0AQhSH8RQ1oV3EAj8AQMcnSTVbegZphGhwD06lmQuLtHa3S3fteffVeEASr8hHCJY0husgGnl8aXe97Ve31tsZq34vda9UoIbp6u1PycIA7M7dOqhFdDOt5kuxat8SwGdAim67tSGMOT976a06WrjaGRLG0Oodk8saYQ6aYrjNyGUFs5YSQHQ1jTzdvyE9iiIQQPhvrc1jBiuYyKu4heTf2cis2aVAUaQAP51G6nnhqjfaYDCw1QvgG6046HIi%2FINM4nxydAWjU7b%2F%2Fe5qMP2uQalxM55HcB%2FI3ouZOdQ%3D%3D; expires=Mon, 11-Sep-2023 20:58:32 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyM0KgkAUhuE5hxiIJPjAC%2FAKJi1buM2WoQuvwDRiYJgjztjP3WeLd%2FG8SilOE7CdkFSFqXJTHk1xLkFPcNOCBw%2FdyPzuv6AZnJ%2FAs8euDU6yWhYf1z9g8zfIYn9x9pN14pZoxQfw2rbu7%2B5xuHY30KQJHEUzOIypAr00fl7rHdA%3D; expires=Mon, 11-Sep-2023 20:58:32 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":26,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"4fc71bf68a1d477bd1523733e34d1e90","sha1":"15119105cffbe108b6cf290146ab02c9aa8517ba","sha256":"74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce","sha512":"e8e5f5430841f9cdaad492efce3fed11992913ad2b714b27c6fd147c55b2c56dc1b896635f24c2b180d4215c70ba9a042847d7d9cf3ff8a67b636a4c0ca1ce3d","ssdeep":"","tlshash":"4350003303c00000cc300000300300000000000000000c00c000000000000000000303","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-05-07T13:26:00.258624Z","times_seen":10641,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"altowriestwispy.com/tysaSHG1FMaM/18410","fqdn":"altowriestwispy.com","domain":"altowriestwispy.com","tld":"com"},"ip":{"addr":"172.255.6.217","port":0,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.415164888Z","timestamp":1694379512415,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /tysaSHG1FMaM/18410 HTTP/1.1\r\nHost: altowriestwispy.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 10 Sep 2023 20:58:32 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://megaup.net\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nX-Frame-Options: SAMEORIGIN\r\nSet-Cookie: GL_UI4=eJw9jU1Sg0AQhSH8RQ1oV3EAj8AQMcnSTVbegZphGhwD06lmQuLtHa3S3fteffVeEASr8hHCJY0husgGnl8aXe97Ve31tsZq34vda9UoIbp6u1PycIA7M7dOqhFdDOt5kuxat8SwGdAim67tSGMOT976a06WrjaGRLG0Oodk8saYQ6aYrjNyGUFs5YSQHQ1jTzdvyE9iiIQQPhvrc1jBiuYyKu4heTf2cis2aVAUaQAP51G6nnhqjfaYDCw1QvgG6046HIi%2FINM4nxydAWjU7b%2F%2Fe5qMP2uQalxM55HcB%2FI3ouZOdQ%3D%3D; expires=Mon, 11-Sep-2023 20:58:32 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyM0KgkAUhuE5hxiIJPjAC%2FAKJi1buM2WoQuvwDRiYJgjztjP3WeLd%2FG8SilOE7CdkFSFqXJTHk1xLkFPcNOCBw%2FdyPzuv6AZnJ%2FAs8euDU6yWhYf1z9g8zfIYn9x9pN14pZoxQfw2rbu7%2B5xuHY30KQJHEUzOIypAr00fl7rHdA%3D; expires=Mon, 11-Sep-2023 20:58:32 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":25,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"5340000c00300000000000000000f000000c00000c000300c000000c00030c000c0000","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-05-08T07:04:09.064913Z","times_seen":14272,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/js/jquery.fileupload-resize.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.546685464Z","timestamp":1694379512546,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/js/jquery.fileupload-resize.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-1f7f\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":2847,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"23a8f0c0a8e9febbf563aef9fb28f2b0","sha1":"a0d188d6535c31b9bce7d874e4731f3a0bd2a220","sha256":"2d6f1126fbf381ae50f1264f82d5d2c55c400067557abf21387ab4c72af624cf","sha512":"f6a0152781a6771d5a14b620708277d488378b10d45ebf7af3d811dca57e09423fd04e7be323e76ecb34cf03cd7db697cdabaed0f8e7699a41423f2b680feb31","ssdeep":"96:oUYxqdjVr2mk6d6/Ln+HtNkiD2m31vPtVRb7VBQYJdUdAZ5g1e5+uoPrrqF:oPiymOLn+cM33RbTJdU2Z5yeguoiF","tlshash":"2202341e3a66317a496321c87fee60c8b659726d1132c710bd4c538e376b927e0e67ec","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.873526Z","times_seen":2732,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/css/bootstrap/bootstrap.min.css","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.712797509Z","timestamp":1694379512712,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/css/bootstrap/bootstrap.min.css HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/themes/flow/frontend_assets/css/All-stylesheets.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-1cc1b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":51016,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"assembler source, ASCII text, with very long lines (540), with CRLF line terminators","md5":"26bfa8a47d74b90e1fc4632710026e85","sha1":"2993c7f968fb5e5be8d256d5c7271fe64c87326d","sha256":"69c6352bd7a8de550563a81b40dab2234fa30ff0ae9e90a8b5c896dea033ca3b","sha512":"1d05f55e9a55614ee20b74aa2bbe46bc549e8bb0c47402c2cdcb134fd6bf5c83b80dfe972c557fcad505abb412bce90374edb19ce7410411da515b79c689c9ab","ssdeep":"768:Z6L37fA1CW077ENcJ07WJF0JewI/JfMVJADjEzJbrxtXFepJFvM+vITxIgc/mUL7:ZJLE49rxneSUQmL","tlshash":"53b34074aa1031cd2353efd9b7b0ce435f0d62f0ee1e4d7ef156299c434b8492a62a96","first_seen":"2023-04-05T06:05:36Z","last_seen":"2025-04-01T17:36:27.447991Z","times_seen":2453,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/js/jquery.fileupload-process.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.727941441Z","timestamp":1694379512727,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/js/jquery.fileupload-process.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-14b6\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":37012,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"8f27159561d43ede851b9b84f63cd727","sha1":"c4672cc17326d35d092741dad007ee72b2c13095","sha256":"f6626568ee243b737cdfc12efc464eb97d786bdcce590a0326427e11f360293f","sha512":"63dc471e42c751f05753b4e182fa9fa3a6c17154de71e8cfa5725d87371fa6761a6237adf4113068c107a8457bde35fae6a3d8e95872f0012e9dc06d003adb5e","ssdeep":"48:mvMZsCDY/dHZC8hiXjuFI7v06svN9/IkQIQxqb8ZMqCDLARk1al8lc5MQOFqK4Ms:v7YjtQ8aIb81Cn0QXlVgt","tlshash":"76b1dd0bb51e113246db3ae1a7be414b7aa8f22d0332c5343d6cd7c64f5446692d2aef","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.844619Z","times_seen":2733,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/js/canvas-to-blob.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.742023962Z","timestamp":1694379512742,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/js/canvas-to-blob.min.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-408\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":37084,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (1032), with no line terminators","md5":"f1b353d74742a0d0d8dba4a82f07c050","sha1":"a1b03792ee014e57e16a27cf343aaad13af08666","sha256":"233a048b5eab2ecc75e2f72bf9a65de6ac06e697746156ade5b144305d76ca3a","sha512":"07d8a774ffbf52cf7f90c03b3b8d615d331235c7ccf4f750dd9aeec8a935addfd8fba582d795a97c9b9010c37d1710dfdc1ed8c86342e9a80335ee7149c6b3e0","ssdeep":"","tlshash":"86110084f1922461919b225c40ef4cc9f2b68d2146c414a0c2599fcc5b74efea3faf58","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T21:24:52.853596Z","times_seen":2741,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/socialsider-v1.0/_fonts/socicon-webfont.woff","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.768216006Z","timestamp":1694379512768,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/socialsider-v1.0/_fonts/socicon-webfont.woff HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://megaup.net/themes/flow/frontend_assets/socialsider-v1.0/_css/socialsider-v1.0.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\ncontent-type: font/woff\r\ncontent-length: 20972\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-51ec\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":20972,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 20972, version 1.0\\012- data","md5":"cad75e2dacc6794c4e6b14727d4a989d","sha1":"694d04c8f643df4100c23efc1463ac9f4e732f60","sha256":"ebccc09339b7730324221aff3d11d215de9997b47bf708ca18a3be2d8e8b9887","sha512":"a25d9ce98c7bd94801a884bb2135e5513381cc14320398906177d8e50625dc8bc4d0ef49d08b7e961e2d80567ecdd57590a2757bece3a7014a51df60c59d0f23","ssdeep":"384:+COVD2aFH7DW4y4duekNHezxwNKTQKmyaMSEV1nu3nNkR:+C6aaau8HezyATQKmfMSELnSnW","tlshash":"b892e11de789c1b8e5dde1f850d3cf6ce05cd2690c56244b3c63ab28ebb15d241d8568","first_seen":"2023-04-11T18:08:40Z","last_seen":"2026-05-04T09:11:43.592075Z","times_seen":2675,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aticalfelixstownrus.info/cldKTUMTNSkgfBNqKGs2ADt3aHE0cngLJx86MCYlFm94OiILOWQuLx0iLisxHTk+Yy0XI29/BTwyHQcNFjohLAchGhsbJEIbARg3FwN7A3smO3MrADZjEA80HjEGNXcfFhw+ACA/JRQFGAZ/ATk8EgUcNDwFDAcxNTAtFQEqFRsJAREVKQgnIhALFDUhZnsrBRhnEAwoIxsDHHc7Ez0ALjcgOQIRNjASGwEjGQQ1ezQRGwMsIBRzABc6Zh4acx4cBBgnKw8MCBMnZj4HBxsGEwUCNB8sfRogBhwcECMRey4WI24eGnMZBgV8DRMYDAN6JmcuBxBAeiIIFCBjAgErQhASCwI+BQwhCic5ewUUJz8CK3MrBw8PAh0SCxQBIGRyOhQ3Px4UcygHDgt6SnEgPiwcJ3cvKz0vcwJzATY+NAw0HQ","fqdn":"aticalfelixstownrus.info","domain":"aticalfelixstownrus.info","tld":"info"},"ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.965444543Z","timestamp":1694379512965,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /cldKTUMTNSkgfBNqKGs2ADt3aHE0cngLJx86MCYlFm94OiILOWQuLx0iLisxHTk+Yy0XI29/BTwyHQcNFjohLAchGhsbJEIbARg3FwN7A3smO3MrADZjEA80HjEGNXcfFhw+ACA/JRQFGAZ/ATk8EgUcNDwFDAcxNTAtFQEqFRsJAREVKQgnIhALFDUhZnsrBRhnEAwoIxsDHHc7Ez0ALjcgOQIRNjASGwEjGQQ1ezQRGwMsIBRzABc6Zh4acx4cBBgnKw8MCBMnZj4HBxsGEwUCNB8sfRogBhwcECMRey4WI24eGnMZBgV8DRMYDAN6JmcuBxBAeiIIFCBjAgErQhASCwI+BQwhCic5ewUUJz8CK3MrBw8PAh0SCxQBIGRyOhQ3Px4UcygHDgt6SnEgPiwcJ3cvKz0vcwJzATY+NAw0HQ HTTP/1.1\r\nHost: aticalfelixstownrus.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\ncontent-length: 1179\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\nserver: openresty/1.17.8.2\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\ncontent-encoding: gzip\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: h363aTdq_LlG7Z7_STeGZkbYGbwA7JHnUhZW_2uZz95HNQiUCIAt3w==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1179,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (3024), with no line terminators","md5":"6fe129671204006af3bf898f72049ab0","sha1":"f858d1e64009c0e7e3db2f905ef58626c97fc9fe","sha256":"422acda864a43d31fb1e5781f53d9c95a701f01b50d9c0b920bde1f27f7f3fd6","sha512":"f28fad499cea23fe3419beb3ff10b445c807f9eb9adafad729c65ae1e987a28210c0edee665f3bc107e962daff36bc333c52f7700a6fc7eca7d163eea89f7a3b","ssdeep":"","tlshash":"3b51108d34f360c282f27065443bb59afa285aa1834ccf14863d96bcbd745e9a327f4c","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aticalfelixstownrus.info/QmlxU0ojCxI+dSNUE3U/MAVMdngETEMVLi8ECzgsJlFDJCs7B18wJi0cFTU4LQcFfSQnHVRhDDg7CzcADwMoOB0BDSQQHgwMPQJyDQ0gGT0DHhU7EhYZFQQOISI6FRwAJQYWPyYCIGMsFh0gEi12OyEGIhEMFjc8GgUSIx8KOCQGMy48FRIHEyMdHjgGHjs7GzgFFQsSMio7YhAWICdnJBRYOzsbKw4hBDMqJzgVfyMjGRl9Jig/IwhwHjARJ3s5FBIHFg05BTkDKCghEisNOQcnCy8UBiUNCiY7b3AvMzsEcg0mJAsAAycRKAMvQjctJh45EhA3LB9+OQE8IhkfCwVBBy4aL0YSLSZaM2AtAStDGgwnPyM1BBQgBwsfdwAzAnIGK0IKECc7IxcvJTBXOTktBwFuKyUeGWUtBhsCGTggXTg","fqdn":"aticalfelixstownrus.info","domain":"aticalfelixstownrus.info","tld":"info"},"ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.974026583Z","timestamp":1694379512974,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /QmlxU0ojCxI+dSNUE3U/MAVMdngETEMVLi8ECzgsJlFDJCs7B18wJi0cFTU4LQcFfSQnHVRhDDg7CzcADwMoOB0BDSQQHgwMPQJyDQ0gGT0DHhU7EhYZFQQOISI6FRwAJQYWPyYCIGMsFh0gEi12OyEGIhEMFjc8GgUSIx8KOCQGMy48FRIHEyMdHjgGHjs7GzgFFQsSMio7YhAWICdnJBRYOzsbKw4hBDMqJzgVfyMjGRl9Jig/IwhwHjARJ3s5FBIHFg05BTkDKCghEisNOQcnCy8UBiUNCiY7b3AvMzsEcg0mJAsAAycRKAMvQjctJh45EhA3LB9+OQE8IhkfCwVBBy4aL0YSLSZaM2AtAStDGgwnPyM1BBQgBwsfdwAzAnIGK0IKECc7IxcvJTBXOTktBwFuKyUeGWUtBhsCGTggXTg HTTP/1.1\r\nHost: aticalfelixstownrus.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\ncontent-length: 1177\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\nserver: openresty/1.17.8.2\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\ncontent-encoding: gzip\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: eyL7p_K-6RiZpasRw549pYMMlv78eT6zLeg8i8-YCXGgyTvSskZsXg==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1177,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (3023), with no line terminators","md5":"238f5823c4629db022c17cca50397090","sha1":"099430c445440b5e3f005b4aac809b54128aa1ea","sha256":"86520efe4aa6a9f948d6f19e6c70d1802b2ff40d7692586c8a0c3a863d0f8cad","sha512":"aa2fcb60a8a54fc8cf82882d0b2b535e06ae776ca0d4356049cfbb4d494fe74cff3eab28da24ce9c01c61c6fba1519cb49c9daf4ae712dc4d70faeecf0367310","ssdeep":"","tlshash":"8d51f18d34f3b08283f26064413bb59afa389a91934cda14867c96bcbc715e96317f4c","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/imageads/007.png","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:32.989527923Z","timestamp":1694379512989,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /imageads/007.png HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\ncontent-type: image/png\r\ncontent-length: 165193\r\nlast-modified: Sat, 15 Apr 2023 07:22:56 GMT\r\nvary: Accept-Encoding\r\netag: \"643a50d0-28549\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":165193,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\\012- data","md5":"9e452dc2054f294d67b691d6241b981b","sha1":"c17b12b7eeb6a0bbcff9a87ff8a9f5bf17e59712","sha256":"908e0140df8eb676084e7ea34af8bf9d2a92ff7c543bc808593246db2a0e8ee1","sha512":"917085ff7118bea536dbaea0eece2586396a634e2bf9eb008ca03a8797e31cb5db9b05bca9c3a5393b4add3897533243f3a03c37a7c2aec3672a9216fd4774a1","ssdeep":"","tlshash":"","first_seen":"2023-05-02T00:46:57Z","last_seen":"2023-09-19T09:55:54Z","times_seen":4,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/js/bootstrap/bootstrap.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.019088156Z","timestamp":1694379513019,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/js/bootstrap/bootstrap.min.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-71b6\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":9126,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (28941)","md5":"ba847811448ef90d98d272aeccef2a95","sha1":"5814e91bb6276f4de8b7951c965f2f190a03978d","sha256":"898d05a17f2cfc5120ddcdba47a885c378c0b466f30f0700e502757e24b403a1","sha512":"bced99d9331614757643273441a2b8921103382949ab0e510f386c453ec2a2359da39680d8a169e6bcbe7531844eaf5f598560f0d133d3fa3a9f6c7502b148df","ssdeep":"768:jryxMjJYkskKzykVtCb+9C8agZMdyKHfivbOCtFKH:3HbjZC7w","tlshash":"f1d26506b2303161079fb2f5515f020b733a6a7ee906907c38b99ae63d79c587167f39","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-08T08:54:04.74757Z","times_seen":27665,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/socialsider-v1.0/_css/socialsider-v1.0.css","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.03639757Z","timestamp":1694379513036,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/socialsider-v1.0/_css/socialsider-v1.0.css HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-8d4b\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":5199,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Unicode text, UTF-8 text","md5":"615432b34216ce48aa41b027c9b08f6a","sha1":"b7b6647aa22a1786013d97ea2c321d0d32d7abe8","sha256":"f5af895f7beb65666327d0629ed30cebe00dddebabbe9d25be29106234e827a5","sha512":"41a48d78b74bac57f169022194874cd42dcf4f52b13441d22c802467934604ff39411dd7c647a8c076922d30cf2d2add5101b3cddc83dd95235c32e12d23799e","ssdeep":"384:jKouI7E0FFRh3W/HU6tQFd4B20945fZcP1gu0+ARR59bibJ/Ix9WF56ZBhZx8Ly:msE0Z+HAL0Gou+ok/5n4Zt","tlshash":"96f25643f3486d4a1f2b966d8521aff4c054a623ab1d8628ecd95ca1e1b3bd0ed331dd","first_seen":"2023-04-05T14:52:02Z","last_seen":"2025-03-02T00:32:27.086465Z","times_seen":809,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"empafnyfiexpectt.info/RGp0bG9rVRcfUhc9HB09AwYDOyksWSwkBxUyGhQ1IgYANgsCK1IYBiBXTFtZd1tMSh8tDkleVmIZAA0bMRlJXUktBBIDUmIcSV1BdERCXEF3TAFRXmIeBA0IeVtSHBswBkldWX1eR1tWcVtGW110","fqdn":"empafnyfiexpectt.info","domain":"empafnyfiexpectt.info","tld":"info"},"ip":{"addr":"188.114.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.036713523Z","timestamp":1694379513036,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /RGp0bG9rVRcfUhc9HB09AwYDOyksWSwkBxUyGhQ1IgYANgsCK1IYBiBXTFtZd1tMSh8tDkleVmIZAA0bMRlJXUktBBIDUmIcSV1BdERCXEF3TAFRXmIeBA0IeVtSHBswBkldWX1eR1tWcVtGW110 HTTP/1.1\r\nHost: empafnyfiexpectt.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=ksJ5lBp7j8Lm5DGz4Dy7lr3ZX54vwtUa2pxLfxn1PJTyvMc%2F2g%2BgXQPovs8WV%2Bj7xEahwxSXoixutL8SP8SOZvreqjU61NuoPZsR1fkf1rdLu5yVBVS6XxjumoQFjaf8y4ZCuzgPzuc%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 804a96f339e25696-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/js/nav/jquery.nav.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.050551638Z","timestamp":1694379513050,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/js/nav/jquery.nav.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-1547\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1862,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with CRLF line terminators","md5":"1ebf524053e3259b38cd33a44bff9685","sha1":"4b073458bfd8526583eaca302f5d21bd1d8b31f5","sha256":"10815e9b5addf60315886f7216b0530fd58fa8580ca6a81687f14ffee517c619","sha512":"eb10aca3c7f790fb2f061689c584271a05ce56b0c0f0877cfe7ddd32dff156433cda84c780bec7b47694c04cba33aaabce5e4523818a1fd1c1c8bfea24516abb","ssdeep":"192:FIZRWftohx7HRDYAEUvOE64occ6tXS6LCRH5:FIZgfuHHRDnEI64rc6tXS6Le","tlshash":"70d11236663e3631ccab2b3da4179285363b9d5bb00d113239b57c80e4dde29e263e65","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-01T20:07:09.06894Z","times_seen":2672,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/css/isotope/isotope-style.css","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.056986689Z","timestamp":1694379513056,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/css/isotope/isotope-style.css HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/themes/flow/frontend_assets/css/All-stylesheets.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-af3\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":2007,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with CRLF line terminators","md5":"17ab9c0627529d1e053dfc75ab26a6cc","sha1":"f98cc6e4fa314b65f9a242b004e7a4736cd061c7","sha256":"31ca2164134c089fcedd15176160feea7b4369b404e9c8fd7b410292b9233550","sha512":"646b5ef4930a6d7e1acfd724cc15888ec63ae6e1a12f60f1ef6cd5d0b61a8decaae7e14d4e08815b059cc922ba790a013a9f59d9c61606a2304a83e3eaa7437b","ssdeep":"","tlshash":"ae51baec63077c4a4223ab5a63f30554da3cc0f1bf27606c7349aa1655639087da3be6","first_seen":"2023-04-07T07:10:08Z","last_seen":"2026-04-01T20:07:09.260082Z","times_seen":485,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/rs-plugin/js/jquery.themepunch.plugins.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.072889657Z","timestamp":1694379513072,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/rs-plugin/js/jquery.themepunch.plugins.min.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-14cc1\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":29722,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (23470)","md5":"04426bc66c09c8881b5b329310e903e9","sha1":"ff7f2f64ed5938023a91050e27f22f77becba78c","sha256":"ebf4e570b96d611fa540bb8745ba518a1005d50c4589a2c2cf3a60a97151a184","sha512":"9c87ee7ad099489801e0d6f8b241b7b6e77a7acd612cc5102716fe80e22a70f12181f927bd75c1bf145256de3eb56165878b28a2b45665231cb0b1848121275f","ssdeep":"1536:ItIeDCPRC0ebI00ZH1sWwTSww1fZbls9prC8BfTGnKDFtWm88:IWEIC9I0gH1s5TSww1pm9p2CtWY","tlshash":"778319ce7261702006e720e6553f0a47b237a999b40d456cf258c9ce3d7c98a62bff76","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-05-08T03:58:02.317259Z","times_seen":3054,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/js/isotope/custom-isotope.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.085034884Z","timestamp":1694379513085,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/js/isotope/custom-isotope.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-71d\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":650,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with CRLF line terminators","md5":"76cff321a3da409f04f1b9d25319ab78","sha1":"f9de6b54f2eeeb85ea43693bee32dc930a252649","sha256":"9930043ffb4753c135a12f6be97e24ef56fdfd5aaf1af6a204d99937a7ba8ef2","sha512":"b256243244379bc8bd3d2496a71ac10a98b496bfad598e8b20cffc2d583a4915137f92208c08a82e011442d36279b0a699aed67edffe1b854ffaf2ba24f978de","ssdeep":"","tlshash":"dd419b597c0e37302e9330fd1e4b90885a79f6639106c896bd8ecbc4f7e400dd166e9a","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-01T20:07:09.302132Z","times_seen":2672,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/css/colors/flow.css","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.094204212Z","timestamp":1694379513094,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/css/colors/flow.css HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-a83\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":607,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with CRLF line terminators","md5":"b0043a6c7a7969f6d9d76e9684005150","sha1":"38c6010b1a1110baf5efb78b05d4b99784aa2836","sha256":"91e4749e45a517ca4168cf9573eef0ee72fa93a9b7b96892844e9935afc832af","sha512":"8800742c5787053b695845e3ab5200f6aeb85b25ee7978ef0d2f1ef02f9f1935b88a4e598a4e94178c7ab93e82d582a768cfe387521d67462eabae1d13105ff4","ssdeep":"","tlshash":"9d51b199e74a0e8eb31b9b2936b5c5509b6931f5cc2c7f3cb1b5916a133d4643e3a880","first_seen":"2023-04-05T18:40:54Z","last_seen":"2025-03-01T07:52:06.641948Z","times_seen":612,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/sw.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.111382088Z","timestamp":1694379513111,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /sw.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 Dec 2022 16:15:31 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63a1dfa3-1927c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":39862,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"9ee51131e416458b88d6da4e6e6959ca","sha1":"a558b24bcf81763754e35a5fa5e46c6d6ad5f8d4","sha256":"db3608f955dd3404bc375f0a0a7a5c8e23515e7ad1a0b9078c246e92e4050734","sha512":"c15181f56e6a1d9644315da37a99789bd77c9bca734094caf065e54d9b525fc5d1268821e707398529a616c78140e6bd4c594cbc3618335d40b757214b4b1c58","ssdeep":"1536:vSpw5PMhOhJ6ZbaL7l65oQ668X4BtmG9vpjthaoytu/W:vSpwVJ6EXX4rvttkbtuu","tlshash":"31a309497252389617d7e03e177fa5cb6d7a4a09bc698d974051c3c02d2a0cec6e3fba","first_seen":"2023-03-09T23:12:43Z","last_seen":"2026-05-08T05:58:39.805616Z","times_seen":6651,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/js/retina/retina.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.124085772Z","timestamp":1694379513124,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/js/retina/retina.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-52e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":34413,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (1249)","md5":"d3e2d6e7887add1872c197bab95a16b7","sha1":"fe996175492409ca9e5b4f42911c5a69e8b2698c","sha256":"4b75d94f66a12f86bb0c238861680cc589c4463ba29be6889ed6dbeb5594aa19","sha512":"63f81f4ec4fee992eadeddc42815c3a5df5e67cdefbb60993528354c78219462b6fc1b9cb0d11333df87a453f34248e89a8ef5980789a912a88ffcb96f0a2178","ssdeep":"","tlshash":"db215069b69131370142a911403f6da27b36b0fd12834178bb0dc9e7ec31e38966efa9","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-08T07:08:33.987355Z","times_seen":2996,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/js/custom/custom.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.133485773Z","timestamp":1694379513133,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/js/custom/custom.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-1420\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1990,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with CRLF line terminators","md5":"2d40e9899d9667475ee4a7d5d9731311","sha1":"6e3b230480bc36ce2e9b0622a48af5924535a72b","sha256":"a72e6ce7c10983fcd6773f0db77f049b7a85039d3e7212a12ad56fbb8d70a6e6","sha512":"853026bb54a8884baa86d039bef045bcb24de596df4c4defc060dc8a4628cdd0274b8a0aae821b3b378b1775f4772ee332113fb62b21a78bceeb69cf99c352e2","ssdeep":"48:IjcnEj1+HNc2ozMpcwkPoM2dXFsGNMkapisii1iMwGCKQEqh9O2lwmbKtxCKR5EF:1Zd1uqAtGwAs6Vp","tlshash":"e5b1fe7c6e1f7cb90993253b683e94c015af3c4a240242217d4db858d3deb28ca7ade5","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-01T20:07:09.15513Z","times_seen":2670,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/js/nav/jquery.scrollTo.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.30226439Z","timestamp":1694379513302,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/js/nav/jquery.scrollTo.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-981\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1527,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (2241), with CRLF line terminators","md5":"1e4ba2a9c6f022f7c920cd2e76d95bd4","sha1":"f15cbf023a4a1e1c810eff679cc9b35b81a6f2c2","sha256":"afff7cdd8f6f0ca43b26573840f5ec5d3302dc1fc2b2209a1163e3978c9d012c","sha512":"972050054ab1c3c8f4e6ea8edeb48800fc6a9f90cd736b35fbba35bd9a42856a55be6c539a4dde51cb9a97efa5a156009af8fc57263dfb34e27b92de601c73b2","ssdeep":"","tlshash":"a55197947159310443d6b89a31ab6709ba7c69e7b01b6e506008c8d9ad38777053bfbd","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-08T09:00:46.628999Z","times_seen":2919,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-Z9TE2LW16Q\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.456268272Z","timestamp":1694379513456,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 14 Aug 2023 08:16:28 GMT","end":"Mon, 06 Nov 2023 08:16:27 GMT"},"fingerprint":{"sha1":"E6:F7:82:C1:10:AC:08:76:A1:97:70:B7:56:B7:EF:92:30:BA:1E:12","sha256":"31:8C:88:B2:F2:3A:CA:89:46:6A:03:A1:A7:BF:E0:54:61:71:D0:11:D9:00:D5:2A:60:78:1D:A2:83:16:9D:FC"}}},"request":{"raw":"GET /gtag/js?id=G-Z9TE2LW16Q\u0026l=dataLayer\u0026cx=c HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\nexpires: Sun, 10 Sep 2023 20:58:33 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 80679\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":80679,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (5857)","md5":"48d40988c629057f932cff26e09be78f","sha1":"5e4df07274b8131d5956c909e6ea878b6e2690af","sha256":"230c181f68eb015fac89edaa4f71723c8006e4bb73a42f7994044a993dcbcda6","sha512":"fca83e74bbed9bf52a6d82316c3b0af8158fc4fe2053cb8c3c35124f970067ce2530cf3bc6a13a88657695d482040081489c6f5967add603d3ad8d5c544985a4","ssdeep":"6144:qUXKN5Gyldd1lSHgzZ11a6wod1neNUb9aIg:X85Gylx3wA1nef","tlshash":"232407d9b3c2706682a6f4b5503f014ba57b6ca2b85cccd8f189c9d02eb4a994177f7c","first_seen":"2023-09-10T18:53:31Z","last_seen":"2023-09-10T22:58:52Z","times_seen":2,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/css/responsive.css","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.524550311Z","timestamp":1694379513524,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/css/responsive.css HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-e56\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1936,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"assembler source, ASCII text","md5":"7f090c009c854fda38795874dd7cfcf3","sha1":"ee03cd497eb3b1349a1ddd3fd26ad6ca50f4f238","sha256":"244c04a213bdb0e13f0d9fa71af6760886ad9d533f80c1f60e21f632096f5e33","sha512":"a2ceae3559042db1992750dac913f2d8e650aa8b7c8b288149627f1e77726d3dccabde9a441fe166d5d5578cc27a3d57161206a87c4de9aff4abd22aa764535d","ssdeep":"","tlshash":"cb712103e181200d4a074538abab377dbe38401bcb03e5b97858b768df9a6db12f15ec","first_seen":"2023-04-05T23:50:12Z","last_seen":"2026-04-01T20:07:08.96202Z","times_seen":649,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"platform.bidgear.com/ads.php?domainid=5593\u0026sizeid=12\u0026zoneid=6192","fqdn":"platform.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"172.67.74.36","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.667964183Z","timestamp":1694379513667,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ads.php?domainid=5593\u0026sizeid=12\u0026zoneid=6192 HTTP/1.1\r\nHost: platform.bidgear.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncache-control: no-cache, no-store, must-revalidate\r\nexpires: 0\r\npragma: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=K8pUZ9FxuWXo6KNAoC7dVhGkAfOqhT8X6%2BmC09MKiSK9x%2F%2F%2FJ5q1%2FoFJa%2B%2Ft1%2B2YG0m%2BAhKS23eps3yTWdtgCyZrd%2FcE%2Bz1epCNXz7yB%2FCk6VMC3jXTbdsuOJW%2FdVOJ%2BXmWC1dwd\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 804a96edbd6856ae-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":717,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with very long lines (1330), with no line terminators","md5":"8e5953f5e79f282d1a5e8f2a8aa86973","sha1":"38dcfc04740bebd58cee0d6da78e9d2c544df20c","sha256":"da1daef9cc7d7dd9dc582bc9bb48701a0f984b851bf43ff8637d809c8fe779e7","sha512":"9b195ec55ed3b753257e57e1c575bad2694f1db16a8add1c7781b764f910f34ec6d57beadeec849dfa95cc7ad9ffb2d1381aa8f31306b73b19e6958c52279e9f","ssdeep":"","tlshash":"112175107e23ea3a42fb6ad6d476f71cd452b129dd26d88600df8535f564eec5d208c8","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"dmmzkfd82wayn.cloudfront.net/1SnBCZW0pHywDUj4ZJlhUfkl6U1lsGjEKAzpNITUPDyUEMR4/GTYkOXI1BUMZMBR/VUsmESwCUGwVLAZQe1YjAQ93RGQQDHcdLR8EJhwjQF8MRWxVSHhAah1ce1VxJ0h4QC4MAz8IZ1ddMkh0Olt+VXEnSHhAMBNIeTFzVVRkQGtAX3oXJwYGJVVwI196QX-JVXHpBZ1ddLBkwAAslCGdXK3tBc0tdbAV/VA","fqdn":"dmmzkfd82wayn.cloudfront.net","domain":"dmmzkfd82wayn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.723727646Z","timestamp":1694379513723,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /1SnBCZW0pHywDUj4ZJlhUfkl6U1lsGjEKAzpNITUPDyUEMR4/GTYkOXI1BUMZMBR/VUsmESwCUGwVLAZQe1YjAQ93RGQQDHcdLR8EJhwjQF8MRWxVSHhAah1ce1VxJ0h4QC4MAz8IZ1ddMkh0Olt+VXEnSHhAMBNIeTFzVVRkQGtAX3oXJwYGJVVwI196QX-JVXHpBZ1ddLBkwAAslCGdXK3tBc0tdbAV/VA HTTP/1.1\r\nHost: dmmzkfd82wayn.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aticalfelixstownrus.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 203\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31556926\r\ncontent-encoding: gzip\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: uAkJXF4aHfuse3gcEoe6mv-4B2ogO05h3LNbStfzBwXmLSFYGH4ZwQ==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":203,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"ffefadda7fe18403903e4dd1c00ab481","sha1":"5acb073420bebd41433c5ae8af0856ebda4bd0f1","sha256":"fb09526af11e87fe61e971fcacd0f3cafa51b96292b8bb2301f25f5a26d85803","sha512":"139fbfbf689b43f379d4d686b90885c85bfb98f43c919e79d436a415c98b0d80283002221bbe87f0709ed45176b2cfdc67424f04941848d4db967e9948e0f49f","ssdeep":"","tlshash":"e0d0a76b785012515cef1401b524659607ead7cd0d8545e577821d919948d499885305","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"dmmzkfd82wayn.cloudfront.net/zRzdJMjYkWCdUCTNeLQ8OdQJwAwdhXTpdWDcKKFVBLwEudkQ0fTtQAg4RPUhSegdvXlcpUHQUUylUdAMQJlMrDwJhQzldXXpCJ1ZTIV4nV1JhQigPWyhNIF5aJhJ7dANpB2wABm9PeAMTdHVsAAYrXidHTmIFeUoOcWh/BhN0dWwABjVBbAF3dgdwHAZuEn-sCUSJUIl0TdXF7Agd3B3gCB2IFeVRfNVIvXU5iBQ8DB3YZeRRDegY","fqdn":"dmmzkfd82wayn.cloudfront.net","domain":"dmmzkfd82wayn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.750257224Z","timestamp":1694379513750,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /zRzdJMjYkWCdUCTNeLQ8OdQJwAwdhXTpdWDcKKFVBLwEudkQ0fTtQAg4RPUhSegdvXlcpUHQUUylUdAMQJlMrDwJhQzldXXpCJ1ZTIV4nV1JhQigPWyhNIF5aJhJ7dANpB2wABm9PeAMTdHVsAAYrXidHTmIFeUoOcWh/BhN0dWwABjVBbAF3dgdwHAZuEn-sCUSJUIl0TdXF7Agd3B3gCB2IFeVRfNVIvXU5iBQ8DB3YZeRRDegY HTTP/1.1\r\nHost: dmmzkfd82wayn.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aticalfelixstownrus.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 376\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31556926\r\ncontent-encoding: gzip\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: ry0Hnj_0KAyNNkT_NMsq-jd83M_1CqbtGbz8MGDeqIlO3q7fovdVtg==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":376,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (490), with no line terminators","md5":"c1d49e41fd784aae771a043c51dfad32","sha1":"cac445981968a86af1766f78b45bcd46aae890c8","sha256":"f098854a595582f24bb236364d899bd81e58e183e083e4981c7993c8c8f910cf","sha512":"ce7bd609946331a1ecb63be2759353ed5cceddecb5ca7d50b32c32af05105587ca2562397a4a182bda60e0f4870e51adf87fba40212c14452e512aefa4de5f62","ssdeep":"","tlshash":"82f09ee16314d8eadc26eaa271a8f4d7bb8e62ce25409f14521a05e98f1950fd442611","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"dmmzkfd82wayn.cloudfront.net/NeWJNdmkaDSMQVg0LKUteT1N8Tl9fCD4ZBwlfLx4mAVsCRhoYFjQ5LzNEOQwNRFJrGggXBXBQDBcBcEdPGAYvS11fFj0ZAkQLIQ4IDwMmEwsORDgXVBQNNx8FFQNoRC9MTH1TW0lKNUdYXFEPU1tJDiQYHAFHf0YRQVQSQF1cUQ9TW0kQO1NaOFN9T0dJS2-hEWR4HLh0GXFALRFlIUn1HWUhHf0YPEBAoEAYBR38wWEhTY0ZPDF98","fqdn":"dmmzkfd82wayn.cloudfront.net","domain":"dmmzkfd82wayn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.772853445Z","timestamp":1694379513772,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /NeWJNdmkaDSMQVg0LKUteT1N8Tl9fCD4ZBwlfLx4mAVsCRhoYFjQ5LzNEOQwNRFJrGggXBXBQDBcBcEdPGAYvS11fFj0ZAkQLIQ4IDwMmEwsORDgXVBQNNx8FFQNoRC9MTH1TW0lKNUdYXFEPU1tJDiQYHAFHf0YRQVQSQF1cUQ9TW0kQO1NaOFN9T0dJS2-hEWR4HLh0GXFALRFlIUn1HWUhHf0YPEBAoEAYBR38wWEhTY0ZPDF98 HTTP/1.1\r\nHost: dmmzkfd82wayn.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aticalfelixstownrus.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 608\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31556926\r\ncontent-encoding: gzip\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: 7K_BgAvluMv_2ZLVnyN_xmfxUcBKCpGhopzwAb5VcH8vBnZ2kTrzfQ==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":608,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (862), with no line terminators","md5":"e2bdda05374fff5d3ef92650f4eed5a7","sha1":"c336cb9d7759d412ffd1010ed20f7c8257bfdcb5","sha256":"e1ac2b2e53fa976e81f72cb0dbb0a1c5b189635ee533f45cef93dda2048d9801","sha512":"18982472a751c3e440c7e102c5ada1085d920cf6357a4eb41425ef541cbce43eb79ed09ef3a4634d121041cea026fa7f7c9a5d47260735b709f1b1bf691f3311","ssdeep":"","tlshash":"b31123d59aa4085a5c97663b23e4f4fe4cce71cb207623b65a1343a3fb5e20ec285518","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"dmmzkfd82wayn.cloudfront.net/NaTNmZHEKXAgCTh1aAllGXwdXUEBPWRULHxkOLiEnKmEQDD4xfyQVQyxhAUIFE1dbVFcFUggDTE9WCAdMWBUHABNUB0AQAQZYWw0dEVIQBRoMURFCBAgOCwsLAF8KBVRbdVNKQUwBVkwJWAJDVzNMAVYIGAdGHkFDWUteUi5fB0NXM0wBVhYHTAAnVUFQHV-ZNVFsDAQESAlxDVjdbA1dUQVgDV0FDWVUPFhQPXB5BQy8CV1VfWRUTWUA","fqdn":"dmmzkfd82wayn.cloudfront.net","domain":"dmmzkfd82wayn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.780697322Z","timestamp":1694379513780,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /NaTNmZHEKXAgCTh1aAllGXwdXUEBPWRULHxkOLiEnKmEQDD4xfyQVQyxhAUIFE1dbVFcFUggDTE9WCAdMWBUHABNUB0AQAQZYWw0dEVIQBRoMURFCBAgOCwsLAF8KBVRbdVNKQUwBVkwJWAJDVzNMAVYIGAdGHkFDWUteUi5fB0NXM0wBVhYHTAAnVUFQHV-ZNVFsDAQESAlxDVjdbA1dUQVgDV0FDWVUPFhQPXB5BQy8CV1VfWRUTWUA HTTP/1.1\r\nHost: dmmzkfd82wayn.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aticalfelixstownrus.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 626\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31556926\r\ncontent-encoding: gzip\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: giDSzcozk2Q7qJ2p4QQEWukIqXgH2hwnpZDY59BRbuYDq9Bz9_En2Q==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":626,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (860), with no line terminators","md5":"b47fac4720c111a21efb0932679d2330","sha1":"2114c28f5e7a350cfde831bcb8090f7be4b6a95b","sha256":"384091bb9a4eb719c200bfefa22f12364ff136191c38894b9d642b312e7f7bf2","sha512":"f73896b14a651240a17a20c76c78b95e0de8dfd2db1fe3fc57839295b99670470f513d9148c260942ee3565ab0a16d260a685f722d1bb1eaf52a94fe158e184b","ssdeep":"","tlshash":"981156291544866218bbf03226f0b09843cca09f6da1176d59221fe3ea0df5f9a90b18","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.r2m02.amazontrust.com/","fqdn":"ocsp.r2m02.amazontrust.com","domain":"amazontrust.com","tld":"com"},"ip":{"addr":"54.230.80.227","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.781305895Z","timestamp":1694379513781,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: ocsp.r2m02.amazontrust.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nContent-Length: 471\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=7200\r\nDate: Sun, 10 Sep 2023 20:58:33 GMT\r\nLast-Modified: Sun, 10 Sep 2023 19:25:58 GMT\r\nServer: ECAcc (amb/6AD1)\r\nX-Cache: Miss from cloudfront\r\nVia: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)\r\nX-Amz-Cf-Pop: OSL50-P1\r\nX-Amz-Cf-Id: a3zLqEGWTT6qV8JqmjglNfqigm5dsc_fAbS6aoYb1zAHjVbrBKtqkQ==\r\nAge: 5556\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"6e223aabc160a63820353e496ed5a733","sha1":"1441411ed4d1d2ec3b0109f013d9b380ee0122be","sha256":"01fa3fd3e1eb03063f4ccc6a4203c7f1a458e2e056ab70d07185fdc7510cd960","sha512":"dfde387b2e6496b5f8566c596b3cf6abcd4591e476b4b9cce576a01d60aec3270b5f50bf10bb1c7b925b282686b0d7aeeb7cdb213fa9188ecda51644c5376a2b","ssdeep":"","tlshash":"b2f0dc116c23a80ca41eeee696b8e0293305e58808be68473c5a57a90140d778e4de22","first_seen":"2023-09-10T15:53:01Z","last_seen":"2023-09-11T04:26:07Z","times_seen":10,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"dmmzkfd82wayn.cloudfront.net/yNW9lVzRWAAsxC0EGAWoMAllWZgwTBRY4WkVSPxJYUB4kEnN4LQ9xQE8LWGcSWQ4LMAkTCgs0CQRJBDNWCFtDI0RaBFg+WE0OEzZfUA0ScUFUUgg4TlwDCTYRBylQeQQQXVV/TAReQGR2EF1VO11bGh1yBgUXXWFrA1tAZHYQXVUlQhBcJGYEDEFVfhEHXw-IyV14AQGVyB19UZwQEX1RyBgUJDCVRUwAdcgZzXlRmGgVJEGoF","fqdn":"dmmzkfd82wayn.cloudfront.net","domain":"dmmzkfd82wayn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.787324041Z","timestamp":1694379513787,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /yNW9lVzRWAAsxC0EGAWoMAllWZgwTBRY4WkVSPxJYUB4kEnN4LQ9xQE8LWGcSWQ4LMAkTCgs0CQRJBDNWCFtDI0RaBFg+WE0OEzZfUA0ScUFUUgg4TlwDCTYRBylQeQQQXVV/TAReQGR2EF1VO11bGh1yBgUXXWFrA1tAZHYQXVUlQhBcJGYEDEFVfhEHXw-IyV14AQGVyB19UZwQEX1RyBgUJDCVRUwAdcgZzXlRmGgVJEGoF HTTP/1.1\r\nHost: dmmzkfd82wayn.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://aticalfelixstownrus.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 456\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31556926\r\ncontent-encoding: gzip\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: A3vDYRb2U1E16nVPJFiIm2D977YjQTuQ8rvRRelCrAJGcf7v_ZLcXQ==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":456,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (603), with no line terminators","md5":"e7d9ae5116af0fce0b2229c59d4e0e12","sha1":"3fa1276433ffb581d4eed2a46e420647fdfeec83","sha256":"ba67d5a296edef089f38c4f4b7411a71a862183d1477c9e0155e50bbce41af09","sha512":"2e197b488631eabcb3136980fa3c004cfac132b1439e61e841986c71de1beca358ed05599cd8e315a9139e216ec04bd2ed8532a69c7264ac333c7386408cae83","ssdeep":"","tlshash":"3df0476229a5dc514c16363f89e6e8b0cb6631cd47547f3418512f86e91d3bfe770048","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/js/SmoothScroll/SmoothScroll.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.831465247Z","timestamp":1694379513831,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/js/SmoothScroll/SmoothScroll.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-1cdf\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":623624,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"ffa5849037af7c5e6fc1971877859645","sha1":"deb7c1eca1d4ed43dfbf33442047136d5a5f41a9","sha256":"8fa669071ed5fb03e9954ba360885e7ba95fb77ae5448dfc313c3c01202b46aa","sha512":"0aa82ab0804da9c2cc5df51b5a46fecea2cad1fcdefac18130bb910c2ad4eb5ba68df54cc34f7a8b893d01e0b256839d657aef8f8318e32433c0929d1a8dfec1","ssdeep":"192:ZqaMynq1A7BP8HdC6ibNlko/io/pbhZE2o:vFqOlgdC6ilxG2o","tlshash":"66f1247bb912207596177faa07ee811a3576314001a7ea6b3d0cc45b1b58b70a2f6ffc","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-04-28T03:31:18.073783Z","times_seen":2693,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/images/icons/favicon/apple-touch-icon-114x114.png","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.838681546Z","timestamp":1694379513838,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/images/icons/favicon/apple-touch-icon-114x114.png HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6; _ga_Z9TE2LW16Q=GS1.1.1694379513.1.0.1694379513.0.0.0; _ga=GA1.1.347109378.1694379514\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\ncontent-type: image/png\r\ncontent-length: 951\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-3b7\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":951,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 114 x 114, 8-bit colormap, non-interlaced\\012- data","md5":"76852bc6b2c028db97322a74e85bd020","sha1":"ed52fb4de0d51f93277bbaae42fa80ba5f92c31e","sha256":"8a5ef2ef8440c17db1b1b539065ba4a887e07a2c508b79c2d1659512e9016884","sha512":"6c75f46be72c52a9e4eb3998ff3e93df48db13f2dff3c8dbfded4d86fbc5efdbe06ed023528202f7c93a9f8a5fdd918df0670f79634777ef2542ff6df04d5502","ssdeep":"","tlshash":"fa119496663a5c92c90ba7fec1e3e23c18a43f6a02ac04032c814a8f252405dc2c2897","first_seen":"2023-04-06T19:03:00Z","last_seen":"2025-04-01T17:36:27.421256Z","times_seen":2480,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"dmmzkfd82wayn.cloudfront.net/","fqdn":"dmmzkfd82wayn.cloudfront.net","domain":"dmmzkfd82wayn.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"143.204.42.171","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.864446061Z","timestamp":1694379513864,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: dmmzkfd82wayn.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 73\r\ndate: Sun, 10 Sep 2023 20:33:35 GMT\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://megaup.net\r\ncache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform\r\ncontent-encoding: gzip\r\npragma: no-cache\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: Ao6-5vvc8XvNwcGytg_7T-T1u0aT_WMOpPXcFBC5bOxNoUmrC7Ycsg==\r\nage: 1498\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":73,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"57143c38ff308b700bda81d33fffdc1c","sha1":"7a4357101b77e5e514797ea16df9f31d0c1711df","sha256":"0f13250dac3eba96683a13d9c0c14c812448cc2f499a6ad6637a17adf094884d","sha512":"e56a943392cc582280091998b2b17c234ed1f5211742ac0bf7527e10611334a1b65ab69c121b7cea349e8b4f147cb8ae6aeaf6c3b8ab702baa8a53257924a41c","ssdeep":"","tlshash":"ab900254a7941457d4642115524a3152752441488911a1d8124555782109a1319402a5","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-06T11:28:49.297701Z","times_seen":169,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"empafnyfiexpectt.info/QzhJTmVsByo9WAx+IQs3Fl8ILz0NQSofCTNbASpTB1UxNwEbX286DCcFcXxQegl4aBUqXHR9V2VLPS8RNkt0fFVzD28nCyVXdHxDNQV5YFxtCmd7QzYFeGgRM1kuc1RlSD06CX4Jf3dRcA9we1RwD3l8","fqdn":"empafnyfiexpectt.info","domain":"empafnyfiexpectt.info","tld":"info"},"ip":{"addr":"188.114.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.872500167Z","timestamp":1694379513872,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"POST /QzhJTmVsByo9WAx+IQs3Fl8ILz0NQSofCTNbASpTB1UxNwEbX286DCcFcXxQegl4aBUqXHR9V2VLPS8RNkt0fFVzD28nCyVXdHxDNQV5YFxtCmd7QzYFeGgRM1kuc1RlSD06CX4Jf3dRcA9we1RwD3l8 HTTP/1.1\r\nHost: empafnyfiexpectt.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=64fyuTTBN%2BXDzQAYoZ9E91Qhca28RxIQRyCPhuc1sIA2ypzwACz%2FVqDLLyGfelSGZV%2BfcCKWP%2BIVyEICpVqpFluIlqcbq%2BIINuJOa6XVr7BAV%2FTkL%2FRkABpsATsMFku5Z4K866Q%2BrAE%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 804a96f8ac24569d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"parrecleftne.xyz/utx?tid=832633\u0026top=megaup.net\u0026cb=LEiKANSAsVas","fqdn":"parrecleftne.xyz","domain":"parrecleftne.xyz","tld":"xyz"},"ip":{"addr":"52.85.242.51","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.873035015Z","timestamp":1694379513873,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /utx?tid=832633\u0026top=megaup.net\u0026cb=LEiKANSAsVas HTTP/1.1\r\nHost: parrecleftne.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\nserver: openresty/1.17.8.2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://megaup.net\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\nset-cookie: ut=x; Expires=Sun, 10 Sep 2023 20:59:33 GMT; Max-Age=60\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 21258ec71c1aa4499bcd08c6ad0eba38.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN1-C1\r\nx-amz-cf-id: PsOlbzTg-uxbQbzjZxvXgaK7jYIgMVh8R5BH5bI9_EGdLZI_tlT3Kw==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/images/icons/favicon/favicon.ico","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.909961764Z","timestamp":1694379513909,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/images/icons/favicon/favicon.ico HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6; _ga_Z9TE2LW16Q=GS1.1.1694379513.1.0.1694379513.0.0.0; _ga=GA1.1.347109378.1694379514\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\ncontent-type: image/x-icon\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-47e\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":750,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\\012- data","md5":"e95c130b43ef6c32b9c9459aff5706c1","sha1":"51b8b0d3ae3eabd9c31e65098acfa9ba18e9bb30","sha256":"6c3dde0843949903d807800c8d6706e357fd762d29885946bacac881d4abfb35","sha512":"f6b0075e48d33244447273996cc51f7b7626423136bc89b726467769939e2b66661ea57075cbdc716fe6f2d89b7edd941ee412bc1c14ced1e3dc3f177f96b360","ssdeep":"","tlshash":"40211a80ed82ee4ccd256e79e802daf5450bcd05d4f4860710da3e977f7407947cba82","first_seen":"2023-04-30T18:49:37Z","last_seen":"2025-04-01T17:36:27.427654Z","times_seen":2634,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.917702566Z","timestamp":1694379513917,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Sun, 10 Sep 2023 20:58:33 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"43d1b0c36a3cd563b001b3f3be1823ba","sha1":"08772d005eba2778e63f84b02ade416dfbd81eaa","sha256":"be2785faa89e68455b5f2786bbce579a6768bffb835e1cb73a40aef764932bd6","sha512":"7b946bf753bae3da111913e00bf542a3def422a90639f2426ae3aad863b8e14bfd92ca2cc5bebf0ff2c19f0199fac342423755de21559b971ee12270ad136931","ssdeep":"","tlshash":"b2f054619cf52620dc837de43f621de4f54133190e9c06c4766d90864313197b6a601d","first_seen":"2023-09-09T19:31:17Z","last_seen":"2023-09-10T23:52:58Z","times_seen":439,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aticalfelixstownrus.info/utx?cb=RJD9XFcuUEC6\u0026top=megaup.net\u0026tid=761186","fqdn":"aticalfelixstownrus.info","domain":"aticalfelixstownrus.info","tld":"info"},"ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.940964339Z","timestamp":1694379513940,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /utx?cb=RJD9XFcuUEC6\u0026top=megaup.net\u0026tid=761186 HTTP/1.1\r\nHost: aticalfelixstownrus.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\nserver: openresty/1.17.8.2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://megaup.net\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\nset-cookie: ut=x; Expires=Sun, 10 Sep 2023 20:59:33 GMT; Max-Age=60\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: fJX0sI8kZ8Ng8ICdmSc6gW6gQNhxMmSm2cjLf5ulgwV_lWgxbOjCzg==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aticalfelixstownrus.info/utx?cb=FZfd769ODhy9\u0026top=megaup.net\u0026tid=825911","fqdn":"aticalfelixstownrus.info","domain":"aticalfelixstownrus.info","tld":"info"},"ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.942643642Z","timestamp":1694379513942,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /utx?cb=FZfd769ODhy9\u0026top=megaup.net\u0026tid=825911 HTTP/1.1\r\nHost: aticalfelixstownrus.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\nserver: openresty/1.17.8.2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://megaup.net\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\nset-cookie: ut=x; Expires=Sun, 10 Sep 2023 20:59:33 GMT; Max-Age=60\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: zojnDD__JmnDNtQgO2pv5Mb1NlVQMf6flnxqymlVy9AVsjH3A6AYLg==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.974931557Z","timestamp":1694379513974,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:FLLQ80wR_fhE3JN9CS-yZXf4RTvMcg:i06gxeVlIJrk5VFt; Expires=Tue, 09-Sep-2025 20:58:33 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026ifkv=AYZoVhdAjUt3QEPBRW3ipfMaMjA4NMyHmTsrYaG1vsvM5xUQj5N_WtrHt0ypJsoxQfMYVQo3e-XBXQ\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-opener-policy: unsafe-none\r\ncross-origin-resource-policy: cross-origin\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-xRRGP0Fqwu8h4Xi7vu3xsQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/fonts/raleway_bold.woff","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:33.995586802Z","timestamp":1694379513995,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/fonts/raleway_bold.woff HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://megaup.net/themes/flow/frontend_assets/css/fonts.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6; _ga_Z9TE2LW16Q=GS1.1.1694379513.1.0.1694379513.0.0.0; _ga=GA1.1.347109378.1694379514\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\ncontent-type: font/woff\r\ncontent-length: 31568\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-7b50\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":31568,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 31568, version 1.1\\012- data","md5":"e0c4ac0e73196bd0469c5c33304b7773","sha1":"bb071565f82907d117b0732dca8013409162c67d","sha256":"ff3bf3a4a1bf2b922157b18d0e8cddd95f2fc2dfe09c30a3ce67bc11a84c67af","sha512":"850bd12cc28459f01f0d398edf8d58e834dd0ce890cf7bd9bd3c237f574847832c3b841f8bdbe063d302e95edf06d464a63dbc7f44c6312b165f858e8eacd984","ssdeep":"768:AbAx6BRjYvG7fvoufxOXPHxcBn+xVwcjhYMoK5r1M9Fq:Abs8R6G71xAP2Bn+nwcjaTirSFq","tlshash":"5ce2e1d85908d707c3567d385918eb9ca995fdc0cb126f9b52921258361cefc083a37e","first_seen":"2023-04-07T14:26:10Z","last_seen":"2026-04-25T06:01:44.297166Z","times_seen":2673,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=mail","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:34.01621188Z","timestamp":1694379514016,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=mail HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:rfN0dmyD2C3Bd8rtJTp9Ji2QSxnf4g:tJbfWAtDDTZdcHks; Expires=Tue, 09-Sep-2025 20:58:33 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026ifkv=AYZoVhfRAd9r_ZTlCma_9oC_-DW3HukHh3N9-gm0e0TiIYWWBydyDgGE3Tf89oE6LTpSzfefRix8RA\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-opener-policy: unsafe-none\r\ncross-origin-resource-policy: cross-origin\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncontent-security-policy: script-src 'nonce-mspALDmjv6Xo2g9dJBQmEw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:34.034310738Z","timestamp":1694379514034,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Sun, 10 Sep 2023 20:58:33 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"e2dfeebda42275462be4c1b20fe1b66c","sha1":"99021e22053a501bed57981c24ce6dbc1486cee0","sha256":"487f4ecfe7ca98212b2274e00625ff493add046e76b28c9382731e7211856567","sha512":"11e2186c315c596917b0c47e0749a776a0b2b89d8ae3f03934d768372d6e3331a382d0f0099fa48d72a6438edf0b1080d9d32bd1e6360166f3bc425b580c6a99","ssdeep":"","tlshash":"5af0d40474ff0e41dd3e46d476bdf7383510bc8801a2ca113dad799a0ba56f48254914","first_seen":"2023-09-10T18:01:30Z","last_seen":"2023-09-12T05:49:14Z","times_seen":1345,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"hw-cdn2.adtng.com/delivery/intersection_observer/IntersectionObserver.js","fqdn":"hw-cdn2.adtng.com","domain":"adtng.com","tld":"com"},"ip":{"addr":"209.197.3.25","port":0,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:34.043052264Z","timestamp":1694379514043,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /delivery/intersection_observer/IntersectionObserver.js HTTP/1.1\r\nHost: hw-cdn2.adtng.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.adtng.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Sep 2023 20:58:33 GMT\r\nConnection: Keep-Alive\r\nETag: \"1649192094\"\r\nContent-Length: 16885\r\nContent-Type: application/javascript\r\nLast-Modified: Tue, 05 Apr 2022 20:54:54 GMT\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=10706580\r\nX-HW: 1694379513.dop207.sk1.t,1694379513.cds262.sk1.shn,1694379513.cds262.sk1.c\r\nAccess-Control-Allow-Origin: *\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":16885,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (16885), with no line terminators","md5":"48c80c7c28b5b00a8b4ff94a22b72fe3","sha1":"d57303c2ad2fd5cedc5cb20f264a6965a7819cee","sha256":"6e9be773031b3234fb9c2d6cf3d9740db1208f4351beca325ec34f76fd38f356","sha512":"c7381e462c72900fdbb82b5c365080efa009287273eb5109ef25c8d0a5df33dd07664fd1aed6eb0d132fa6a3cb6a3ff6b784bffeeca9a2313b1e6eb6e32ab658","ssdeep":"192:/u+H3An7ybVSpBjen6K1GegJjgF+TDg91wTr1PH3kV/LQB3OJIuq/Y4RBF4B3ve:/vAvUxEtkmZZY4RBF4hve","tlshash":"4572954c7250f0f743c39522413f120ff3369898b15a90687369d8fa6cb889e6267f79","first_seen":"2023-03-07T01:02:45Z","last_seen":"2026-05-07T04:29:58.758542Z","times_seen":2391,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aticalfelixstownrus.info/utx?cb=lmWyYFDliaMj\u0026top=megaup.net\u0026tid=876318","fqdn":"aticalfelixstownrus.info","domain":"aticalfelixstownrus.info","tld":"info"},"ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:34.052679348Z","timestamp":1694379514052,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /utx?cb=lmWyYFDliaMj\u0026top=megaup.net\u0026tid=876318 HTTP/1.1\r\nHost: aticalfelixstownrus.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\nserver: openresty/1.17.8.2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://megaup.net\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\nset-cookie: ut=x; Expires=Sun, 10 Sep 2023 20:59:33 GMT; Max-Age=60\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: MIYEVwWBHxQSnHlAw31Fhvhn4HXIQxY_uAMfJ4ugojjHCQKAaXkqVQ==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aticalfelixstownrus.info/utx?cb=Q2FImoD2lvyD\u0026top=megaup.net\u0026tid=764141","fqdn":"aticalfelixstownrus.info","domain":"aticalfelixstownrus.info","tld":"info"},"ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:34.072151893Z","timestamp":1694379514072,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /utx?cb=Q2FImoD2lvyD\u0026top=megaup.net\u0026tid=764141 HTTP/1.1\r\nHost: aticalfelixstownrus.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\nserver: openresty/1.17.8.2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://megaup.net\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\nset-cookie: ut=x; Expires=Sun, 10 Sep 2023 20:59:33 GMT; Max-Age=60\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: 8aOfHI2pgVNDXD-pboESzqXASHsg9CUObJmrykkmPPcXuUORd2-EjQ==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aticalfelixstownrus.info/multi?cs=OXgzRWcASAF2UghAB31XDksAdV4\u0026abt=0\u0026red=1\u0026sm=76\u0026k=download%20file%20advcwar1p2%20rebcamp%20nswtch%20base%20ziperto%20part1\u0026v=1.0.60.3\u0026sts=0\u0026prn=0\u0026emb=0\u0026tid=876318\u0026rxy=1280_1024\u0026fs=1\u0026ref=https%3A%2F%2Fmegaup.net%2F2zxS0%3Fpt%3D%2BJjuTHu6TNOglMOdAADjy9OUCG0%2FoTDvqWeRsl0MQQA%3D\u0026jst=0\u0026enr=0\u0026lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0\u0026tzd=0\u0026uloc=\u0026if=0\u0026_tLcE=1694379513704\u0026crc=1","fqdn":"aticalfelixstownrus.info","domain":"aticalfelixstownrus.info","tld":"info"},"ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:34.084715558Z","timestamp":1694379514084,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /multi?cs=OXgzRWcASAF2UghAB31XDksAdV4\u0026abt=0\u0026red=1\u0026sm=76\u0026k=download%20file%20advcwar1p2%20rebcamp%20nswtch%20base%20ziperto%20part1\u0026v=1.0.60.3\u0026sts=0\u0026prn=0\u0026emb=0\u0026tid=876318\u0026rxy=1280_1024\u0026fs=1\u0026ref=https%3A%2F%2Fmegaup.net%2F2zxS0%3Fpt%3D%2BJjuTHu6TNOglMOdAADjy9OUCG0%2FoTDvqWeRsl0MQQA%3D\u0026jst=0\u0026enr=0\u0026lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0\u0026tzd=0\u0026uloc=\u0026if=0\u0026_tLcE=1694379513704\u0026crc=1 HTTP/1.1\r\nHost: aticalfelixstownrus.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/plain\r\ncontent-length: 1661\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\nserver: openresty/1.17.8.2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://megaup.net\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\nset-cookie: csu=dc6ab826-f73c-4c52-b150-0569f8a39663\r\ncontent-encoding: gzip\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: fndt9sKgtz_xKFqx3tZZwuwHSTWBnTobbw_oJ4ETYaRpQ9Aszo8xqw==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1661,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (3423), with no line terminators","md5":"9287f80843d552d03bfc7fb2aac559a4","sha1":"7be5c709ddcda6f58298a738ae6b845fd26a966c","sha256":"c832986bf78b990e273ba779c559387d1169692410e1a6a8946c3409819c73c3","sha512":"d31c905cc5968c760101f82cb72d17cfbaf5cfd9144427978e235752e2e203ece5a036455275129626cb3e63ebaf58802b26519e2486bdb30ec06387cb111252","ssdeep":"","tlshash":"5161a699184fa66f10fed221a83acc7bac385f4b135f4cca9d3f32d22da20643235561","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026ifkv=AYZoVhdAjUt3QEPBRW3ipfMaMjA4NMyHmTsrYaG1vsvM5xUQj5N_WtrHt0ypJsoxQfMYVQo3e-XBXQ","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:34.110334191Z","timestamp":1694379514110,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026ifkv=AYZoVhdAjUt3QEPBRW3ipfMaMjA4NMyHmTsrYaG1vsvM5xUQj5N_WtrHt0ypJsoxQfMYVQo3e-XBXQ HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:aLHrdFXNBe3Dsu_71rilKB6M3RcecA:I-OPcOQdrijFVJvp;Path=/;Expires=Tue, 09-Sep-2025 20:58:34 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 10 Sep 2023 20:58:34 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AYZoVhfCls4N2oGPHdr-_zATvFVDvr_QIm9MWOQQNNTZl7Klrlp4Zep01Fr9DLnf6HxnbAw3540s\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1862956751%3A1694379514026431\u0026theme=glif\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-XKHt5XQcJdW1NBjnundSLA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 406\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":406,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with very long lines (397)","md5":"6ef357782934ccfa6e7115dee806f7e5","sha1":"c38637e6d5aa02eab4363d91abcad86af9630a81","sha256":"7be0923fb9b94aa49ab54ae43916801ad66c964acc27556b96057bca81ae38b1","sha512":"e27cf4249d7ae7c88848af4e33827cfb047782f107efe9487063ae201ca92808b6fce73139811271ab07a4b1c359fa55c5452acfb6fdfe9480f495c761a0c526","ssdeep":"","tlshash":"8cf0c0ae0c4508de246338fdd424a0cd047479653bd2a9b871fbd71190ead2320052b2","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026ifkv=AYZoVhfRAd9r_ZTlCma_9oC_-DW3HukHh3N9-gm0e0TiIYWWBydyDgGE3Tf89oE6LTpSzfefRix8RA","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:34.145878195Z","timestamp":1694379514145,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026ifkv=AYZoVhfRAd9r_ZTlCma_9oC_-DW3HukHh3N9-gm0e0TiIYWWBydyDgGE3Tf89oE6LTpSzfefRix8RA HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:Grg5tgQ2YiuqJAwoJdizzkFjFuRVuQ:hGgN9aVznAhqxjYg;Path=/;Expires=Tue, 09-Sep-2025 20:58:34 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 10 Sep 2023 20:58:34 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AYZoVhdZ5kkkzSEFOPMkK3JUZQafIx6CGvvvL_UBUnEsQNnkm9sfS_2ukJqgRCEkt-9TGEXhglsi\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S-2012409177%3A1694379514066949\u0026theme=glif\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-security-policy: script-src 'nonce-Qg57zqvzZ7ILitaDw2XnNA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 404\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":404,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with very long lines (394)","md5":"cc3c9d15528cc34044b7385eeb758b83","sha1":"f3a710fd82626036ba506c272cbda70aca203e91","sha256":"4001fc0c16b88efd877487ffb7ae25c1c7597c9022c8d4ac5bd48f174f79dcd1","sha512":"0024a162ef59066cb6962972cd0dcfbed53724166fec175e60b2cce710cc4a7a29e2ae7fe7af2e786c591ff559bd5809904901d1a8dd0023fe9e2ecc85c4a4fb","ssdeep":"","tlshash":"c3f00efe088600aea94338f7e818a49c5874745c3ec6f9a9b2f7b74580e5c1b20197f7","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"aticalfelixstownrus.info/floater?cs=VkZNNElud3oDcGd3eQZ7YHJ7BHk\u0026abt=0\u0026red=1\u0026sm=83\u0026k=download%20file%20advcwar1p2%20rebcamp%20nswtch%20base%20ziperto%20part1\u0026v=0.9.2.5\u0026sts=0\u0026prn=0\u0026emb=0\u0026tid=825911\u0026rxy=1280_1024\u0026fs=1\u0026t=600\u0026m=2\u0026ns=1\u0026ndp=1\u0026asi=1\u0026ref=https%3A%2F%2Fmegaup.net%2F2zxS0%3Fpt%3D%2BJjuTHu6TNOglMOdAADjy9OUCG0%2FoTDvqWeRsl0MQQA%3D\u0026jst=0\u0026enr=0\u0026lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0\u0026tzd=0\u0026uloc=\u0026if=0\u0026aa=oi1_\u0026_LmCF=1694379513702\u0026crc=1","fqdn":"aticalfelixstownrus.info","domain":"aticalfelixstownrus.info","tld":"info"},"ip":{"addr":"108.157.214.94","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:34.398882267Z","timestamp":1694379514398,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /floater?cs=VkZNNElud3oDcGd3eQZ7YHJ7BHk\u0026abt=0\u0026red=1\u0026sm=83\u0026k=download%20file%20advcwar1p2%20rebcamp%20nswtch%20base%20ziperto%20part1\u0026v=0.9.2.5\u0026sts=0\u0026prn=0\u0026emb=0\u0026tid=825911\u0026rxy=1280_1024\u0026fs=1\u0026t=600\u0026m=2\u0026ns=1\u0026ndp=1\u0026asi=1\u0026ref=https%3A%2F%2Fmegaup.net%2F2zxS0%3Fpt%3D%2BJjuTHu6TNOglMOdAADjy9OUCG0%2FoTDvqWeRsl0MQQA%3D\u0026jst=0\u0026enr=0\u0026lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0\u0026tzd=0\u0026uloc=\u0026if=0\u0026aa=oi1_\u0026_LmCF=1694379513702\u0026crc=1 HTTP/1.1\r\nHost: aticalfelixstownrus.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 2065\r\ndate: Sun, 10 Sep 2023 20:58:34 GMT\r\nserver: openresty/1.17.8.2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://megaup.net\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\nset-cookie: csu=6e2a033f-c059-4313-a278-94ef69ec8337\r\ncontent-encoding: gzip\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 0078c2805bf98a4574ea5eee972aa9f6.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: T6BkIozonE9yhOyEnd01V7WcTAhYz4tVVRgtCvGkZh5fGif4r9OH5g==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":2065,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (3971), with no line terminators","md5":"73cf473b6777818f957138fb5647adac","sha1":"aae291eafbbf88ee34159934f2c2b515048d7733","sha256":"99706d6f96f5e54a4b310f0512d045732ddb2387cc0b7af33001a8fba8621e71","sha512":"4ed36d3df52cb7eb1049b9e6b9d35dba0963d42dd2ba3500408420ca3d90126be617b4c5a83e008fd4f4e286bd0c6dcf6858c422e55ad5e3752e7cb45c2678bd","ssdeep":"","tlshash":"63813b8a25d6da8774fe1fd87e5a8f044bc195d58a8ba0357d2e3910d724d331e8c84d","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hw-cdn2.ang-content.com/delivery/vortex/vortex-simple-1.0.0.js","fqdn":"hw-cdn2.ang-content.com","domain":"ang-content.com","tld":"com"},"ip":{"addr":"205.185.208.20","port":443,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://a.adtng.com/get/10012456?time=1614803572912\u0026apb=ooddNHdLHTPHNVS4ASOpprpmtrdTbbZNLTK6V1Esqp6pXVTTOpmdQ6ap0rpXSunqoppdRNTRPTO6iamieml0rpnSuldK6V0zpXSumc6ujO6uzfi3TTTfeXWWzPW6q663euvSeWZ0rv9.czijBuZznSuldK6V0rpXSuldK6au6miy6qahwfY-","date":"2023-09-10T20:58:33.977Z","timestamp":1694379513977,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.ang-content.com","organization":"MG Premium Ltd"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 25 Oct 2022 00:00:00 GMT","end":"Sat, 25 Nov 2023 23:59:59 GMT"},"fingerprint":{"sha1":"51:DB:5E:DC:4B:47:52:13:46:14:6B:21:A1:A9:FB:FD:A5:78:DC:A6","sha256":"87:31:B8:1F:E1:35:51:23:9B:99:26:B3:9D:53:54:50:A2:5A:26:AF:8B:AA:FA:1D:ED:84:D3:96:B9:41:5B:8F"}}},"request":{"raw":"GET /delivery/vortex/vortex-simple-1.0.0.js HTTP/1.1\r\nHost: hw-cdn2.ang-content.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.adtng.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Sep 2023 20:58:35 GMT\r\nConnection: Keep-Alive\r\nETag: \"1541168231\"\r\nContent-Length: 5027\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 02 Nov 2018 14:17:11 GMT\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=10418728\r\nX-HW: 1694379515.dop232.sk1.t,1694379515.cds223.sk1.shn,1694379515.cds223.sk1.c\r\nAccess-Control-Allow-Origin: *\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5027,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (5027), with no line terminators","md5":"5e5817bcf4c82c7c85d1d88636d221ce","sha1":"b5c32cc6c931c33c1297884016e13d3b9a5bf261","sha256":"6f0e50ac39121175ca0427c4e87cdfa2520b526c8497e23cffbca726eb6ca42c","sha512":"08176e8fd06443f72738a279e22a28b4fd340e22d1abbf9a04f131286598cf1be98a79cbe776b37380fa3d6d396e431e3d8ba38f0b73fb0f3261b8753dccf706","ssdeep":"96:gfMHxJ7yWjtnYajBoq972unh1CzeOQ0es7rh69C2b4GhO78mslpUsvc:Pj7yunVLZs7rK4PVujvc","tlshash":"2cb17812167264361ef82561815f3e2e169246614b8b6ca1c3c5fe4cfdf6e23144bef3","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-05-07T04:29:58.76093Z","times_seen":2373,"resource_available":true,"data":null}},"time_used":3084,"timings":{"blocked":1535,"dns":1504,"connect":9,"send":0,"wait":9,"receive":1,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hw-cdn2.ang-content.com/a7/creatives/39/1187/805702/1030390/1030390_logo.png","fqdn":"hw-cdn2.ang-content.com","domain":"ang-content.com","tld":"com"},"ip":{"addr":"205.185.208.20","port":0,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:35.535614386Z","timestamp":1694379515535,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.ang-content.com","organization":"MG Premium Ltd"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 25 Oct 2022 00:00:00 GMT","end":"Sat, 25 Nov 2023 23:59:59 GMT"},"fingerprint":{"sha1":"51:DB:5E:DC:4B:47:52:13:46:14:6B:21:A1:A9:FB:FD:A5:78:DC:A6","sha256":"87:31:B8:1F:E1:35:51:23:9B:99:26:B3:9D:53:54:50:A2:5A:26:AF:8B:AA:FA:1D:ED:84:D3:96:B9:41:5B:8F"}}},"request":{"raw":"GET /a7/creatives/39/1187/805702/1030390/1030390_logo.png HTTP/1.1\r\nHost: hw-cdn2.ang-content.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.adtng.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Sep 2023 20:58:35 GMT\r\nConnection: Keep-Alive\r\nETag: \"1651515015\"\r\nContent-Length: 15603\r\nContent-Type: image/png\r\nLast-Modified: Mon, 02 May 2022 18:10:15 GMT\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=10766888\r\nX-HW: 1694379515.dop023.sk1.t,1694379515.cds258.sk1.shn,1694379515.dop023.sk1.t,1694379515.cds247.sk1.c\r\nAccess-Control-Allow-Origin: *\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":15603,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\\012- data","md5":"2aaacb14c0816c811151f7e5ad369e9f","sha1":"2b51b630dcbbdcd9cb0e9c298a5d4323de0f19f5","sha256":"c6f084bf2cbf871312c3c508455dfeff2bb11dc8909d98ab1a43897b16bedf4e","sha512":"45f30cf46bf21fe131b4a497d42ce6c21f967a74d1db6fa5da078a495d5f0de1962685e1a5bf96cbcfa252bc1786a0ea9371e677214d739acc4d4050c43d7026","ssdeep":"96:7SPkEWmYwzmSxNX7sc5Boa0a0a0a0a0a0a0a0T:7SPk6jmQga0a0a0a0a0a0a0a0T","tlshash":"4262a924a8f637dcd4c581721ca494025c3aa683e8c19d49b7de4c276fca7da6c0f07b","first_seen":"2023-04-23T00:15:16Z","last_seen":"2026-04-15T17:54:08.862268Z","times_seen":155,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hw-cdn2.ang-content.com/a7/creatives/39/1187/805702/1030390/1030390_video.mp4","fqdn":"hw-cdn2.ang-content.com","domain":"ang-content.com","tld":"com"},"ip":{"addr":"205.185.208.20","port":0,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:35.667518705Z","timestamp":1694379515667,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.ang-content.com","organization":"MG Premium Ltd"},"issuer":{"commonName":"DigiCert TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 25 Oct 2022 00:00:00 GMT","end":"Sat, 25 Nov 2023 23:59:59 GMT"},"fingerprint":{"sha1":"51:DB:5E:DC:4B:47:52:13:46:14:6B:21:A1:A9:FB:FD:A5:78:DC:A6","sha256":"87:31:B8:1F:E1:35:51:23:9B:99:26:B3:9D:53:54:50:A2:5A:26:AF:8B:AA:FA:1D:ED:84:D3:96:B9:41:5B:8F"}}},"request":{"raw":"GET /a7/creatives/39/1187/805702/1030390/1030390_video.mp4 HTTP/1.1\r\nHost: hw-cdn2.ang-content.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://a.adtng.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 206 Partial Content\r\nDate: Sun, 10 Sep 2023 20:58:35 GMT\r\nConnection: Keep-Alive\r\nETag: \"1651516075\"\r\nContent-Length: 241322\r\nContent-Range: bytes 0-241321/241322\r\nContent-Type: video/mp4\r\nLast-Modified: Mon, 02 May 2022 18:27:55 GMT\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=10384812\r\nX-HW: 1694379515.dop023.sk1.t,1694379515.cds258.sk1.shn,1694379515.dop023.sk1.t,1694379515.cds014.sk1.c\r\nAccess-Control-Allow-Origin: *\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":241322,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\\012- data","md5":"52c9ace410c8a18974ce86f153b0ef35","sha1":"6d56cd1072cdf6cea723e26e7027c5c24b035886","sha256":"01a7d757be5a8e5f1cc060a74cc6f8e2ac5ff4a79e1062c9b9676333b16aceec","sha512":"34150580434998a1edf79853cab635f324e9cb4e9121e3ca9743cc4f8a7fadefc9a79bddd049bfa81a44cf8146ce2a47936a28c6110a4a4f077f49bdc2eb69f6","ssdeep":"6144:SxUhAou5Hc+l6jzXMPlM83GorCTelwhgwF2CdiIy:DqHc/jTsxGQhlwhBsCi","tlshash":"f1341225c7305206e9a16a301ac8e738babcf84a32162fdf761c6db5cee11671f315b1","first_seen":"2023-04-07T07:10:08Z","last_seen":"2024-08-21T07:15:49.122477Z","times_seen":7,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"empafnyfiexpectt.info/bTF3WmZCDhQpWyB1JTQwBmg+GDAvWREtIytkRQhWL1Y1CDwDaFEuDwkMT2hTVABGfBYEVUppVEtCAzsSGEJKaFZdBFEzCAteSmhWXQdHaldeA1JtJQVFAyoVSAI2f1QrFEUcHgBdWTIJH0ISdwQEVRE1FB9UFjZIAkMQf1QrRR8vCw9fFjMKSAIxM0NedTZoFAsBPREjBVU6BVZIA0EqQ151RmxfWQJAY1NcAlloVF0JRm9DXwceNwEZFEQeDw5eGX9RLgBGblVYAUEFU1QIR25QXxRAGVNcBkBqUl8IQ2hUWQNEaVVVCUR8EFABWWNIXx9CfBNQAENrVFUFRGJRXwBHalRVBFEuFgxWSmtAHUUDNltcB05uVVoIQmtQWwVE","fqdn":"empafnyfiexpectt.info","domain":"empafnyfiexpectt.info","tld":"info"},"ip":{"addr":"188.114.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:36.773743985Z","timestamp":1694379516773,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"POST /bTF3WmZCDhQpWyB1JTQwBmg+GDAvWREtIytkRQhWL1Y1CDwDaFEuDwkMT2hTVABGfBYEVUppVEtCAzsSGEJKaFZdBFEzCAteSmhWXQdHaldeA1JtJQVFAyoVSAI2f1QrFEUcHgBdWTIJH0ISdwQEVRE1FB9UFjZIAkMQf1QrRR8vCw9fFjMKSAIxM0NedTZoFAsBPREjBVU6BVZIA0EqQ151RmxfWQJAY1NcAlloVF0JRm9DXwceNwEZFEQeDw5eGX9RLgBGblVYAUEFU1QIR25QXxRAGVNcBkBqUl8IQ2hUWQNEaVVVCUR8EFABWWNIXx9CfBNQAENrVFUFRGJRXwBHalRVBFEuFgxWSmtAHUUDNltcB05uVVoIQmtQWwVE HTTP/1.1\r\nHost: empafnyfiexpectt.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:36 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=HW48qqkpUcyBV0cFEpetAMBt%2F70O5Y8ex04mLPCkNymCw6HOkzyGBji2DW7lBo%2Fim69pb1lmeRLt1pb%2BeFVAd4CoJEBuGky8F%2FeL%2BrXao%2Fl3pT9cZ5mykSGZaFDGU1m6P%2FYimJYrJM4%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 804a970aca3c569d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/fonts/raleway.woff","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:36.920408296Z","timestamp":1694379516920,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/fonts/raleway.woff HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://megaup.net/themes/flow/frontend_assets/css/fonts.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6; _ga_Z9TE2LW16Q=GS1.1.1694379513.1.0.1694379513.0.0.0; _ga=GA1.1.347109378.1694379514\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:36 GMT\r\ncontent-type: font/woff\r\ncontent-length: 31836\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-7c5c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":31836,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 31836, version 1.1\\012- data","md5":"4514fa5a5b3d1e0b14aa32a7d068124a","sha1":"e634977bfabc20ed15fe7ed03d3876cf68834b93","sha256":"5b0f118d658eacc5740b10b0dc2ebbd99ee8e8262c72ff29bfcda48c02b19861","sha512":"5688e1ee21dc661d8bbd6db76821b29789043f5f9528dd7ce40954e0f0cbae6d1153ab430f9ae70b31f6c8cf72247b918f84747d608c94a6147eeee80b41621c","ssdeep":"768:2Fdq5E8aIKvbTEuK4hMMyIVZXpIElYjuXy:2FI5EHPDwuKGuwsEejuC","tlshash":"a0e2f286486d0f1ace28b7beffe732d064a85272cb72cdddd4642453da5d5075022d47","first_seen":"2023-04-11T18:08:40Z","last_seen":"2026-04-30T05:07:14.172385Z","times_seen":2705,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/fonts/raleway_extrabold.woff","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:36.923255995Z","timestamp":1694379516923,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/fonts/raleway_extrabold.woff HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://megaup.net/themes/flow/frontend_assets/css/fonts.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6; _ga_Z9TE2LW16Q=GS1.1.1694379513.1.0.1694379513.0.0.0; _ga=GA1.1.347109378.1694379514\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:36 GMT\r\ncontent-type: font/woff\r\ncontent-length: 31344\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-7a70\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":31344,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 31344, version 1.1\\012- data","md5":"21f79e4c0fbe54a555170aa70bb4c8b7","sha1":"9d4aaf2016cd21f16bc45089a48de84dba951fa7","sha256":"2b638674bc57ad355ef2ecbd68e78ecb36bc323aaaf4ddeb9cd4f61bc5f26c42","sha512":"1e968a5936efcb3f6372b047354027600abae6aee5b059e91caf035b3b488689dbdc6af3c2e2316833a90d59530eb00b90705780504ed8574d20f2163cbbc244","ssdeep":"768:FR+RRH9jpYBsGvNjWpgHY/02Jvb1veXNnXyUnl:FYZpYBbWpgvGmNnHnl","tlshash":"b0e2e04d2dea6e1bf68001ba18fb7b2066c16545df844f0ff20dbc13ac97aa22967457","first_seen":"2023-04-11T18:10:15Z","last_seen":"2026-04-01T20:07:09.044891Z","times_seen":2565,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/fonts/raleway_bold.woff","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:36.926986304Z","timestamp":1694379516926,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/fonts/raleway_bold.woff HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://megaup.net/themes/flow/frontend_assets/css/fonts.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6; _ga_Z9TE2LW16Q=GS1.1.1694379513.1.0.1694379513.0.0.0; _ga=GA1.1.347109378.1694379514\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:36 GMT\r\ncontent-type: font/woff\r\ncontent-length: 31568\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-7b50\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":31568,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 31568, version 1.1\\012- data","md5":"e0c4ac0e73196bd0469c5c33304b7773","sha1":"bb071565f82907d117b0732dca8013409162c67d","sha256":"ff3bf3a4a1bf2b922157b18d0e8cddd95f2fc2dfe09c30a3ce67bc11a84c67af","sha512":"850bd12cc28459f01f0d398edf8d58e834dd0ce890cf7bd9bd3c237f574847832c3b841f8bdbe063d302e95edf06d464a63dbc7f44c6312b165f858e8eacd984","ssdeep":"768:AbAx6BRjYvG7fvoufxOXPHxcBn+xVwcjhYMoK5r1M9Fq:Abs8R6G71xAP2Bn+nwcjaTirSFq","tlshash":"5ce2e1d85908d707c3567d385918eb9ca995fdc0cb126f9b52921258361cefc083a37e","first_seen":"2023-04-07T14:26:10Z","last_seen":"2026-04-25T06:01:44.297166Z","times_seen":2673,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/fonts/raleway_semibold.woff","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:36.929924883Z","timestamp":1694379516929,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/fonts/raleway_semibold.woff HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://megaup.net/themes/flow/frontend_assets/css/fonts.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6; _ga_Z9TE2LW16Q=GS1.1.1694379513.1.0.1694379513.0.0.0; _ga=GA1.1.347109378.1694379514\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:36 GMT\r\ncontent-type: font/woff\r\ncontent-length: 31980\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-7cec\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":31980,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 31980, version 1.1\\012- data","md5":"99ac81a158028ac2023fb3350d2497e7","sha1":"f08c12c91ab29282a616c3ba8e533f49b5b433ca","sha256":"92a8c8eca8cfcfc53855bc48ba50b866704a00323c4e3089b564c939a668925d","sha512":"7b26310ce2f53a3bb3f5a4701a9c945e3190263b17add279c0c26ffa18d5ad15048140c3576be49de5c54f8156073e62c362d2de70ee9efc75bc297ae6c67e17","ssdeep":"768:rusBBeUhRWvnas0lc/4auhvv67p/1ehu9t7EPmRy6VXZthd:rusbeUhRWvnt0mmxO/Qhu9GuXZl","tlshash":"30e2f1470d4c23a5c7c46134e046959e0afa1989bbb338c8269b98d636aff31f415f3a","first_seen":"2023-04-11T18:08:40Z","last_seen":"2026-04-01T20:07:09.049151Z","times_seen":2677,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AYZoVhdZ5kkkzSEFOPMkK3JUZQafIx6CGvvvL_UBUnEsQNnkm9sfS_2ukJqgRCEkt-9TGEXhglsi\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S-2012409177%3A1694379514066949\u0026theme=glif","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:37.273072172Z","timestamp":1694379517273,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AYZoVhdZ5kkkzSEFOPMkK3JUZQafIx6CGvvvL_UBUnEsQNnkm9sfS_2ukJqgRCEkt-9TGEXhglsi\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S-2012409177%3A1694379514066949\u0026theme=glif HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 10 Sep 2023 20:58:34 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-Z2rymA2LQqfhdMP-ePkf2Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":806,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document, Unicode text, UTF-8 text, with very long lines (1644), with no line terminators","md5":"ec5e1c44692e42bd7cbd2525dc862138","sha1":"57e71e72eefdbcfc65ee54aa5d822dc25d9008ae","sha256":"4cf6dd189d1fe30e497e4488436a28e4f7f8cdb30176df46415d8d1b5eef7628","sha512":"31b1479d74494588934c8cf009e65eaeea33481ab4f4381a1ec0a9825a54422d5825903f2d48d1f6c3f42443dc00ecbfe16157f48b0a80247140b480380f44ce","ssdeep":"","tlshash":"4731a67b6dcc30af782bc0e9e8d3615450124c84e396cfde6b18da39a1a9a4524319dd","first_seen":"2023-09-10T22:58:52Z","last_seen":"2023-09-10T22:58:52Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"static.servingserved.com/n337/ad/192x192_KqUUC9O6MHw77v2oLGCJ.jpeg","fqdn":"static.servingserved.com","domain":"servingserved.com","tld":"com"},"ip":{"addr":"151.139.128.10","port":0,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:37.36694513Z","timestamp":1694379517366,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /n337/ad/192x192_KqUUC9O6MHw77v2oLGCJ.jpeg HTTP/1.1\r\nHost: static.servingserved.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Sep 2023 20:58:37 GMT\r\ncontent-length: 6883\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 07 Apr 2023 23:12:25 GMT\r\naccept-ranges: bytes\r\netag: \"6430a359-1ae3\"\r\ncache-control: max-age=86400\r\nserver: fbs\r\nx-hw: 1694379517.cds010.sk1.hn,1694379517.cds018.sk1.c\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":6883,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\\012- data","md5":"316081929473623da65ba578c61180c3","sha1":"c8e70eecd0c9e1b8d4e1d092f7ef3be02eaff65a","sha256":"623137639eccb4f0279e1baf130284dc3875fcb52b935bc01fb34140c6192761","sha512":"c6c55675ff7b19392618771b68a32803135ef2b9918a3f88465c0f3ea0e813e428a6a161c84766ef0f478fdf87eee54827f2a3b1115da17ff5f6277a3b5da283","ssdeep":"","tlshash":"","first_seen":"2023-04-30T18:49:37Z","last_seen":"2023-12-07T00:15:46Z","times_seen":61,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/frontend_assets/fonts/raleway_medium.woff","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:38.978919839Z","timestamp":1694379518978,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/frontend_assets/fonts/raleway_medium.woff HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://megaup.net/themes/flow/frontend_assets/css/fonts.css\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6; _ga_Z9TE2LW16Q=GS1.1.1694379513.1.0.1694379513.0.0.0; _ga=GA1.1.347109378.1694379514\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:38 GMT\r\ncontent-type: font/woff\r\ncontent-length: 31900\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: \"60758f34-7c9c\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":31900,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 31900, version 1.1\\012- data","md5":"1b285c8e5b7445a8e434b2cdf036bab2","sha1":"c97d4772fbb5c5637d466b5f991bc7ec28830b32","sha256":"09b979826f2ac158a63ba234042c66414c21282d0bb46eadc62c64a873778825","sha512":"ae6596215b6708cbf90265c55c799a895e506bdef539c7cd71b19a6679c0b6ac43f9da0011850912e4a559fa7b54e4cc0518bec9db524e2c8914f06a86c1b470","ssdeep":"768:OKbIXZML2+rggwHCFj7lDaTRyMQsVPHDajmk:OMYDnElDInQ6Pejmk","tlshash":"09e2f15a3962c9ebd41c62b3d471c3f536e4c022469a3a91fdc3b45caa4572d14fb362","first_seen":"2023-04-07T18:32:22Z","last_seen":"2026-04-01T20:07:09.003138Z","times_seen":2670,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"empafnyfiexpectt.info/WnhtSFV1Rw47aA8/Ox4DaQgCHhIQHzx6Ew8hOh4cABQrIg9qF0s8PD5FVXpgY0lcbiUzHFB7Z3wLGSkhLwtQemVqTUshOzwXUHplak5deGRpSkh/FjIMGTgmf0ssbWccXV8OLTcUQyA6KAsIZTczHAsnJygdDCR7NQoKbWccDAU9ODgWDCE5f0srIXBpPAV+GBsWPjwDYisCF2V/Sls4cGk8XH5sbktacWBrS0N6Z2pAXH1waE4EJTIuXV4MPDkXA21iGRYYJDl/Ty59ZG1PXXxnY0xfemFoS157bWJLSz5oalZUZmd0TUs9aGtMXHptbktVf2drSF16bW9eGTg0PUVcbiUuDAF1ZGxBWXtiY01feGNpTw","fqdn":"empafnyfiexpectt.info","domain":"empafnyfiexpectt.info","tld":"info"},"ip":{"addr":"188.114.96.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:40.775643165Z","timestamp":1694379520775,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"POST /WnhtSFV1Rw47aA8/Ox4DaQgCHhIQHzx6Ew8hOh4cABQrIg9qF0s8PD5FVXpgY0lcbiUzHFB7Z3wLGSkhLwtQemVqTUshOzwXUHplak5deGRpSkh/FjIMGTgmf0ssbWccXV8OLTcUQyA6KAsIZTczHAsnJygdDCR7NQoKbWccDAU9ODgWDCE5f0srIXBpPAV+GBsWPjwDYisCF2V/Sls4cGk8XH5sbktacWBrS0N6Z2pAXH1waE4EJTIuXV4MPDkXA21iGRYYJDl/Ty59ZG1PXXxnY0xfemFoS157bWJLSz5oalZUZmd0TUs9aGtMXHptbktVf2drSF16bW9eGTg0PUVcbiUuDAF1ZGxBWXtiY01feGNpTw HTTP/1.1\r\nHost: empafnyfiexpectt.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nOrigin: https://megaup.net\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:40 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Yy%2FkSgZ7RvEisfO5Jdk6CZQyuu%2FF2xz659g1XbewgrwmLwq9uEKOb9DCEdCNJZoyBGqBLVf92miyTNsZHqveA%2FoEObmd1MhcPDIqynIrd6NHzm9QXRtmMF%2BXV5vLLKvLoE8gk7LgJUc%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 804a9723c876569d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"megaup.net/themes/flow/js/jquery.dataTables.min.js","fqdn":"megaup.net","domain":"megaup.net","tld":"net"},"ip":{"addr":"91.209.70.182","port":0,"asn":43317,"as":"FNK LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:40.795627303Z","timestamp":1694379520795,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /themes/flow/js/jquery.dataTables.min.js HTTP/1.1\r\nHost: megaup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: filehosting=vm9rtal40d1ssc9q1npqqghmv6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 13 Apr 2021 12:31:48 GMT\r\nvary: Accept-Encoding\r\netag: W/\"60758f34-10fe4\"\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: no-referrer, strict-origin-when-cross-origin\r\nx-download-options: noopen\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":19884,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (768)","md5":"737f853e9fd6a31d62f5028e88663c9f","sha1":"cf144f2ab49f53a69fbfe10d3588fc23437d2736","sha256":"6c3ca64b7acfdd29b3ca6f1b9b46696369abd462d4546182085c347f72211841","sha512":"c148b09fba278ea4a75f57817a8be87abd06f9a6d9a46a23619a32a4bcd4ca4ac89e73d969ecd359bfb2b6b09c7a25e6f5bec05b9435928f585847c47026d91c","ssdeep":"1536:9Wbx6yktBJR6wIsJLl8Td/7oHfCkYQJtpG3:EOMoa","tlshash":"7763ea1923043e2ecbef70d401af8e5e647069719a895070a169f8be2d76d7910fee7c","first_seen":"2023-03-07T01:02:10Z","last_seen":"2026-05-07T23:57:06.640953Z","times_seen":5613,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"static.servingserved.com/n337/ad/192x192_hpbo3YohsfFJjjTRWsB9.jpeg","fqdn":"static.servingserved.com","domain":"servingserved.com","tld":"com"},"ip":{"addr":"151.139.128.10","port":0,"asn":20446,"as":"STACKPATH-CDN","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-10T20:58:40.802119337Z","timestamp":1694379520802,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /n337/ad/192x192_hpbo3YohsfFJjjTRWsB9.jpeg HTTP/1.1\r\nHost: static.servingserved.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Sep 2023 20:58:40 GMT\r\ncontent-length: 6353\r\ncontent-type: image/jpeg\r\nlast-modified: Fri, 07 Apr 2023 23:13:51 GMT\r\naccept-ranges: bytes\r\netag: \"6430a3af-18d1\"\r\ncache-control: max-age=86400\r\nserver: fbs\r\nx-hw: 1694379520.cds010.sk1.hn,1694379520.cds257.sk1.c\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":6353,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\\012- data","md5":"760e083b0199dcf36cfadd363d72dbf6","sha1":"6469a8818e2991ddee3eb5e1261f27d0bebc13f7","sha256":"d4f6e490f7ce250a7f89d2b15391bc6e41eebf134ad92e220e6cdb863693c6d7","sha512":"da66f621907cc0ae8aeaa074475897f143947f7500137f336ceab4a645c49cd8fdff6663ea249eabe53d873bdaf3e30b44a9a71177774ff590ede007dbecdb1f","ssdeep":"","tlshash":"","first_seen":"2023-05-01T01:44:14Z","last_seen":"2023-12-08T18:07:52Z","times_seen":115,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"empafnyfiexpectt.info/Vkl3NHF5dhRHTA8fG0QUAAckVic6BC0FNyIeR3YaACQPUiUBCFFAGDJ0QAJAZ3FBEgE/LUoFVyU9FkAEJXRGEhg4LxgJVyB0RhpCYmdEAF9mbwIJQHA9B1UWa3hRRAUiJUoFR299RANIY3hFAklu","fqdn":"empafnyfiexpectt.info","domain":"empafnyfiexpectt.info","tld":"info"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://megaup.net/2zxS0?pt=+JjuTHu6TNOglMOdAADjy9OUCG0/oTDvqWeRsl0MQQA=","date":"2023-09-10T20:58:32.874Z","timestamp":1694379512874,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"empafnyfiexpectt.info","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 04 Sep 2023 06:52:14 GMT","end":"Sun, 03 Dec 2023 06:52:13 GMT"},"fingerprint":{"sha1":"0A:3C:72:5A:AE:C9:CE:C3:ED:9D:55:D4:4A:C3:28:A5:31:C0:1B:2B","sha256":"5F:9A:16:59:88:60:2D:52:9B:35:E6:62:13:A5:4B:F3:32:68:E5:50:28:88:C7:1B:B6:C6:AE:BB:07:D1:C6:93"}}},"request":{"raw":"GET /Vkl3NHF5dhRHTA8fG0QUAAckVic6BC0FNyIeR3YaACQPUiUBCFFAGDJ0QAJAZ3FBEgE/LUoFVyU9FkAEJXRGEhg4LxgJVyB0RhpCYmdEAF9mbwIJQHA9B1UWa3hRRAUiJUoFR299RANIY3hFAklu HTTP/1.1\r\nHost: empafnyfiexpectt.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://megaup.net/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 10 Sep 2023 20:58:32 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=JDqYXmI1hYP72rFZ2rIhq6FYTnjcyR%2F7tmQ98TI2aA5hNS6hmi9Xwkz0TXM9sLXttPanp0XPq7LxwTHpHq9xQn%2FLzjg3KQIiDwqmHzR%2Be4h5%2BtZrBamSh4hPPNZesuTNnQDy4AKo9zc%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 804a96f339e05696-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-08T08:53:18.790182Z","times_seen":14828819,"resource_available":true,"data":null}},"time_used":200,"timings":{"blocked":7,"dns":30,"connect":1,"send":0,"wait":122,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-09-10","alert":"Sinkholed","trigger":"empafnyfiexpectt.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.a-ads.com/a-ads-banners/406681/300x250?region=eu-central-1","fqdn":"static.a-ads.com","domain":"a-ads.com","tld":"com"},"ip":{"addr":"213.239.209.209","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ad.a-ads.com/1811811?size=300x250","date":"2023-09-10T20:58:33.549Z","timestamp":1694379513549,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.a-ads.com","organization":""},"issuer":{"commonName":"Sectigo ECC Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 21 Dec 2022 00:00:00 GMT","end":"Sun, 21 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"34:68:C2:05:E5:2A:4E:C3:F9:FC:94:69:D3:A6:BE:F2:21:A2:DE:AE","sha256":"85:E2:97:73:6B:81:B2:27:F1:BA:24:7D:D1:BA:31:FA:30:FD:D0:D5:46:DF:CE:3A:2C:F4:FC:42:14:E9:AB:D8"}}},"request":{"raw":"GET /a-ads-banners/406681/300x250?region=eu-central-1 HTTP/1.1\r\nHost: static.a-ads.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ad.a-ads.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Sep 2023 20:58:33 GMT\r\ncontent-type: image/gif\r\ncontent-length: 621339\r\nx-amz-id-2: Cs0DUuveHlDCKn7OdthHHIurClJgvxi1QcF6WlGe6Fk7Ppsp1wDAjaDDvSz75s/jzikeKFnZdd0=\r\nx-amz-request-id: HQG6Y8N8EXS6031A\r\nx-amz-replication-status: COMPLETED\r\nlast-modified: Thu, 04 Aug 2022 08:12:39 GMT\r\netag: \"c8694e7d5d3b9a928d4d57026ac2b68b\"\r\ncache-control: max-age=315360000\r\nx-amz-version-id: 4E6UO4Ah7Y9Th7PfdrLCDL4YiygucdkX\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":621339,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 300 x 250\\012- data","md5":"c8694e7d5d3b9a928d4d57026ac2b68b","sha1":"169b9f311167e19bd5061b53fc7e4f528e3ba7a9","sha256":"0c23834abdcff9f74a47b37290da55f2c84c31c82ce26d9493b39a388b51ed6a","sha512":"568c159ab197d54ee092ce63a91350de8996f5cbe2ead4ac2a9b2dda126d599c2719cd82ecb3afbe32a0154461d128a62fcc002ab805e5313f8c8400d99a5a98","ssdeep":"12288:8PvdF8a8QdESJA/7gjshwvwt0yMceLW5aiqSFA/7Bisnmv6:8PVBZAFhwv+FP3AZnmv6","tlshash":"c2d42308e35f50a9c83631361987342228e57dfe675107ca6e86ffe6b0b485ff8d4698","first_seen":"2023-04-11T22:59:56Z","last_seen":"2026-04-28T17:00:59.196308Z","times_seen":82,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":31,"dns":0,"connect":0,"send":0,"wait":42,"receive":182,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}