Windows Analysis Report
https://us.docworkspace.com/d/sIALe-cabAaWesrIG?utm_source=wps_office_mac&utm_medium=comp_border_bar&utm_content=link

Overview

General Information

Sample URL: https://us.docworkspace.com/d/sIALe-cabAaWesrIG?utm_source=wps_office_mac&utm_medium=comp_border_bar&utm_content=link
Analysis ID: 1447150
Infos:

Detection

Score: 1
Range: 0 - 100
Whitelisted: false
Confidence: 80%

Signatures

Detected non-DNS traffic on DNS port
Drops PE files
Stores files to the Windows start menu directory

Classification

Source: unknown HTTPS traffic detected: 23.211.8.90:443 -> 192.168.2.16:49767 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49769 version: TLS 1.2
Source: unknown HTTPS traffic detected: 23.211.8.90:443 -> 192.168.2.16:49770 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:50970 version: TLS 1.2
Detected non-DNS traffic on DNS port
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:50968 -> 162.159.36.2:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:50968 -> 162.159.36.2:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:50968 -> 162.159.36.2:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:50968 -> 162.159.36.2:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:50968 -> 162.159.36.2:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:50968 -> 162.159.36.2:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:50968 -> 162.159.36.2:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:50968 -> 162.159.36.2:53
Source: global traffic TCP traffic: 192.168.2.16:49718 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:50968 -> 162.159.36.2:53
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown TCP traffic detected without corresponding DNS query: 2.23.209.135
Source: unknown TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown TCP traffic detected without corresponding DNS query: 23.211.8.90
Source: unknown TCP traffic detected without corresponding DNS query: 23.211.8.90
Source: unknown TCP traffic detected without corresponding DNS query: 23.211.8.90
Source: unknown TCP traffic detected without corresponding DNS query: 23.211.8.90
Source: unknown TCP traffic detected without corresponding DNS query: 23.211.8.90
Source: unknown TCP traffic detected without corresponding DNS query: 23.211.8.90
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global traffic DNS traffic detected: DNS query: us.docworkspace.com
Source: global traffic DNS traffic detected: DNS query: us.docs.wps.com
Source: global traffic DNS traffic detected: DNS query: docs.cache.wpscdn.com
Source: global traffic DNS traffic detected: DNS query: www.clarity.ms
Source: global traffic DNS traffic detected: DNS query: www.google.com
Source: global traffic DNS traffic detected: DNS query: us-drive.wps.com
Source: global traffic DNS traffic detected: DNS query: us-account.wps.com
Source: global traffic DNS traffic detected: DNS query: s-us.wps.com
Source: global traffic DNS traffic detected: DNS query: api-ad-adapter.wps.com
Source: global traffic DNS traffic detected: DNS query: params.wps.com
Source: global traffic DNS traffic detected: DNS query: s.clarity.ms
Source: global traffic DNS traffic detected: DNS query: lh3.googleusercontent.com
Source: global traffic DNS traffic detected: DNS query: c.clarity.ms
Source: global traffic DNS traffic detected: DNS query: wdl1.pcfg.cache.wpscdn.com
Source: unknown Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown Network traffic detected: HTTP traffic on port 50982 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50979
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50978
Source: unknown Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50970
Source: unknown Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50972
Source: unknown Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50986
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50985
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50988
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50987
Source: unknown Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50989
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50980
Source: unknown Network traffic detected: HTTP traffic on port 50987 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50982
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50981
Source: unknown Network traffic detected: HTTP traffic on port 50994 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50980 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50988 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50994
Source: unknown Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49688 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50985 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50979 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49701
Source: unknown Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49700
Source: unknown Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50986 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50972 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50970 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50978 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown Network traffic detected: HTTP traffic on port 50981 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50989 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown HTTPS traffic detected: 23.211.8.90:443 -> 192.168.2.16:49767 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49769 version: TLS 1.2
Source: unknown HTTPS traffic detected: 23.211.8.90:443 -> 192.168.2.16:49770 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:50970 version: TLS 1.2
Source: classification engine Classification label: clean1.win@19/43@54/308
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://us.docworkspace.com/d/sIALe-cabAaWesrIG?utm_source=wps_office_mac&utm_medium=comp_border_bar&utm_content=link
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2152 --field-trial-handle=1820,i,17613378975665727923,17014139397757708343,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2152 --field-trial-handle=1820,i,17613378975665727923,17014139397757708343,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4068 --field-trial-handle=1820,i,17613378975665727923,17014139397757708343,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4068 --field-trial-handle=1820,i,17613378975665727923,17014139397757708343,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: Window Recorder Window detected: More than 3 window changes detected
Drops PE files
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\Downloads\c1f10817-61d1-413b-a5d6-e68bc3f4aed6.tmp Jump to dropped file
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\Downloads\Unconfirmed 457900.crdownload Jump to dropped file
Stores files to the Windows start menu directory
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
windows-stand
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
90.84.189.232
 api-ad-adapter-ff.wps.com France
2280 OCBHONEYOCBpubliccloudnetworkEU false
142.250.186.170
 unknown United States
15169 GOOGLEUS false
52.89.38.88
 alb-kae-docworkspace-wpscloud-1966683128.us-west-2.elb.amazonaws.com United States
16509 AMAZON-02US false
54.218.32.9
 alb-kae-account-wpscloud-1322740792.us-west-2.elb.amazonaws.com United States
16509 AMAZON-02US false
13.107.246.45
 part-0017.t-0009.t-msedge.net United States
8068 MICROSOFT-CORP-MSN-AS-BLOCKUS false
34.208.255.235
 alb-kae-drive-wpscloud-1551734008.us-west-2.elb.amazonaws.com United States
16509 AMAZON-02US false
216.58.206.78
 unknown United States
15169 GOOGLEUS false
44.231.176.230
 unknown United States
16509 AMAZON-02US false
18.239.69.119
 unknown United States
16509 AMAZON-02US false
104.16.83.69
 unknown United States
13335 CLOUDFLARENETUS false
13.224.222.125
 unknown United States
16509 AMAZON-02US false
142.250.181.232
 unknown United States
15169 GOOGLEUS false
142.250.185.163
 unknown United States
15169 GOOGLEUS false
68.219.88.97
 unknown United States
6389 BELLSOUTH-NET-BLKUS false
142.250.184.225
 googlehosted.l.googleusercontent.com United States
15169 GOOGLEUS false
54.218.139.120
 istio-gateway.us.entry.4wps.net United States
16509 AMAZON-02US false
142.250.186.110
 unknown United States
15169 GOOGLEUS false
142.250.184.202
 unknown United States
15169 GOOGLEUS false
18.66.196.119
 d2y4xxvxls3ktv.cloudfront.net United States
3 MIT-GATEWAYSUS false
1.1.1.1
 unknown Australia
13335 CLOUDFLARENETUS false
13.107.21.237
 unknown United States
8068 MICROSOFT-CORP-MSN-AS-BLOCKUS false
23.96.124.68
 unknown United States
8075 MICROSOFT-CORP-MSN-AS-BLOCKUS false
74.125.133.84
 unknown United States
15169 GOOGLEUS false
142.250.184.193
 unknown United States
15169 GOOGLEUS false
142.250.185.110
 unknown United States
15169 GOOGLEUS false
104.16.84.69
 wdl1-pcfg-cache-wpscdn-com.v4.cn-line.qiniudns.com United States
13335 CLOUDFLARENETUS false
90.84.175.86
 nginx-gateway-service.default.ff.entry.4wps.net France
5511 OPENTRANSITFR false
142.250.185.232
 unknown United States
15169 GOOGLEUS false
216.58.206.68
 www.google.com United States
15169 GOOGLEUS false
35.165.176.112
 unknown United States
16509 AMAZON-02US false
142.250.181.227
 unknown United States
15169 GOOGLEUS false
239.255.255.250
 unknown Reserved
unknown unknown false
18.173.205.36
 unknown United States
3 MIT-GATEWAYSUS false
52.88.220.178
 alb-kae-us-docs-wpscloud-1604201947.us-west-2.elb.amazonaws.com United States
16509 AMAZON-02US false
142.250.184.238
 unknown United States
15169 GOOGLEUS false
142.250.184.234
 unknown United States
15169 GOOGLEUS false

Private

IP
192.168.2.16

Contacted Domains

Name IP Active
istio-gateway.us.entry.4wps.net 54.218.139.120 true
part-0017.t-0009.t-msedge.net 13.107.246.45 true
api-ad-adapter-ff.wps.com 90.84.189.232 true
d2y4xxvxls3ktv.cloudfront.net 18.66.196.119 true
nginx-gateway-service.default.ff.entry.4wps.net 90.84.175.86 true
alb-kae-us-docs-wpscloud-1604201947.us-west-2.elb.amazonaws.com 52.88.220.178 true
alb-kae-docworkspace-wpscloud-1966683128.us-west-2.elb.amazonaws.com 52.89.38.88 true
www.google.com 216.58.206.68 true
wdl1-pcfg-cache-wpscdn-com.v4.cn-line.qiniudns.com 104.16.84.69 true
alb-kae-account-wpscloud-1322740792.us-west-2.elb.amazonaws.com 54.218.32.9 true
googlehosted.l.googleusercontent.com 142.250.184.225 true
alb-kae-drive-wpscloud-1551734008.us-west-2.elb.amazonaws.com 34.208.255.235 true
docs.cache.wpscdn.com unknown unknown
s-us.wps.com unknown unknown
wdl1.pcfg.cache.wpscdn.com unknown unknown
us.docs.wps.com unknown unknown
www.clarity.ms unknown unknown
us-account.wps.com unknown unknown
lh3.googleusercontent.com unknown unknown
s.clarity.ms unknown unknown
us-drive.wps.com unknown unknown
api-ad-adapter.wps.com unknown unknown
us.docworkspace.com unknown unknown
c.clarity.ms unknown unknown
params.wps.com unknown unknown

Contacted URLs

Name Malicious Antivirus Detection Reputation
https://us.docs.wps.com/module/common/loadPlatform/?utm_source=wps_office_mac&utm_medium=comp_border_bar&utm_content=link&sid=sIALe-cabAaWesrIG&v=v2 false
    		unknown