Report - multiup.org/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip

Report Overview

Visited public
2023-09-23 18:39:37
Tags
Submit Tags
URL
multiup.org/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Finishing URL
multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
IP / ASN
104.21.235.13
#13335 CLOUDFLARENET
Title
Download [Game3rb] My.Dream.Setup.v20230718-P2P.zip - Mirror Upload - MultiUp.io

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
multiup.io	unknown	2023-09-02	2021-02-02 15:22:06	2023-09-21 08:20:34	8.3 kB	1.7 MB	188.114.96.1
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-23 05:09:29	1.3 kB	2.8 kB	142.250.74.131
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-09-23 07:01:55	2.7 kB	114 kB	142.250.74.131
ulmoyc.com	34189	2021-10-13	2021-10-13 11:49:27	2023-09-23 13:02:07	488 B	24 kB	172.67.146.74
multiup.org	263500	2008-12-17	2014-11-01 21:04:59	2023-09-23 17:24:24	556 B	50 kB	104.21.235.14
cjvdfw.com	332488	2021-06-03	2021-08-31 14:56:03	2023-09-23 13:02:07	469 B	7.9 kB	185.56.234.205

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-09-23	medium	cjvdfw.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	cjvdfw.com/code/native.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ	ScriptElement	7.7 kB	2023-04-20	2024-08-21
Pretty URL cjvdfw.com/code/native.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ IP 185.56.234.205 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-20 16:12 Last Seen2024-08-21 09:44 Times Seen599 Hash b4fcba74e2b75cde2a94dd08236adedf 5283b5824bca5bce2e83be5fda06b0e60354c7d8 8f7c2f28234cc692e04108fb39f9267c401bfb74bcb9a1ce5c3b97a23b8ef2c5 Loading...

	multiup.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	ScriptElement	1.2 kB	2023-03-07	2025-07-25
Pretty URL multiup.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 03:21 Times Seen94569 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	multiup.io/build/runtime.0b137493.js	ScriptElement	1.4 kB	2023-03-08	2025-07-25
Pretty URL multiup.io/build/runtime.0b137493.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:40 Last Seen2025-07-25 02:34 Times Seen814 Hash 0b4fc9b3ef5d80f5ed570385eee3fa4c 397c84c672e54103fa082f592f83e8afb6961af5 582c9d450dcfaf9d550547fc8e22f5da17262c8f4ce6d283c0357e94e4803937 Loading...

	multiup.io/build/app.6b0cbd46.js	ScriptElement	188 kB	2023-03-09	2025-07-25
Pretty URL multiup.io/build/app.6b0cbd46.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 12:08 Last Seen2025-07-25 02:34 Times Seen229 Hash 6f77d251bacf7b2935dbe06ebbee0cf7 c99c89d26212e7283c0b164c00e6d99fbac59b61 e90703f0dcd04fd8f404c7409417a27f910bfb70e3aab6a6960aa0d3bc329793 Loading...

	multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip	ScriptElement	206 B	2023-03-08	2024-08-21
Pretty URL multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 14:40 Last Seen2024-08-21 09:44 Times Seen600 Hash f0f42d78748fb98334f467277c580a21 58529499749138ec3f0b5f8397ab9e37a8e4e716 1a4873812e8ccb12b9a1be4b3f7e0f25e195b6f469c52405a99e718d46107806 Loading...

	multiup.io/assets/javascripts/theme.custom.js	ScriptElement	5.5 kB	2023-03-09	2025-07-25
Pretty URL multiup.io/assets/javascripts/theme.custom.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 12:08 Last Seen2025-07-25 02:34 Times Seen228 Hash 1dcaf4e6787e765638bc4efbe93d4d20 61c72e21b6cb876b88796a8171888a22c98145fc bafb4c01920ef2f70e7576877c4ae8337430bab45d9989bccdb5aa8ceac1c3b6 Loading...

	multiup.io/assets/javascripts/theme.init.js	ScriptElement	12 kB	2023-03-09	2025-07-25
Pretty URL multiup.io/assets/javascripts/theme.init.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 12:08 Last Seen2025-07-25 02:34 Times Seen229 Hash 12b8112503f03174141accfaddfea377 32cd1f053775dd6e57d59b62891c42a8e15337a0 cd154ef50731da006417c6efeb24ed614d9d6a16533768009b3f4bc1023c7fdc Loading...

	ulmoyc.com/v1/sdk.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ&d=multiup.org&sw=evasw.js	ScriptElement	13 kB	2023-08-01	2023-09-25
Pretty URL ulmoyc.com/v1/sdk.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ&d=multiup.org&sw=evasw.js IP 172.67.146.74 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-01 01:57 Last Seen2023-09-25 13:57 Times Seen600 Hash 6c008fb1cd3c6b2115c0ba1784819107 49d2eccff43a82be4f0cc57a8113711442747ab4 3cb0ea2ab70576c34ca2bdd4ccf38c64e88141bdfc47d8a4a94ff8abac0b8fa8 Loading...

	multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip	ScriptElement	167 B	2023-09-23	2024-08-21
Pretty URL multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-23 00:31 Last Seen2024-08-21 06:02 Times Seen55 Hash ea87cc4429e21c860ae6990003aa5e26 00e9fe5fd0e5a7b40113c9f5422e447fbc858c7e 29fe1db498f2c28590c63b2b43d4b17838398e20b7749f993b0e580008f37c44 Loading...

	multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip	ScriptElement	3.7 kB	2024-08-21	2024-08-21
Pretty URL multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 05:55 Last Seen2024-08-21 05:55 Times Seen1 Hash 7330c285dbe4e089a4361c8e9c590ebd 8a1f17d7303708b19a48d5feeb7e8053160fb189 929a39345394c7c5d0ef0c7246f46b15c38869de367c6bd2e3ec18ef920eb340 Loading...

	multiup.io/build/610.15f042f0.js	ScriptElement	1.1 MB	2023-03-11	2025-07-25
Pretty URL multiup.io/build/610.15f042f0.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:24 Last Seen2025-07-25 02:34 Times Seen186 Hash 14d57173fe94b81151ec0291edff5b52 bf0dc05a9ff7de6b060630e8456f7ea04335cdf0 bc498ed63135932b388bca1729183d75d99a2b4ad00462c05d507616ff705a55 Loading...

	multiup.io/assets/javascripts/theme.js	ScriptElement	113 kB	2023-03-09	2025-07-25
Pretty URL multiup.io/assets/javascripts/theme.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:47 Last Seen2025-07-25 02:34 Times Seen228 Hash 960ba50181ebb13aa94e4ce229800a3e 480e746ad1870f9d026e141a736e5b3092a641ef 5b997a5c4edb2871e7a5fcd1da037ef83063fd7707dec8cb1f5ef72b9cbb10c5 Loading...

HTTP Transactions (27)

URL IP Response Size

GET multiup.io/assets/share/whatsapp_icon.png

188.114.96.1

200 OK

4.5 kB

URL GET HTTP/3
multiup.io/assets/share/whatsapp_icon.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Size
4.5 kB (4509 bytes)
Hash
17578a0d5000d8d5e980456d7756b0f0
4642c0bc9178971c7a419201ae0828ef7d0c7f92
c8b9becadb21b39790e84aa55ba821e02d6d48e8b7c877916445cacecd794123

HTTP Headers

GET /assets/share/whatsapp_icon.png HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: image/png
content-length: 4509
last-modified: Sat, 16 Jan 2016 10:34:46 GMT
etag: "569a1cc6-119d"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jiZb%2FgVwz4F9WAqRw5A%2BdIPq5cmRCFw8oYKoD2ZK%2FKzpU1l9rcXTvbKcedNQ5VzuCoZn5x5fQ0WKngIQ%2FUiYQB7njmGuF2wKdpYL4jO3vK%2FEWt8EAZoCOK8ZlbE7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4e8dd1976b50b-OSL
alt-svc: h3=":443"; ma=86400

GET multiup.io/assets/share/facebook_icon.png

188.114.96.1

200 OK

447 B

URL GET HTTP/3
multiup.io/assets/share/facebook_icon.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Size
447 B (447 bytes)
Hash
1262e2367b9402eaebe6da4c48649313
00bb9c047c87216cd73e319832e791f2cdd080db
a145cc11ef790f22fde699f8729d5899b6c97529b0dc012be9f15253b466212f

HTTP Headers

GET /assets/share/facebook_icon.png HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: image/png
content-length: 447
last-modified: Mon, 13 Apr 2015 01:04:08 GMT
etag: "552b1608-1bf"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F0DvIq7yp94cqiwCOuFKrF46vQO%2B9mHKSthtUUeTeeXWIOv9uYlDWNClmLAyGVDWq8kJNj1Up7ruljQCAzMJTa5wsTHqAJiOdTARLgsoW%2B%2FT9qas9zVzIyNzQNLD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4e8dd0971b50b-OSL
alt-svc: h3=":443"; ma=86400

GET multiup.io/assets/share/twitter_icon.png

188.114.96.1

200 OK

676 B

URL GET HTTP/3
multiup.io/assets/share/twitter_icon.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
676 B (676 bytes)
Hash
06c86f9bce743d1b3b35a4485b4a4122
ade73651ec1d6c038beb44d4808b4ea04bec86eb
1b6a51d3005bd8870c6193c1d376e8c4f44e12b76c5acb55ace757f834dd725e

HTTP Headers

GET /assets/share/twitter_icon.png HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: image/png
content-length: 676
last-modified: Mon, 13 Apr 2015 01:04:08 GMT
etag: "552b1608-2a4"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UTHyrbFAvPCdJBydbLuiHYzYc2qpsp4f%2F6R7v9qrZ7YzEusyYz0PNpETUr%2BNHLs8YE86wQekhzPZesHXKD%2BULjcbDkIxWEI8bfTJR5i1MX6YhQUBd%2FNHnRxhEJSv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4e8dd0974b50b-OSL
alt-svc: h3=":443"; ma=86400

GET multiup.io/build/images/gray_jean.ced81a01.png

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
multiup.io/build/images/gray_jean.ced81a01.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
PNG image data, 150 x 150, 8-bit grayscale, non-interlaced\012- data
Size
14 kB (13475 bytes)
Hash
e3d55104d9a9f186da3df4f730b77f4d
7e5e6e302e5ac36d5d45ed171cda5c3ccb182d13
7037cba1540dc0d8eaec93c3d6f978f6757b72ed63177e6c458f738872fa3224

HTTP Headers

GET /build/images/gray_jean.ced81a01.png HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/build/app.3a8e05b1.css
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: image/png
content-length: 13475
last-modified: Thu, 08 Jun 2023 13:25:25 GMT
etag: "6481d6c5-34a3"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8srI5yasWqi5WpqSezQsztNQggDK0soXlhzeaREObXXrstTKBnBtiq25ehroFSA3p2lVtr1TJMFxlgRR1DPErY2oJ6cyaWbcRvJZqCrnS6tlsw%2BupKIGK8AST5Op"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4e8de5b1bb50b-OSL
alt-svc: h3=":443"; ma=86400

GET multiup.io/build/fonts/fontawesome-webfont.20fd1704.woff2

188.114.96.1

200 OK

77 kB

URL GET HTTP/3
multiup.io/build/fonts/fontawesome-webfont.20fd1704.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /build/fonts/fontawesome-webfont.20fd1704.woff2 HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/build/app.3a8e05b1.css
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: application/font-woff2
content-length: 77160
last-modified: Thu, 08 Jun 2023 13:25:25 GMT
etag: "6481d6c5-12d68"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n11OCnYtYRPTW5BSOUmZxDhraseE%2BAPMMnhOnMTKweYYEqH%2FTl4AU%2B0WbMTvf2UVBYZHnkQ2XSzPLbGDbmFdmOnG47%2BbW0hQQ1s%2F9AT0GyyYI6h%2BsygenLMgycwe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4e8dedb7eb50b-OSL
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
23ee71f34a80feec27e23d99ecada83e
62f4c8dcc03187e2bdcdfa76dc732d4eebde5cc1
429bd03ec19810ed389955d166c98e62d9850e52160fbec3dd27da2cc30200fe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 18:39:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2a9cb3694beef11368f7284821163a4d
32d723fad91ccd0c154e5d7e489266cfe596aa61
08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 18:39:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET multiup.io/build/runtime.0b137493.js

188.114.96.1

200 OK

19 kB

URL GET HTTP/3
multiup.io/build/runtime.0b137493.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
ASCII text, with very long lines (1399), with no line terminators
Size
19 kB (19202 bytes)
Hash
0b4fc9b3ef5d80f5ed570385eee3fa4c
397c84c672e54103fa082f592f83e8afb6961af5
582c9d450dcfaf9d550547fc8e22f5da17262c8f4ce6d283c0357e94e4803937

HTTP Headers

GET /build/runtime.0b137493.js HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: application/javascript
last-modified: Thu, 08 Jun 2023 13:25:25 GMT
vary: Accept-Encoding
etag: W/"6481d6c5-577"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UG6Icc1S8%2F3Vm9rgzadnLhOaVUjvmg9emy4h1MXtn05UPxEW0ccHCYEb%2FouMUpuc6ITsYelhzWvMg2SpIkNWtAxivxrqRMwlQBuwkUmsoNlTw3FIZkQM1foHT7yK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b4e8dd197ab50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
23ee71f34a80feec27e23d99ecada83e
62f4c8dcc03187e2bdcdfa76dc732d4eebde5cc1
429bd03ec19810ed389955d166c98e62d9850e52160fbec3dd27da2cc30200fe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 18:39:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET fonts.gstatic.com/s/opensans/v15/k3k702ZOKiLJc3WVjuplzInF5uFdDttMLvmWuJdhhgs.ttf

142.250.74.131

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v15/k3k702ZOKiLJc3WVjuplzInF5uFdDttMLvmWuJdhhgs.ttf
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansBold1.10;1ASC;OpenSans-Bold\012- data
Size
19 kB (18670 bytes)
Hash
7e08cc656863d52bcb5cd34805ac605b
f6e1c78441d4ca2ef589ce79e48d3dbf9dca9a0d
0782a52179d0e25f19c39b43253795b25787d65abdbd8bfa38be0f21a4512748

HTTP Headers

GET /s/opensans/v15/k3k702ZOKiLJc3WVjuplzInF5uFdDttMLvmWuJdhhgs.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://multiup.io
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18670
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 13:06:34 GMT
expires: Sun, 22 Sep 2024 13:06:34 GMT
cache-control: public, max-age=31536000
age: 19965
last-modified: Wed, 11 Oct 2017 21:49:43 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v15/cJZKeOuBrn4kERxqtaUH3aCWcynf_cDxXwCLxiixG1c.ttf

142.250.74.131

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v15/cJZKeOuBrn4kERxqtaUH3aCWcynf_cDxXwCLxiixG1c.ttf
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Size
18 kB (17857 bytes)
Hash
c045b73d86803686f4cd1cc3f9ceba59
92d652578c531e2c3d9db4622584f6a1ab2c225a
927658fe940c899225567ad7885c40a7871dee09c2b9f00d31f7ca62d1f424fc

HTTP Headers

GET /s/opensans/v15/cJZKeOuBrn4kERxqtaUH3aCWcynf_cDxXwCLxiixG1c.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://multiup.io
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17857
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 11:49:43 GMT
expires: Tue, 17 Sep 2024 11:49:43 GMT
cache-control: public, max-age=31536000
age: 456576
last-modified: Wed, 11 Oct 2017 21:49:44 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2a9cb3694beef11368f7284821163a4d
32d723fad91ccd0c154e5d7e489266cfe596aa61
08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 18:39:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET ulmoyc.com/v1/sdk.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ&d=multiup.org&sw=evasw.js

172.67.146.74

200 OK

23 kB

URL GET HTTP/2
ulmoyc.com/v1/sdk.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ&d=multiup.org&sw=evasw.js
IP
172.67.146.74:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCD:DD:38:36:C9:D7:C6:57:0F:37:40:C0:26:79:F4:CB:12:B0:0C:48
ValiditySun, 29 Jan 2023 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13272), with no line terminators
Size
23 kB (23075 bytes)
Hash
6c008fb1cd3c6b2115c0ba1784819107
49d2eccff43a82be4f0cc57a8113711442747ab4
3cb0ea2ab70576c34ca2bdd4ccf38c64e88141bdfc47d8a4a94ff8abac0b8fa8

HTTP Headers

GET /v1/sdk.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ&d=multiup.org&sw=evasw.js HTTP/1.1
Host: ulmoyc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:39:19 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=14400
access-control-allow-origin: https://multiup.org
etag: W/"SdLsz/Q6gr5PDMV6gRNxFEJ0erQ"
last-modified: Mon, 31 Jul 2023 12:29:40 GMT
x-zone: eu
cf-cache-status: HIT
age: 2002
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qkh0hYEc4Wx%2F3xOsd88Nf%2FNbYA1p6A36r3BuJ6nDs21ye%2FWlwVrc982VXe3gSi23Cqd0xzuHx%2F2vtR8WalcNpiAOyiHQ0lagi28I9r9rvA27YCUTNUijwHDn0%2BZB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b4e8e129f856b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v15/cJZKeOuBrn4kERxqtaUH3aCWcynf_cDxXwCLxiixG1c.ttf

142.250.74.131

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v15/cJZKeOuBrn4kERxqtaUH3aCWcynf_cDxXwCLxiixG1c.ttf
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Size
18 kB (17857 bytes)
Hash
c045b73d86803686f4cd1cc3f9ceba59
92d652578c531e2c3d9db4622584f6a1ab2c225a
927658fe940c899225567ad7885c40a7871dee09c2b9f00d31f7ca62d1f424fc

HTTP Headers

GET /s/opensans/v15/cJZKeOuBrn4kERxqtaUH3aCWcynf_cDxXwCLxiixG1c.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://multiup.io
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17857
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 11:49:43 GMT
expires: Tue, 17 Sep 2024 11:49:43 GMT
cache-control: public, max-age=31536000
age: 456576
last-modified: Wed, 11 Oct 2017 21:49:44 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET multiup.io/build/app.3a8e05b1.css

188.114.96.1

200 OK

110 kB

URL GET HTTP/3
multiup.io/build/app.3a8e05b1.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
ASCII text, with very long lines (61854)
Size
110 kB (110141 bytes)
Hash
8cb6aed291b0b6f3837bd1593ac8db7a
2b585c217008e290a59c19840d7ca43997fc7f6e
c90d1244813a964cb1c495da3bbe5b2c21d37732f5b1c2ad3e5a2f9868339a6e

HTTP Headers

GET /build/app.3a8e05b1.css HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: text/css
last-modified: Thu, 08 Jun 2023 13:25:25 GMT
vary: Accept-Encoding
etag: W/"6481d6c5-97d14"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CLAy40YKbUA7UegrTTkHJKQXm0ELlk82x083bM78RWTgqBoFW4F%2BJM5%2F%2BYHQvLI7AZoXVa%2F2mtsBUw8wdyr9okQ0COOUXrzkRbWcxxOFNq6xK2CJLMTXBq5PIXLY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b4e8dd096fb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET multiup.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
multiup.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: application/javascript
last-modified: Wed, 20 Sep 2023 08:17:07 GMT
etag: W/"650aaa83-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CePam3bHPWFOmk9%2F2wWErNHib95ZY15hhJ0OhvQYGhfsIM2RyIME%2Fpi173WALjTZB4Q5eTMsttCcwB%2F2fusdJzJJ3ExkLThJbNMPAKfuvrFjwZfyVuuxNFSydHv7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4e8dd1978b50b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 25 Sep 2023 18:39:18 GMT
cache-control: max-age=172800, public
content-encoding: gzip

GET multiup.io/favicon.ico

188.114.96.1

200 OK

854 B

URL GET HTTP/3
multiup.io/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
854 B (854 bytes)
Hash
53bfb4a8399c379e6857b5e848d3a408
6c59da45ce3e443722a71c4cfaaa92a990e17610
9f55eab5447f560225a66911fcbe9edca0c35c7da9ca994bf6f7e5af6881b11e

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:19 GMT
content-type: image/x-icon
last-modified: Fri, 07 Aug 2020 09:03:58 GMT
etag: W/"5f2d18fe-356"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5669
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jxPkE42tDdn7UJJooDo0u3v89HPR59uaYQn7sLr3dz3JN2ZtZX0p9mJpZT6XcZzMFmTs2WSIbBW58EXkv6GY0rE80qRQ8k%2FZazmLEKSd4x77LITRD6iNaMxOYrLS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4e8e16df8b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip

188.114.96.1

200 OK

50 kB

URL User Request GET HTTP/2
multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type

Size
50 kB (49536 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=0, must-revalidate, private
expires: Sat, 23 Sep 2023 18:39:18 GMT
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: BYPASS
set-cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm; path=/; HttpOnly; SameSite=lax
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JNMjVkK%2BNBzjHiAEws6OsAwfO7t21LTjWlkSn052EHsvjnIZDGuXcPj3KUYPRmV4PxYG1aWUAabrkKTfuZNliOPqonHRGWMIsiaN%2FLhovlhqvjIh3cAw75%2BVCdYv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b4e8d9ef1a56b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET multiup.io/build/610.15f042f0.js

188.114.96.1

200 OK

1.1 MB

URL GET HTTP/3
multiup.io/build/610.15f042f0.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type

Size
1.1 MB (1101152 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /build/610.15f042f0.js HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: application/javascript
last-modified: Thu, 08 Jun 2023 13:25:25 GMT
vary: Accept-Encoding
etag: W/"6481d6c5-10cd60"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wXRRhh7FpUwykedt2MDuZEPcmLgmeDivb02zIP80SMxRwhCgH9PbAlxGjL7YgZD1dfgXi1HbQTkwFtZ3Lqz8AwX6mrq%2FLpSWjiswOskhdO62q3%2FdKkV9y%2FJn1uJO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b4e8dd197eb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET multiup.io/assets/javascripts/theme.js

188.114.96.1

200 OK

113 kB

URL GET HTTP/3
multiup.io/assets/javascripts/theme.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
assembler source, ASCII text, with very long lines (2076), with CRLF line terminators
Size
113 kB (112659 bytes)
Hash
960ba50181ebb13aa94e4ce229800a3e
480e746ad1870f9d026e141a736e5b3092a641ef
5b997a5c4edb2871e7a5fcd1da037ef83063fd7707dec8cb1f5ef72b9cbb10c5

HTTP Headers

GET /assets/javascripts/theme.js HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: application/javascript
last-modified: Sat, 30 Dec 2017 09:43:01 GMT
vary: Accept-Encoding
etag: W/"5a475fa5-1b813"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yO2a4EzDshM9DlVdGLMvNLMKfWVnQ947TCkVfGBRuTUneQYRtUbn2dO3tNYWUJYlHoWtha0rTCkAV5e9J33pb1ylOcXpz4WY0Y4%2F9fYrtHgq9vl7tli0NUdZQSBL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b4e8dd3995b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET multiup.io/assets/javascripts/theme.init.js

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
multiup.io/assets/javascripts/theme.init.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
ASCII text, with CRLF line terminators
Size
12 kB (12419 bytes)
Hash
12b8112503f03174141accfaddfea377
32cd1f053775dd6e57d59b62891c42a8e15337a0
cd154ef50731da006417c6efeb24ed614d9d6a16533768009b3f4bc1023c7fdc

HTTP Headers

GET /assets/javascripts/theme.init.js HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: application/javascript
last-modified: Mon, 29 May 2017 18:26:32 GMT
vary: Accept-Encoding
etag: W/"592c67d8-3083"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a2bch5%2FLZULU8OSz4zEm6TyeIjR1ctBZGo1H%2BDFa1zBZpIVBhJIpvM5XKQJbns140HTSH2TeZe05uKDGHBOf8h9xpmf%2BGXSA9N0RmLc0E%2FLnSvS5i3NLUqspMjFF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b4e8dd399bb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET fonts.gstatic.com/s/opensans/v15/DXI1ORHCpsQm3Vp6mXoaTYnF5uFdDttMLvmWuJdhhgs.ttf

142.250.74.131

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v15/DXI1ORHCpsQm3Vp6mXoaTYnF5uFdDttMLvmWuJdhhgs.ttf
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open Sans LightRegular1.10;1ASC;Open\012- data
Size
28 kB (27604 bytes)
Hash
177cc92d2e8027712a8c1724abd272cd
861b3593521709d9fa8a8efb6f40817dd7fa9337
2289b94b0f245d3078128fbdd2a5c59648ddd94ac1a7dd749b2375596ac8d562

HTTP Headers

GET /s/opensans/v15/DXI1ORHCpsQm3Vp6mXoaTYnF5uFdDttMLvmWuJdhhgs.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://multiup.io
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18450
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 10:32:28 GMT
expires: Sun, 22 Sep 2024 10:32:28 GMT
cache-control: public, max-age=31536000
age: 29211
last-modified: Wed, 11 Oct 2017 21:49:35 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/opensans/v15/DXI1ORHCpsQm3Vp6mXoaTYnF5uFdDttMLvmWuJdhhgs.ttf

142.250.74.131

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v15/DXI1ORHCpsQm3Vp6mXoaTYnF5uFdDttMLvmWuJdhhgs.ttf
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open Sans LightRegular1.10;1ASC;Open\012- data
Size
28 kB (27604 bytes)
Hash
177cc92d2e8027712a8c1724abd272cd
861b3593521709d9fa8a8efb6f40817dd7fa9337
2289b94b0f245d3078128fbdd2a5c59648ddd94ac1a7dd749b2375596ac8d562

HTTP Headers

GET /s/opensans/v15/DXI1ORHCpsQm3Vp6mXoaTYnF5uFdDttMLvmWuJdhhgs.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://multiup.io
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18450
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 10:32:28 GMT
expires: Sun, 22 Sep 2024 10:32:28 GMT
cache-control: public, max-age=31536000
age: 29211
last-modified: Wed, 11 Oct 2017 21:49:35 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET multiup.org/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip

104.21.235.14

301 Moved Permanently

50 kB

URL User Request GET HTTP/2
multiup.org/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
IP
104.21.235.14:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectmultiup.org
Fingerprint1F:8E:91:4F:5E:1A:2D:F2:2D:FA:3D:7C:1B:B3:5C:B0:03:2E:3A:C8
ValidityFri, 01 Sep 2023 09:04:48 GMT - Thu, 30 Nov 2023 09:04:47 GMT

File type

Size
50 kB (49536 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip HTTP/1.1
Host: multiup.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Sat, 23 Sep 2023 18:39:18 GMT
location: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
cache-control: max-age=3600
expires: Sat, 23 Sep 2023 19:39:18 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OeioAT9rCz7muFUDNAKhgc9paIpRnHjQEqxf21%2F9XusObii9arskMn73AjYWu3jBlAuBxJy1YMHB8eHEb%2BCpwqACTdGizzju7m%2BA8P7ys4vc0y4h7pbYVeIVX%2FWhYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b4e8d98fe44179-LHR
X-Firefox-Spdy: h2

GET multiup.io/build/app.6b0cbd46.js

188.114.96.1

200 OK

188 kB

URL GET HTTP/3
multiup.io/build/app.6b0cbd46.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
ASCII text, with very long lines (65466)
Size
188 kB (188405 bytes)
Hash
6f77d251bacf7b2935dbe06ebbee0cf7
c99c89d26212e7283c0b164c00e6d99fbac59b61
e90703f0dcd04fd8f404c7409417a27f910bfb70e3aab6a6960aa0d3bc329793

HTTP Headers

GET /build/app.6b0cbd46.js HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: application/javascript
last-modified: Thu, 08 Jun 2023 13:25:25 GMT
vary: Accept-Encoding
etag: W/"6481d6c5-2dff5"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jW5zTjbgXHRUZ4Oni70gZ%2BvVwl9I4LPcV1blDlZuryf35zjhEjMEkNb8qyJSC4c2RS%2Fn1b7NDwWO%2Flxt6NKgJ1n4phJk0PYp2tew0lg56%2BaiaSRlYh6fOOSBCFIE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b4e8dd2984b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET multiup.io/assets/javascripts/theme.custom.js

188.114.96.1

200 OK

5.5 kB

URL GET HTTP/3
multiup.io/assets/javascripts/theme.custom.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerGoogle Trust Services LLC
Subjectmultiup.io
FingerprintAE:25:01:15:6E:0E:36:9C:34:02:4E:6A:2F:97:10:BE:87:C0:53:95
ValidityThu, 21 Sep 2023 04:42:11 GMT - Wed, 20 Dec 2023 04:42:10 GMT

File type
ASCII text, with very long lines (5786), with no line terminators
Size
5.5 kB (5475 bytes)
Hash
95a3db4361f4102d57296533fbcbdccc
781989b92e0decc558e8847fc674c0d4582dbb56
46a2537e66c2a7f2a9f2974602487c81b01d0934a0545dec5da6c42b7aec5637

HTTP Headers

GET /assets/javascripts/theme.custom.js HTTP/1.1
Host: multiup.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Cookie: PHPSESSID=6qcpik3696naei7ar35a5hqvdm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 12:23:25 GMT
vary: Accept-Encoding
etag: W/"5ee4c53d-1563"
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 5668
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kmKh3rd89MjBu4LhmzqFM6CaJ4DUFk2c6ujYgPFuwyW0erZLY%2FfEtfltg7oYRcxFzBCnAGSaMeE84AJc%2B%2BxPJc%2BXoCdOdky75g%2BHGrVfmeZtM4epGp%2B9hJgy6nhP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b4e8dd3999b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cjvdfw.com/code/native.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ

185.56.234.205

200 OK

7.7 kB

URL GET HTTP/2
cjvdfw.com/code/native.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ
IP
185.56.234.205:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://multiup.io/download/60900287ce6e665701a8c6fc1b9b2bba/[Game3rb]%20My.Dream.Setup.v20230718-P2P.zip
Certificate
IssuerLet's Encrypt
Subjectcjvdfw.com
Fingerprint8D:2D:80:DA:F3:46:E5:CC:32:C7:AD:F1:37:EA:DC:C2:06:11:30:A9
ValiditySat, 08 Jul 2023 22:37:25 GMT - Fri, 06 Oct 2023 22:37:24 GMT

File type
ASCII text, with very long lines (7739), with no line terminators
Size
7.7 kB (7671 bytes)
Hash
20a98716344c7fafe776c6c94d5f67e4
448327a402c22212133b8ffc9dad1e7a34b1a18c
f4e1cf4c001edeaa548dd23dd968c8da8d68577830b388fbffb6772b60958fa8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /code/native.js?h=waWQiOjExMzk5OTQsInNpZCI6MTE3MDYxMSwid2lkIjozOTY4NTgsInNyYyI6Mn0=eyJ HTTP/1.1
Host: cjvdfw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://multiup.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.21.1
date: Sat, 23 Sep 2023 18:39:18 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://multiup.io
x-zone: eu4
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by