Windows Analysis Report
http://mega.ng

Overview

General Information

Sample URL: http://mega.ng
Analysis ID: 1448033
Infos:

Detection

Score: 0
Range: 0 - 100
Whitelisted: false
Confidence: 80%

Signatures

No high impact signatures.

Classification

There are no high impact signatures.

Source: http://mega.ng/ HTTP Parser: No favicon
Source: http://mega.ng/ HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2558334540730768&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplies=0&format=r3%7Cs&nocache=4531716815039657&num=0&output=afd_ads&domain_name=mega.ng&v=3&bsl=8&pac=0&u_his=1&u_tz=-240&dt=1716815039659&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=791&frm=0&uio=--&cont=tc&drt=0&jsid=caf&nfp=1&jsv=635538657&rurl=http%3A%2F%2Fmega.ng%2F HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2558334540730768&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplies=0&format=r3%7Cs&nocache=4531716815039657&num=0&output=afd_ads&domain_name=mega.ng&v=3&bsl=8&pac=0&u_his=1&u_tz=-240&dt=1716815039659&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=791&frm=0&uio=--&cont=tc&drt=0&jsid=caf&nfp=1&jsv=635538657&rurl=http%3A%2F%2Fmega.ng%2F HTTP Parser: No favicon
Source: https://www.mydomaincontact.com/index.php?domain_name=mega.ng HTTP Parser: No favicon
Source: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Llc+Online&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpj0uUodzEMa2L0sQo5WiA-7ogqIr6BytO7SVDukhiWofpbym_IUEPH0C-MffgJp1FpEjF-Muc9hAloOlywGczF_Zd3XR1owoMuaD5Ck5YLF37WU16rCz5EZrJlG06NKxu2qLR6BcmTwTEogvyRfzl_xDSVfk&pcsa=false&nb=0 HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads/i/iframe.html HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA2MS40Mzk5fDI5MmE5ZGYyYTZiNDQyY2UxMmE4YTEzMWQ2MjQxOWRkZDU5NGY4MWV8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Setting%20Up%20Llc%20Online&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpj0uUodzEMa2L0sQo5WiA-7ogqIr6BytO7SVDukhiWofpbym_IUEPH0C-MffgJp1FpEjF-Muc9hAloOlywGczF_Zd3XR1owoMuaD5Ck5YLF37WU16rCz5EZrJlG06NKxu2qLR6BcmTwTEogvyRfzl_xDSVfk&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprAppl... HTTP Parser: No favicon
Source: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Payroll&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB&pcsa=false&nb=0 HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA2Ni4zMTIxfDhhODI3YmRmMzhhZjA4NjhjZmM5MWEyMzA3NWE3OGFhMzg1MjZmYTh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Setting%20Up%20Payroll&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplies=... HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA2Ni4zMTIxfDhhODI3YmRmMzhhZjA4NjhjZmM5MWEyMzA3NWE3OGFhMzg1MjZmYTh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Setting%20Up%20Payroll&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplies=... HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA2Ni4zMTIxfDhhODI3YmRmMzhhZjA4NjhjZmM5MWEyMzA3NWE3OGFhMzg1MjZmYTh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Setting%20Up%20Payroll&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplies=... HTTP Parser: No favicon
Source: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Stream+Paramount+Plus&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo&pcsa=false&nb=0 HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA3MC40NzMyfDA3MjEyOGIzNjQ1MTk3YTRhMTdmMDI0ZWI4MDlhNmI5NTdlN2Q3NDN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Stream%20Paramount%20Plus&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplie... HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA3MC40NzMyfDA3MjEyOGIzNjQ1MTk3YTRhMTdmMDI0ZWI4MDlhNmI5NTdlN2Q3NDN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Stream%20Paramount%20Plus&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplie... HTTP Parser: No favicon
Source: https://www.adsensecustomsearchads.com/afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA3MC40NzMyfDA3MjEyOGIzNjQ1MTk3YTRhMTdmMDI0ZWI4MDlhNmI5NTdlN2Q3NDN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Stream%20Paramount%20Plus&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplie... HTTP Parser: No favicon
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.85.23.86:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.85.23.86:443 -> 192.168.2.4:49779 version: TLS 1.2
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: unknown TCP traffic detected without corresponding DNS query: 13.85.23.86
Source: global traffic HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=WGDM49GBshaLudy&MD=yYT8EUnK HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&adsdeli=true HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2558334540730768&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplies=0&format=r3%7Cs&nocache=4531716815039657&num=0&output=afd_ads&domain_name=mega.ng&v=3&bsl=8&pac=0&u_his=1&u_tz=-240&dt=1716815039659&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=791&frm=0&uio=--&cont=tc&drt=0&jsid=caf&nfp=1&jsv=635538657&rurl=http%3A%2F%2Fmega.ng%2F HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /adsense/domains/caf.js?pac=0 HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.adsensecustomsearchads.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.adsensecustomsearchads.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.adsensecustomsearchads.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=5qri4xfhz9pa&aqid=wYRUZvG4G4PWjuwP6Y6EqAc&psid=7840396037&pbt=bs&adbx=375&adby=130&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=12%7C0%7C1153%7C1467%7C214&lle=0&ifv=1&hpt=1&wbd=false HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=l5qxxx2w1rps&aqid=wYRUZvG4G4PWjuwP6Y6EqAc&psid=7840396037&pbt=bv&adbx=375&adby=130&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=12%7C0%7C1153%7C1467%7C214&lle=0&ifv=1&hpt=1&wbd=false HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /index.php?domain_name=mega.ng HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /scripts/select2/select2.css HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.mydomaincontact.com/index.php?domain_name=mega.ngAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /forms/style.css HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.mydomaincontact.com/index.php?domain_name=mega.ngAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /scripts/jquery.js HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.mydomaincontact.com/index.php?domain_name=mega.ngAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /scripts/select2/select2.min.js HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.mydomaincontact.com/index.php?domain_name=mega.ngAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /forms/script.js HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.mydomaincontact.com/index.php?domain_name=mega.ngAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /forms/script-addon.js HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.mydomaincontact.com/index.php?domain_name=mega.ngAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /images/trust.svg HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.mydomaincontact.com/index.php?domain_name=mega.ngAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /scripts/select2/select2.png HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.mydomaincontact.com/scripts/select2/select2.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=WGDM49GBshaLudy&MD=yYT8EUnK HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic HTTP traffic detected: GET /images/trust.svg HTTP/1.1Host: www.mydomaincontact.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.mydomaincontact.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.mydomaincontact.com/index.php?domain_name=mega.ngAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /scripts/select2/select2.png HTTP/1.1Host: www.mydomaincontact.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: pct-35d245f72f47807786fdc78ab047108d=1
Source: global traffic HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA2MS40Mzk5fDI5MmE5ZGYyYTZiNDQyY2UxMmE4YTEzMWQ2MjQxOWRkZDU5NGY4MWV8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Setting%20Up%20Llc%20Online&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpj0uUodzEMa2L0sQo5WiA-7ogqIr6BytO7SVDukhiWofpbym_IUEPH0C-MffgJp1FpEjF-Muc9hAloOlywGczF_Zd3XR1owoMuaD5Ck5YLF37WU16rCz5EZrJlG06NKxu2qLR6BcmTwTEogvyRfzl_xDSVfk&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplies=0&format=n3&ad=n3&nocache=7621716815061021&num=0&output=afd_ads&domain_name=mega.ng&v=3&bsl=8&pac=0&u_his=1&u_tz=-240&dt=1716815061023&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=791&frm=0&uio=-&cont=ads&drt=0&jsid=caf&nfp=1&jsv=635538657&rurl=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D%26query%3DSetting%2BUp%2BLlc%2BOnline%26afdToken%3DChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpj0uUodzEMa2L0sQo5WiA-7ogqIr6BytO7SVDukhiWofpbym_IUEPH0C-MffgJp1FpEjF-Muc9hAloOlywGczF_Zd3XR1owoMuaD5Ck5YLF37WU16rCz5EZrJlG06NKxu2qLR6BcmTwTEogvyRfzl_xDSVfk%26pcsa%3Dfalse%26nb%3D0 HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 12 Mar 2024 06:00:00 GMT
Source: global traffic HTTP traffic detected: GET /images/afs/snowman.png HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.adsensecustomsearchads.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=2cerzp402018&aqid=1oRUZpbYOdmwjuwPmbS4yAw&psid=7840396037&pbt=bs&adbx=366.5&adby=146&adbh=1432&adbw=530&adbah=530%2C450%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=65%7C0%7C1374%7C13%7C607&lle=0&ifv=1&hpt=1&wbd=false HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /images/afs/snowman.png HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiWocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=x934h4x269kd&aqid=1oRUZpbYOdmwjuwPmbS4yAw&psid=7840396037&pbt=bv&adbx=366.5&adby=146&adbh=1432&adbw=530&adbah=530%2C450%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=65%7C0%7C1374%7C13%7C607&lle=0&ifv=1&hpt=1&wbd=false HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 12 Mar 2024 06:00:00 GMT
Source: global traffic HTTP traffic detected: GET /afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA2Ni4zMTIxfDhhODI3YmRmMzhhZjA4NjhjZmM5MWEyMzA3NWE3OGFhMzg1MjZmYTh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Setting%20Up%20Payroll&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplies=0&format=n3&ad=n3&nocache=4961716815065783&num=0&output=afd_ads&domain_name=mega.ng&v=3&bsl=8&pac=0&u_his=1&u_tz=-240&dt=1716815065784&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=791&frm=0&uio=-&cont=ads&drt=0&jsid=caf&nfp=1&jsv=635538657&rurl=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D%26query%3DSetting%2BUp%2BPayroll%26afdToken%3DChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB%26pcsa%3Dfalse%26nb%3D0 HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 12 Mar 2024 06:00:00 GMT
Source: global traffic HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=2n7rdei8p4j9&aqid=24RUZuPLJYnIjuwPst33kAg&psid=7840396037&pbt=bs&adbx=366.5&adby=146&adbh=1416&adbw=530&adbah=530%2C434%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=16%7C0%7C1334%7C2%7C382&lle=0&ifv=1&hpt=1&wbd=false HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/ads?adtest=off&psid=7840396037&pcsa=false&channel=000001%2Cbucket064&client=dp-teaminternet09_3ph&r=m&sct=ID%3D5110e244d5df23cb%3AT%3D1716815041%3ART%3D1716815041%3AS%3DALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA&sc_status=6&hl=en&rpbu=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTA3MC40NzMyfDA3MjEyOGIzNjQ1MTk3YTRhMTdmMDI0ZWI4MDlhNmI5NTdlN2Q3NDN8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D&max_radlink_len=40&type=0&uiopt=true&swp=as-drid-2558334540730768&q=Stream%20Paramount%20Plus&afdt=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442&client_gdprApplies=0&format=n3&ad=n3&nocache=631716815070079&num=0&output=afd_ads&domain_name=mega.ng&v=3&bsl=8&pac=0&u_his=1&u_tz=-240&dt=1716815070080&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=791&frm=0&uio=-&cont=ads&drt=0&jsid=caf&nfp=1&jsv=635538657&rurl=http%3A%2F%2Fmega.ng%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%253D%253D%26query%3DStream%2BParamount%2BPlus%26afdToken%3DChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo%26pcsa%3Dfalse%26nb%3D0 HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 12 Mar 2024 06:00:00 GMT
Source: global traffic HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=j74h3lcfom76&aqid=24RUZuPLJYnIjuwPst33kAg&psid=7840396037&pbt=bv&adbx=366.5&adby=146&adbh=1416&adbw=530&adbah=530%2C434%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=16%7C0%7C1334%7C2%7C382&lle=0&ifv=1&hpt=1&wbd=false HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 12 Mar 2024 06:00:00 GMT
Source: global traffic HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=5oyjbyxkxmfn&aqid=34RUZuj-OOygiM0P6tGHwAg&psid=7840396037&pbt=bs&adbx=366.5&adby=146&adbh=1384&adbw=530&adbah=482%2C450%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=24%7C0%7C1355%7C3%7C421&lle=0&ifv=1&hpt=1&wbd=false HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=ylkjvt9dnoqt&aqid=34RUZuj-OOygiM0P6tGHwAg&psid=7840396037&pbt=bv&adbx=366.5&adby=146&adbh=1384&adbw=530&adbah=482%2C450%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=24%7C0%7C1355%7C3%7C421&lle=0&ifv=1&hpt=1&wbd=false HTTP/1.1Host: www.adsensecustomsearchads.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://mega.ng/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET / HTTP/1.1Host: mega.ngConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET / HTTP/1.1Host: mega.ngConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTAzOC4wNDUzOjJlZjU1NDQ2MjMwY2FmYTYxZDQwMTIwM2Y1ZjM5ZTFlNDIyY2E1Yjc2YTNhMjEwMDEyZjBiZTMwZjMwMGE1NDE6NjY1NDg0YmUwYjBjOA%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ls.php?t=665484be&token=216dacf94bda9f36ed89b6298c730e7fd653d93c HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1Host: d38psrni17bvxu.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Referer: http://mega.ng/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTAzOC4wNDUzOjJlZjU1NDQ2MjMwY2FmYTYxZDQwMTIwM2Y1ZjM5ZTFlNDIyY2E1Yjc2YTNhMjEwMDEyZjBiZTMwZjMwMGE1NDE6NjY1NDg0YmUwYjBjOA%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1Host: d38psrni17bvxu.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTAzOC4wNDUzOjJlZjU1NDQ2MjMwY2FmYTYxZDQwMTIwM2Y1ZjM5ZTFlNDIyY2E1Yjc2YTNhMjEwMDEyZjBiZTMwZjMwMGE1NDE6NjY1NDg0YmUwYjBjOA%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Referer: http://mega.ng/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTAzOC4wNDUzOjJlZjU1NDQ2MjMwY2FmYTYxZDQwMTIwM2Y1ZjM5ZTFlNDIyY2E1Yjc2YTNhMjEwMDEyZjBiZTMwZjMwMGE1NDE6NjY1NDg0YmUwYjBjOA%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Llc+Online&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpj0uUodzEMa2L0sQo5WiA-7ogqIr6BytO7SVDukhiWofpbym_IUEPH0C-MffgJp1FpEjF-Muc9hAloOlywGczF_Zd3XR1owoMuaD5Ck5YLF37WU16rCz5EZrJlG06NKxu2qLR6BcmTwTEogvyRfzl_xDSVfk&pcsa=false&nb=0 HTTP/1.1Host: mega.ngConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTA2MS40MjMzOjQ4NjU3ZmQ3YThlNjkzYTU3MzU0MDBhMTFhNWY2ZjM2YmE1N2RhOTdiMmYzNThiMTc1ZTQ2NjNmMWE4ZmNiZGQ6NjY1NDg0ZDU2NzViMA%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Llc+Online&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpj0uUodzEMa2L0sQo5WiA-7ogqIr6BytO7SVDukhiWofpbym_IUEPH0C-MffgJp1FpEjF-Muc9hAloOlywGczF_Zd3XR1owoMuaD5Ck5YLF37WU16rCz5EZrJlG06NKxu2qLR6BcmTwTEogvyRfzl_xDSVfk&pcsa=false&nb=0Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /ls.php?t=665484d5&token=ed099a39dbc815b7899d90f9bc760f14662da555 HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Llc+Online&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpj0uUodzEMa2L0sQo5WiA-7ogqIr6BytO7SVDukhiWofpbym_IUEPH0C-MffgJp1FpEjF-Muc9hAloOlywGczF_Zd3XR1owoMuaD5Ck5YLF37WU16rCz5EZrJlG06NKxu2qLR6BcmTwTEogvyRfzl_xDSVfk&pcsa=false&nb=0Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTA2MS40MjMzOjQ4NjU3ZmQ3YThlNjkzYTU3MzU0MDBhMTFhNWY2ZjM2YmE1N2RhOTdiMmYzNThiMTc1ZTQ2NjNmMWE4ZmNiZGQ6NjY1NDg0ZDU2NzViMA%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTA2MS40MjMzOjQ4NjU3ZmQ3YThlNjkzYTU3MzU0MDBhMTFhNWY2ZjM2YmE1N2RhOTdiMmYzNThiMTc1ZTQ2NjNmMWE4ZmNiZGQ6NjY1NDg0ZDU2NzViMA%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Llc+Online&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpj0uUodzEMa2L0sQo5WiA-7ogqIr6BytO7SVDukhiWofpbym_IUEPH0C-MffgJp1FpEjF-Muc9hAloOlywGczF_Zd3XR1owoMuaD5Ck5YLF37WU16rCz5EZrJlG06NKxu2qLR6BcmTwTEogvyRfzl_xDSVfk&pcsa=false&nb=0Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTA2MS40MjMzOjQ4NjU3ZmQ3YThlNjkzYTU3MzU0MDBhMTFhNWY2ZjM2YmE1N2RhOTdiMmYzNThiMTc1ZTQ2NjNmMWE4ZmNiZGQ6NjY1NDg0ZDU2NzViMA%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Payroll&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB&pcsa=false&nb=0 HTTP/1.1Host: mega.ngConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTA2Ni4yOTYyOmFlNDBkYjVmNTMyNDg3MzdjNzcwMTRiMGYyMGU1NDE3NDJiNTNkMDNmNzYyY2IwYzkzNDE0NmI5NGQyNmIwMTY6NjY1NDg0ZGE0ODUwOQ%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Payroll&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB&pcsa=false&nb=0Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTA2Ni4yOTYyOmFlNDBkYjVmNTMyNDg3MzdjNzcwMTRiMGYyMGU1NDE3NDJiNTNkMDNmNzYyY2IwYzkzNDE0NmI5NGQyNmIwMTY6NjY1NDg0ZGE0ODUwOQ%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /ls.php?t=665484da&token=91ff62818ca72b04617b2cf85cb642a9b5afb0c3 HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Payroll&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB&pcsa=false&nb=0Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTA2Ni4yOTYyOmFlNDBkYjVmNTMyNDg3MzdjNzcwMTRiMGYyMGU1NDE3NDJiNTNkMDNmNzYyY2IwYzkzNDE0NmI5NGQyNmIwMTY6NjY1NDg0ZGE0ODUwOQ%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Payroll&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEnkBlLqpjxT-mT0fqBm-ct5YtsWD00S74_XqETmUNZyS_KSIK-f98xpESA7xJqLhqbT44HjOxohtoduWI3ZDxpQ_bLsuSSQD6NiDOF16eS1tmQZynlWqvLqerxIKXGOeTZUWEHEbVFGVENrvNXiXYuPwe0acqC9vatWB&pcsa=false&nb=0Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTA2Ni4yOTYyOmFlNDBkYjVmNTMyNDg3MzdjNzcwMTRiMGYyMGU1NDE3NDJiNTNkMDNmNzYyY2IwYzkzNDE0NmI5NGQyNmIwMTY6NjY1NDg0ZGE0ODUwOQ%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Stream+Paramount+Plus&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo&pcsa=false&nb=0 HTTP/1.1Host: mega.ngConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTA3MC40NTk5OjQ3NjgwYTlmYWM0OTAzNjI2YzAwZTRkODI3MTgwNWMxNDZiNmU1NjkwOThmZTRhMDdiYTMzNzQwYTZiNDQ2YTA6NjY1NDg0ZGU3MDQ5Mw%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Stream+Paramount+Plus&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo&pcsa=false&nb=0Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /ls.php?t=665484de&token=56ccf0f7c641883fea08f010718c772a3b9ed95f HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Stream+Paramount+Plus&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo&pcsa=false&nb=0Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTA3MC40NTk5OjQ3NjgwYTlmYWM0OTAzNjI2YzAwZTRkODI3MTgwNWMxNDZiNmU1NjkwOThmZTRhMDdiYTMzNzQwYTZiNDQ2YTA6NjY1NDg0ZGU3MDQ5Mw%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTA3MC40NTk5OjQ3NjgwYTlmYWM0OTAzNjI2YzAwZTRkODI3MTgwNWMxNDZiNmU1NjkwOThmZTRhMDdiYTMzNzQwYTZiNDQ2YTA6NjY1NDg0ZGU3MDQ5Mw%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Referer: http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Stream+Paramount+Plus&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpjwFaklmZKDUhMbYou_EvfyvEKo4hCSLG5MbbojKUnGAq9mTIaaUXpsMqPD1V-PN2Dkk9JJRiv2zxYYqo0ojn5Tb99x_ujBHxzAO-7PNREPUCWRCpEp4Qyg5wQQz0gB_emL3GTQEQKOF1v0yPoZjmKCE1meo&pcsa=false&nb=0Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic HTTP traffic detected: GET /track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTA3MC40NTk5OjQ3NjgwYTlmYWM0OTAzNjI2YzAwZTRkODI3MTgwNWMxNDZiNmU1NjkwOThmZTRhMDdiYTMzNzQwYTZiNDQ2YTA6NjY1NDg0ZGU3MDQ5Mw%3D%3D HTTP/1.1Host: mega.ngConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5110e244d5df23cb:T=1716815041:RT=1716815041:S=ALNI_MYMj8Aywe8KBRBd2KYbUp5rjbSKAA
Source: global traffic DNS traffic detected: DNS query: mega.ng
Source: global traffic DNS traffic detected: DNS query: www.google.com
Source: global traffic DNS traffic detected: DNS query: d38psrni17bvxu.cloudfront.net
Source: global traffic DNS traffic detected: DNS query: www.adsensecustomsearchads.com
Source: global traffic DNS traffic detected: DNS query: afs.googleusercontent.com
Source: global traffic DNS traffic detected: DNS query: www.mydomaincontact.com
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Mon, 27 May 2024 13:04:13 GMTContent-Type: text/htmlContent-Length: 555Connection: closeServer: nginx/1.20.1
Source: chromecache_67.2.dr String found in binary or memory: http://jquery.com/
Source: chromecache_67.2.dr String found in binary or memory: http://jquery.org/license
Source: chromecache_67.2.dr String found in binary or memory: http://sizzlejs.com/
Source: chromecache_105.2.dr String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_105.2.dr String found in binary or memory: http://www.gnu.org/licenses/gpl-2.0.html
Source: chromecache_76.2.dr String found in binary or memory: http://www.quirksmode.org/css/box.html
Source: chromecache_64.2.dr String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=ARquV54O5ZEQjRXZO4RZC9y2eD30Qq0ew
Source: chromecache_64.2.dr String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=ARquV54r6R4h7HoGLe0m9suhc6h6pqlsp
Source: chromecache_119.2.dr String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=ARquV56Gm70hvnqZISwH53hG43POP4KJ2
Source: chromecache_83.2.dr String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=ARquV56OL5XqHUrfxNNxPaveHIGItI7uj
Source: chromecache_64.2.dr String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=ARquV56g93mbPtqnMlI_VBLHdcwqFdcnS
Source: chromecache_83.2.dr String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=ARquV56qPngNrcuZNO_1_-QO7bF8HFdMm
Source: chromecache_119.2.dr String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=ARquV56v7Kwtt3GvM52zUvjdAMwq21lLH
Source: chromecache_119.2.dr String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=ARquV573PiZmlIneop31QfjnUic5XOvfl
Source: chromecache_83.2.dr String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=ARquV57yxIIhPgV0RbGNhthbZ4Asxjeit
Source: chromecache_75.2.dr, chromecache_113.2.dr String found in binary or memory: https://fonts.googleapis.com/css?family=
Source: chromecache_81.2.dr String found in binary or memory: https://fonts.googleapis.com/css?family=Source
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/mate/v17/m8JdjftRd7WZ6zS2W7XS.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/mate/v17/m8JdjftRd7WZ6zq2Ww.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/matesc/v22/-nF8OGQ1-uoVr2wK-iLT9g.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/matesc/v22/-nF8OGQ1-uoVr2wK-izT9qOk.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_99.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7jsDJT9g.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7ksDJT9g.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7osDJT9g.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7psDJT9g.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7qsDJT9g.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7rsDJT9g.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qN67lqDY.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNK7lqDY.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNa7lqDY.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNq7lqDY.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qO67lqDY.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qPK7lqDY.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourceserifpro/v17/neIXzD-0qpwxpaWvjeD0X88SAOeasasatS-qxLUv.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourceserifpro/v17/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSGqxLUv.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourceserifpro/v17/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSKqxLUv.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourceserifpro/v17/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSOqxLUv.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourceserifpro/v17/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSiqxLUv.woff2)
Source: chromecache_84.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sourceserifpro/v17/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSyqxA.woff2)
Source: chromecache_64.2.dr String found in binary or memory: https://get.greenshades.com/dynamics-365/
Source: chromecache_64.2.dr String found in binary or memory: https://go.paycor.com/
Source: chromecache_75.2.dr, chromecache_113.2.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_75.2.dr, chromecache_113.2.dr String found in binary or memory: https://partner.googleadservices.com/gampad/cookie.js
Source: chromecache_75.2.dr, chromecache_113.2.dr String found in binary or memory: https://syndicatedsearch.goog
Source: chromecache_119.2.dr String found in binary or memory: https://www.appcracy.com/app/
Source: chromecache_64.2.dr String found in binary or memory: https://www.google.com/images/afs/snowman.png
Source: chromecache_83.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiWm-O_8q2GAxVZmIMHHRkaDskYABAAGgJlZg
Source: chromecache_83.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiWm-O_8q2GAxVZmIMHHRkaDskYABABGgJlZg
Source: chromecache_83.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiWm-O_8q2GAxVZmIMHHRkaDskYABACGgJlZg
Source: chromecache_64.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwijpYDC8q2GAxUJpIMHHbLuHYIYABAAGgJlZg
Source: chromecache_64.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwijpYDC8q2GAxUJpIMHHbLuHYIYABABGgJlZg
Source: chromecache_64.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwijpYDC8q2GAxUJpIMHHbLuHYIYABACGgJlZg
Source: chromecache_119.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwio6ofE8q2GAxVsEKIDHeroAYgYABAAGgJsZQ
Source: chromecache_119.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwio6ofE8q2GAxVsEKIDHeroAYgYABABGgJsZQ
Source: chromecache_119.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwio6ofE8q2GAxVsEKIDHeroAYgYABACGgJsZQ
Source: chromecache_75.2.dr, chromecache_113.2.dr String found in binary or memory: https://www.googleadservices.com/pagead/conversion/16521530460/?gad_source=1&adview_type=3
Source: chromecache_64.2.dr String found in binary or memory: https://www.interimhrconsulting.com/
Source: chromecache_83.2.dr String found in binary or memory: https://www.myusacorporation.com/
Source: chromecache_83.2.dr String found in binary or memory: https://www.nfib.com/
Source: chromecache_119.2.dr String found in binary or memory: https://www.philo.com/
Source: chromecache_83.2.dr String found in binary or memory: https://www.swyftfilings.com/
Source: chromecache_119.2.dr String found in binary or memory: https://www.tubitv.com/
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.85.23.86:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.85.23.86:443 -> 192.168.2.4:49779 version: TLS 1.2
Source: classification engine Classification label: clean0.win@21/106@28/14
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2040 --field-trial-handle=1572,i,5734391981659422172,3887567143893048300,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://mega.ng"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2040 --field-trial-handle=1572,i,5734391981659422172,3887567143893048300,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: Window Recorder Window detected: More than 3 window changes detected
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 process2 2 Behavior Graph ID: 1448033 URL: http://mega.ng Startdate: 27/05/2024 Architecture: WINDOWS Score: 0 5 chrome.exe 1 2->5         started        8 chrome.exe 2->8         started        dnsIp3 13 192.168.2.4, 138, 443, 49157 unknown unknown 5->13 15 239.255.255.250 unknown Reserved 5->15 10 chrome.exe 5->10         started        process4 dnsIp5 17 mega.ng 185.53.177.53, 49735, 49736, 49748 TEAMINTERNET-ASDE Germany 10->17 19 d38psrni17bvxu.cloudfront.net 18.66.121.135, 49749, 80 MIT-GATEWAYSUS United States 10->19 21 12 other IPs or domains 10->21
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
172.217.23.97
 unknown United States
15169 GOOGLEUS false
18.66.121.135
 d38psrni17bvxu.cloudfront.net United States
3 MIT-GATEWAYSUS false
142.250.184.196
 www.google.com United States
15169 GOOGLEUS false
142.250.186.78
 unknown United States
15169 GOOGLEUS false
34.255.128.23
 www.mydomaincontact.com United States
16509 AMAZON-02US false
142.250.185.68
 unknown United States
15169 GOOGLEUS false
142.250.185.110
 www3.l.google.com United States
15169 GOOGLEUS false
216.58.206.68
 unknown United States
15169 GOOGLEUS false
239.255.255.250
 unknown Reserved
unknown unknown false
185.53.177.53
 mega.ng Germany
61969 TEAMINTERNET-ASDE false
18.239.102.108
 unknown United States
16509 AMAZON-02US false
142.250.186.100
 unknown United States
15169 GOOGLEUS false
172.217.16.193
 googlehosted.l.googleusercontent.com United States
15169 GOOGLEUS false

Private

IP
192.168.2.4

Contacted Domains

Name IP Active
www3.l.google.com 142.250.185.110 true
www.google.com 142.250.184.196 true
www.mydomaincontact.com 34.255.128.23 true
mega.ng 185.53.177.53 true
googlehosted.l.googleusercontent.com 172.217.16.193 true
fp2e7a.wpc.phicdn.net 192.229.221.95 true
d38psrni17bvxu.cloudfront.net 18.66.121.135 true
windowsupdatebg.s.llnwi.net 41.63.96.128 true
afs.googleusercontent.com unknown unknown
www.adsensecustomsearchads.com unknown unknown

Contacted URLs

Name Malicious Antivirus Detection Reputation
https://www.google.com/adsense/domains/caf.js?abp=1&adsdeli=true false
  • 0%, Virustotal, Browse
  • Avira URL Cloud: safe
 unknown
http://mega.ng/track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTA2MS40MjMzOjQ4NjU3ZmQ3YThlNjkzYTU3MzU0MDBhMTFhNWY2ZjM2YmE1N2RhOTdiMmYzNThiMTc1ZTQ2NjNmMWE4ZmNiZGQ6NjY1NDg0ZDU2NzViMA%3D%3D false
    		unknown
    https://www.mydomaincontact.com/index.php?domain_name=mega.ng false
      		unknown
      https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff false
      • 0%, Virustotal, Browse
      • Avira URL Cloud: safe
      		 unknown
      https://www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=2cerzp402018&aqid=1oRUZpbYOdmwjuwPmbS4yAw&psid=7840396037&pbt=bs&adbx=366.5&adby=146&adbh=1432&adbw=530&adbah=530%2C450%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=65%7C0%7C1374%7C13%7C607&lle=0&ifv=1&hpt=1&wbd=false false
      • Avira URL Cloud: safe
      		 unknown
      http://d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png false
      • URL Reputation: safe
      		 unknown
      https://www.mydomaincontact.com/forms/script.js false
      • 0%, Virustotal, Browse
      • Avira URL Cloud: safe
      		 unknown
      https://www.mydomaincontact.com/scripts/jquery.js false
      • Avira URL Cloud: safe
      		 unknown
      https://www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=x934h4x269kd&aqid=1oRUZpbYOdmwjuwPmbS4yAw&psid=7840396037&pbt=bv&adbx=366.5&adby=146&adbh=1432&adbw=530&adbah=530%2C450%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=65%7C0%7C1374%7C13%7C607&lle=0&ifv=1&hpt=1&wbd=false false
      • Avira URL Cloud: safe
      		 unknown
      https://www.mydomaincontact.com/favicon.ico false
      • 0%, Virustotal, Browse
      • Avira URL Cloud: safe
      		 unknown
      http://mega.ng/ls.php?t=665484de&token=56ccf0f7c641883fea08f010718c772a3b9ed95f false
      • Avira URL Cloud: safe
      		 unknown
      https://www.mydomaincontact.com/forms/script-addon.js false
      • 0%, Virustotal, Browse
      • Avira URL Cloud: safe
      		 unknown
      https://www.google.com/images/afs/snowman.png false
      • 0%, Virustotal, Browse
      • Avira URL Cloud: safe
      		 unknown
      https://www.mydomaincontact.com/scripts/select2/select2.min.js false
      • Avira URL Cloud: safe
      		 unknown
      https://www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=2n7rdei8p4j9&aqid=24RUZuPLJYnIjuwPst33kAg&psid=7840396037&pbt=bs&adbx=366.5&adby=146&adbh=1416&adbw=530&adbah=530%2C434%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=16%7C0%7C1334%7C2%7C382&lle=0&ifv=1&hpt=1&wbd=false false
      • Avira URL Cloud: safe
      		 unknown
      https://www.mydomaincontact.com/images/trust.svg false
      • 0%, Virustotal, Browse
      • Avira URL Cloud: safe
      		 unknown
      http://mega.ng/track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTA3MC40NTk5OjQ3NjgwYTlmYWM0OTAzNjI2YzAwZTRkODI3MTgwNWMxNDZiNmU1NjkwOThmZTRhMDdiYTMzNzQwYTZiNDQ2YTA6NjY1NDg0ZGU3MDQ5Mw%3D%3D false
      • Avira URL Cloud: safe
      		 unknown
      http://mega.ng/track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTAzOC4wNDUzOjJlZjU1NDQ2MjMwY2FmYTYxZDQwMTIwM2Y1ZjM5ZTFlNDIyY2E1Yjc2YTNhMjEwMDEyZjBiZTMwZjMwMGE1NDE6NjY1NDg0YmUwYjBjOA%3D%3D false
      • Avira URL Cloud: safe
      		 unknown
      https://www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=5qri4xfhz9pa&aqid=wYRUZvG4G4PWjuwP6Y6EqAc&psid=7840396037&pbt=bs&adbx=375&adby=130&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=12%7C0%7C1153%7C1467%7C214&lle=0&ifv=1&hpt=1&wbd=false false
      • Avira URL Cloud: safe
      		 unknown
      https://www.mydomaincontact.com/forms/style.css false
      • 0%, Virustotal, Browse
      • Avira URL Cloud: safe
      		 unknown
      https://www.adsensecustomsearchads.com/afs/ads/i/iframe.html false
        		unknown
        http://mega.ng/track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTA2MS40MjMzOjQ4NjU3ZmQ3YThlNjkzYTU3MzU0MDBhMTFhNWY2ZjM2YmE1N2RhOTdiMmYzNThiMTc1ZTQ2NjNmMWE4ZmNiZGQ6NjY1NDg0ZDU2NzViMA%3D%3D false
        • Avira URL Cloud: safe
        		 unknown
        http://mega.ng/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwNjR8fHx8fHw2NjU0ODRiZTBiMDgxfHx8MTcxNjgxNTAzOC4wNjYyfDBhMDIxYjBjZjg5Njg5NTU5NGZlNWMwOGEzNmJhMjljNTg5YjFlOGR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwyMTZkYWNmOTRiZGE5ZjM2ZWQ4OWI2Mjk4YzczMGU3ZmQ2NTNkOTNjfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHw3ODQwMzk2MDM3fA%3D%3D&query=Setting+Up+Llc+Online&afdToken=ChMIp-TAtfKthgMVxoH9Bx27owlBEngBlLqpj0uUodzEMa2L0sQo5WiA-7ogqIr6BytO7SVDukhiWofpbym_IUEPH0C-MffgJp1FpEjF-Muc9hAloOlywGczF_Zd3XR1owoMuaD5Ck5YLF37WU16rCz5EZrJlG06NKxu2qLR6BcmTwTEogvyRfzl_xDSVfk&pcsa=false&nb=0 false
          		unknown
          http://mega.ng/track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTA3MC40NTk5OjQ3NjgwYTlmYWM0OTAzNjI2YzAwZTRkODI3MTgwNWMxNDZiNmU1NjkwOThmZTRhMDdiYTMzNzQwYTZiNDQ2YTA6NjY1NDg0ZGU3MDQ5Mw%3D%3D false
          • Avira URL Cloud: safe
          		 unknown
          http://mega.ng/ false
            		unknown
            https://www.adsensecustomsearchads.com/adsense/domains/caf.js?pac=0 false
            • 0%, Virustotal, Browse
            • Avira URL Cloud: safe
            		 unknown
            http://mega.ng/track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTAzOC4wNDUzOjJlZjU1NDQ2MjMwY2FmYTYxZDQwMTIwM2Y1ZjM5ZTFlNDIyY2E1Yjc2YTNhMjEwMDEyZjBiZTMwZjMwMGE1NDE6NjY1NDg0YmUwYjBjOA%3D%3D false
            • Avira URL Cloud: safe
            		 unknown
            http://mega.ng/track.php?domain=mega.ng&caf=1&toggle=answercheck&answer=yes&uid=MTcxNjgxNTA2Ni4yOTYyOmFlNDBkYjVmNTMyNDg3MzdjNzcwMTRiMGYyMGU1NDE3NDJiNTNkMDNmNzYyY2IwYzkzNDE0NmI5NGQyNmIwMTY6NjY1NDg0ZGE0ODUwOQ%3D%3D false
              		unknown
              https://www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=l5qxxx2w1rps&aqid=wYRUZvG4G4PWjuwP6Y6EqAc&psid=7840396037&pbt=bv&adbx=375&adby=130&adbh=496&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=12%7C0%7C1153%7C1467%7C214&lle=0&ifv=1&hpt=1&wbd=false false
              • Avira URL Cloud: safe
              		 unknown
              http://mega.ng/ls.php?t=665484d5&token=ed099a39dbc815b7899d90f9bc760f14662da555 false
              • Avira URL Cloud: safe
              		 unknown
              https://www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=j74h3lcfom76&aqid=24RUZuPLJYnIjuwPst33kAg&psid=7840396037&pbt=bv&adbx=366.5&adby=146&adbh=1416&adbw=530&adbah=530%2C434%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=16%7C0%7C1334%7C2%7C382&lle=0&ifv=1&hpt=1&wbd=false false
              • Avira URL Cloud: safe
              		 unknown
              https://www.mydomaincontact.com/scripts/select2/select2.css false
              • Avira URL Cloud: safe
              		 unknown
              http://mega.ng/ls.php?t=665484da&token=91ff62818ca72b04617b2cf85cb642a9b5afb0c3 false
              • Avira URL Cloud: safe
              		 unknown
              http://mega.ng/favicon.ico false
                		unknown
                https://www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=ylkjvt9dnoqt&aqid=34RUZuj-OOygiM0P6tGHwAg&psid=7840396037&pbt=bv&adbx=366.5&adby=146&adbh=1384&adbw=530&adbah=482%2C450%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=24%7C0%7C1355%7C3%7C421&lle=0&ifv=1&hpt=1&wbd=false false
                • Avira URL Cloud: safe
                		 unknown
                https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff false
                • Avira URL Cloud: safe
                		 unknown
                http://mega.ng/track.php?domain=mega.ng&toggle=browserjs&uid=MTcxNjgxNTA2Ni4yOTYyOmFlNDBkYjVmNTMyNDg3MzdjNzcwMTRiMGYyMGU1NDE3NDJiNTNkMDNmNzYyY2IwYzkzNDE0NmI5NGQyNmIwMTY6NjY1NDg0ZGE0ODUwOQ%3D%3D false
                  		unknown
                  https://www.mydomaincontact.com/scripts/select2/select2.png false
                  • Avira URL Cloud: safe
                  		 unknown
                  https://www.adsensecustomsearchads.com/afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=5oyjbyxkxmfn&aqid=34RUZuj-OOygiM0P6tGHwAg&psid=7840396037&pbt=bs&adbx=366.5&adby=146&adbh=1384&adbw=530&adbah=482%2C450%2C450&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=635538657&csala=24%7C0%7C1355%7C3%7C421&lle=0&ifv=1&hpt=1&wbd=false false
                  • Avira URL Cloud: safe
                  		 unknown
                  http://mega.ng/ls.php?t=665484be&token=216dacf94bda9f36ed89b6298c730e7fd653d93c false
                  • Avira URL Cloud: safe
                  		 unknown