Windows Analysis Report
http://www.myDriverCare.com

Overview

General Information

Sample URL:	http://www.myDriverCare.com
Analysis ID:	1522640
Infos:

Detection

Score:	3
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

HTML body contains low number of good links

HTML body contains password input but no form action

HTML title does not match URL

Invalid 'forgot password' link found

Stores files to the Windows start menu directory

Uses insecure TLS / SSL version for HTTPS connection

Classification

Signatures

HTML body contains low number of good links

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: Number of links: 0

HTML body contains password input but no form action

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: <input type="password" .../> found but no <form action="...

HTML title does not match URL

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: Title: CEI - Global Vehicle Risk Solutions does not match URL

Invalid 'forgot password' link found

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: Invalid link: Forgot your password?

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: <input type="password" .../> found

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: No favicon

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: No <meta name="author".. found

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: No <meta name="copyright".. found

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49748 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49733 version: TLS 1.2

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49748 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: my.drivercare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Shared/Authentication/LogIn?ReturnUrl=%2f HTTP/1.1Host: my.drivercare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookie_encrypted=1176866758.1.357570960.2457704961; visid_incap_2608729=Hoy9vDHeTaWIm97M4Ur0xp6U+mYAAAAAQUIPAAAAAACFyW6Bmm8xswq5ALIr8Yhk; incap_ses_1845_2608729=gYqdb9+PD0GYltff3sGaGZ6U+mYAAAAAyLUQd9TsR9e2u02CstyGNw==
Source: global traffic	HTTP traffic detected: GET /public/styles/main.css?638627617655743192 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/Images/Background-DC5.gif HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/scripts/thirdparty.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/scripts/sso.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/scripts/drivercare.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1882433758 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /siteseal/javascript/siteseal.js HTTP/1.1Host: seal.networksolutions.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/images/default/driverCare_noRoad_small.png HTTP/1.1Host: my.drivercare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5853423237597253 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /images/basicrecblue.gif HTTP/1.1Host: seal.networksolutions.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/scripts/drivercare.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/scripts/sso.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1882433758 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /public/Images/Background-DC5.gif HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==; ___utmvc=4JKUm9fCmDiCQlacBZ1If6Jzahc4yDpBtK8zWwRo5kM39G7mGtSfxc6zt+V2BH7SBc1NC3oa6jm/oBFrg9MX6GV2BMOkCkjVVlHx1VNvRFshGFADZ2OdQ2wGnCiA5/pc/qgSiCSPcHNRjC4Co/a9cvLoLTTpOy5/qIL7BBIxAAK3Ne1EqavIkJtg17ewlggFVGBNcOEWUaHprfK+QsZ4Wm8Hvo5bUnjJwdAYuLVCiKEqpHyQV9eNQrTi+ICbvFHhK3hiuHWMz3UGLs1f/SCmOKZgkWfIG3ARTSSSNogC6mpqyXFCL0uJMlxPTdbjtj0mKgSsVjWVGEkF4itIU82V+S1nLo5oVh0+m0obHBNYvBv2dAil3Hb2K3HqH09P5TSRl7ZJWxaP0XhJugXQ6828Pluu1Uz4FX9wKg/oJjtVswTx1tVWkmRib6ZsczAw6+tgbi7tfS8A5/ICV+CnbyVaiQGWCI9nRzKTa6l7QIQH0Q9XjO2CcRLtOdP69j3WPJELWK50rbYh1GV+D7kaE4grD9Sx/opR570jaaVpPDeflXkzBUIU3n+CGww0PUaPn5jyxzdMt1anZLvxO4hewFvgRgX2RFXuSSdXKO/7oQL45LpTsyiuAe/qnjBafOpQxVoxWoDd7LdWb2r9s0bmPtpJLm6HvQw8gTvoCm4fhHJI7tBruLQC/2/gJTMzFF6M2EyZtnd4WphjwwunOvsiol0d8wK0sfM+38xFWue13/TP/daeIFpfjUFtgfElFpuzYs4tqoWwKkn8QJHk0D7bGCNACXHqFAw0DfmRyAPE8umeILrlwELCvlxUR/iVe1tACs6jM5SVTnstuZq0/GquLzrqWHz397kLlf3jyRNOs9QvY9ZSV9ea07vD59spphHUOxDdB/50jkqMWifhYtWdI6XEil7TjelB6vYjxaxOiGMypSMHBqd97XORBPTHPhhn5FUOrYMCq4MZI3bQMKQ22P7ZGAZrNNI+8tLlpQ/1RGRlzGQxySu2W4f43sCf22arm0Z4xD81OOXlLke1tc9apjHqHQ0dasG1gWp9yNC/6ydLWSuJCjjms3xsmo8gnnsOobjnfbS4XmyJkR+mLXT1gFrbmxOSrIcy63DX7zh307hbdOSZEfNUW7aPUKf9qA4CTZg9Y+BOZgtMAha3ISXPiDVkJWZpXsRbmCSo8OEnuS6yjgauwqlrJm5cMxsnW3QBTKlNe7tbDW51T8cf1cV+y31vHDJrC20Z8fjv2VRg9cLyB8Gab3pGOdLG05njGXm+r/ZYdZUd2XaCtIzHq8XnktCgRpOLHXu4Kt2bhteZgGm4NxESv/iggDLuYsHJeO3FFQMZxGRM3ye4DKw2d1eIcs3oveczxWMXwsPBFAhqaeGdNoMY/lKxVnGlnOl4+XAX1O7AX04C4/oZ2kMC7oy8oDn4JKckmBiMJIIOfn5lSZJg6RsI/THzHn1CJVkFfYrAnFyfj1DqorwDWHTVj8LPOgmiyJaZcorfajwYN6CNiOwhWG9qdPNi7mxoMhaUud61joMlERhBaf/EtPPc2EbHx/NZ9kozmCMQtxGRiD7I6BS8xca+wWvym0Rfvv40qALw5NxirDvi76fCJ3gSJp7LxWNhwdpnGaO7XVgZsx9pPcJa+ZNgpPrP1+UMrlkHd4XjiLUKnckoNQRte/PZSyIp6942EHA8RCJIX8AhxZP/BzWordYLpGB9qHzw/Jb0mrdTTyutdsqxmjXDWPj5qSfISPx1EC/qPWNggmW2HDWxn/R294ACb+k8JSA67rwzea/k6YfvDmpDLDycBt2Z6/Nz3S75TKJ0aJq4L13kMrkEA31iEob9hdau4iFrU8DpG8sZtE4kKB43V4N4AoiMUw6Alh3+uQaZIFQPxSk0cIV27SNAHEy/YV2jFA+chkaTouWrgol3nORn7FFUZ2BfRONDINuc6+74AtTbXqhddlsTTks9lBMSu1JCMcFssaQKVkSTZHK0yRaIZgxsN/hcAYfgj5pF+UJf1oxoNMrHxwWWvaiHNaSnLazkjR60/H1vCWKkLU6QNqrdQli8LzQJbjkIfECAwbz4laCOPndpLtM0V8wx6Sx90ocNTDy2pL5nAGnP/bZLJeSw4n89ns2bFIhvp/3QsSG9dXwq4beE+uyCJxmWwCqLa3UIjYU83eY2nxWg5a9V8oR437dT2XqPWTvV75+M+jSzTvYfaVIKwPPFEYmFXUSI8pHzx46MO3iYMJh5VNin6ycuNa/Sk0mMkRsItE4LIKhLBzYbPNVxBIHp/WVmV9C1knRzwQQ4QFNurnLRzgTQETPXBCnl4YFqkKpN+kpII/OX+FRSdmLNnRKVeGJbj0Mx
Source: global traffic	HTTP traffic detected: GET /siteseal/javascript/siteseal.js HTTP/1.1Host: seal.networksolutions.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5853423237597253 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==; ___utmvc=4JKUm9fCmDiCQlacBZ1If6Jzahc4yDpBtK8zWwRo5kM39G7mGtSfxc6zt+V2BH7SBc1NC3oa6jm/oBFrg9MX6GV2BMOkCkjVVlHx1VNvRFshGFADZ2OdQ2wGnCiA5/pc/qgSiCSPcHNRjC4Co/a9cvLoLTTpOy5/qIL7BBIxAAK3Ne1EqavIkJtg17ewlggFVGBNcOEWUaHprfK+QsZ4Wm8Hvo5bUnjJwdAYuLVCiKEqpHyQV9eNQrTi+ICbvFHhK3hiuHWMz3UGLs1f/SCmOKZgkWfIG3ARTSSSNogC6mpqyXFCL0uJMlxPTdbjtj0mKgSsVjWVGEkF4itIU82V+S1nLo5oVh0+m0obHBNYvBv2dAil3Hb2K3HqH09P5TSRl7ZJWxaP0XhJugXQ6828Pluu1Uz4FX9wKg/oJjtVswTx1tVWkmRib6ZsczAw6+tgbi7tfS8A5/ICV+CnbyVaiQGWCI9nRzKTa6l7QIQH0Q9XjO2CcRLtOdP69j3WPJELWK50rbYh1GV+D7kaE4grD9Sx/opR570jaaVpPDeflXkzBUIU3n+CGww0PUaPn5jyxzdMt1anZLvxO4hewFvgRgX2RFXuSSdXKO/7oQL45LpTsyiuAe/qnjBafOpQxVoxWoDd7LdWb2r9s0bmPtpJLm6HvQw8gTvoCm4fhHJI7tBruLQC/2/gJTMzFF6M2EyZtnd4WphjwwunOvsiol0d8wK0sfM+38xFWue13/TP/daeIFpfjUFtgfElFpuzYs4tqoWwKkn8QJHk0D7bGCNACXHqFAw0DfmRyAPE8umeILrlwELCvlxUR/iVe1tACs6jM5SVTnstuZq0/GquLzrqWHz397kLlf3jyRNOs9QvY9ZSV9ea07vD59spphHUOxDdB/50jkqMWifhYtWdI6XEil7TjelB6vYjxaxOiGMypSMHBqd97XORBPTHPhhn5FUOrYMCq4MZI3bQMKQ22P7ZGAZrNNI+8tLlpQ/1RGRlzGQxySu2W4f43sCf22arm0Z4xD81OOXlLke1tc9apjHqHQ0dasG1gWp9yNC/6ydLWSuJCjjms3xsmo8gnnsOobjnfbS4XmyJkR+mLXT1gFrbmxOSrIcy63DX7zh307hbdOSZEfNUW7aPUKf9qA4CTZg9Y+BOZgtMAha3ISXPiDVkJWZpXsRbmCSo8OEnuS6yjgauwqlrJm5cMxsnW3QBTKlNe7tbDW51T8cf1cV+y31vHDJrC20Z8fjv2VRg9cLyB8Gab3pGOdLG05njGXm+r/ZYdZUd2XaCtIzHq8XnktCgRpOLHXu4Kt2bhteZgGm4NxESv/iggDLuYsHJeO3FFQMZxGRM3ye4DKw2d1eIcs3oveczxWMXwsPBFAhqaeGdNoMY/lKxVnGlnOl4+XAX1O7AX04C4/oZ2kMC7oy8oDn4JKckmBiMJIIOfn5lSZJg6RsI/THzHn1CJVkFfYrAnFyfj1DqorwDWHTVj8LPOgmiyJaZcorfajwYN6CNiOwhWG9qdPNi7mxoMhaUud61joMlERhBaf/EtPPc2EbHx/NZ9kozmCMQtxGRiD7I6BS8xca+wWvym0Rfvv40qALw5NxirDvi76fCJ3gSJp7LxWNhwdpnGaO7XVgZsx9pPcJa+ZNgpPrP1+UMrlkHd4XjiLUKnckoNQRte/PZSyIp6942EHA8RCJIX8AhxZP/BzWordYLpGB9qHzw/Jb0mrdTTyutdsqxmjXDWPj5qSfISPx1EC/qPWNggmW2HDWxn/R294ACb+k8JSA67rwzea/k6YfvDmpDLDycBt2Z6/Nz3S75TKJ0aJq4L13kMrkEA31iEob9hdau4iFrU8DpG8sZtE4kKB43V4N4AoiMUw6Alh3+uQaZIFQPxSk0cIV27SNAHEy/YV2jFA+chkaTouWrgol3nORn7FFUZ2BfRONDINuc6+74AtTbXqhddlsTTks9lBMSu1JCMcFssaQKVkSTZHK0yRaIZgxsN/hcAYfgj5pF+UJf1oxoNMrHxwWWvaiHNaSnLazkjR60/H1vCWKkLU6QNqrdQli8LzQJbjkIfECAwbz4laCOPndp
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /public/images/default/driverCare_noRoad_small.png HTTP/1.1Host: my.drivercare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookie_encrypted=1176866758.1.357570960.2457704961; visid_incap_2608729=Hoy9vDHeTaWIm97M4Ur0xp6U+mYAAAAAQUIPAAAAAACFyW6Bmm8xswq5ALIr8Yhk; incap_ses_1845_2608729=gYqdb9+PD0GYltff3sGaGZ6U+mYAAAAAyLUQd9TsR9e2u02CstyGNw==
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5853423237597253 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /images/basicrecblue.gif HTTP/1.1Host: seal.networksolutions.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5853423237597253 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.mydrivercare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: www.mydrivercare.com
Source: global traffic	DNS traffic detected: DNS query: my.drivercare.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: sso.ceinetwork.com
Source: global traffic	DNS traffic detected: DNS query: seal.networksolutions.com

Source: unknown

HTTP traffic detected: POST /driverCare HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveContent-Length: 3016Cache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1Origin: https://my.drivercare.comContent-Type: application/x-www-form-urlencodedUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://my.drivercare.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundCache-Control: privateContent-Type: text/html; charset=utf-8Server: Microsoft-IIS/10.0X-AspNet-Version: 4.0.30319X-Powered-By: ASP.NETStrict-Transport-Security: max-age=300Date: Mon, 30 Sep 2024 12:07:24 GMTConnection: closeContent-Length: 3151X-CDN: ImpervaX-Iinfo: 61-187372188-187372237 NNNY CT(1 7 0) RT(1727698084214 199) q(0 0 0 -1) r(0 0) U24

Source: chromecache_79.1.dr	String found in binary or memory: http://www.google.com/search?q=Enable
Source: chromecache_76.1.dr	String found in binary or memory: https://SSO.ceinetwork.com/driverCare
Source: chromecache_79.1.dr	String found in binary or memory: https://my.drivercare.com/public/images/default/driverCare_noRoad_small.png
Source: chromecache_79.1.dr	String found in binary or memory: https://seal.networksolutions.com/images/basicrecblue.gif
Source: chromecache_79.1.dr	String found in binary or memory: https://seal.networksolutions.com/siteseal/javascript/siteseal.js

Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49733 version: TLS 1.2

Source: classification engine

Classification label: clean3.win@18/36@20/7

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=2012,i,15930214663263681697,9946918800049318254,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://www.myDriverCare.com"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=2012,i,15930214663263681697,9946918800049318254,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
4.31.117.242	www.mydrivercare.com	United States	3356	LEVEL3US	false
142.250.185.132	unknown	United States	15169	GOOGLEUS	false
45.60.153.181	2jm3mf6.impervadns.net	United States	19551	INCAPSULAUS	false
209.237.135.69	seal.networksolutions.com	United States	55002	DEFENSE-NETUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
172.217.18.100	www.google.com	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.5

Contacted Domains

Name	IP	Active
bg.microsoft.map.fastly.net	199.232.214.172	true
2jm3mf6.impervadns.net	45.60.153.181	true
www.mydrivercare.com	4.31.117.242	true
yr9wjyj.impervadns.net	45.60.153.181	true
www.google.com	172.217.18.100	true
seal.networksolutions.com	209.237.135.69	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
sso.ceinetwork.com	unknown	unknown
my.drivercare.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://my.drivercare.com/	false	0%, Virustotal, Browse	unknown
https://sso.ceinetwork.com/public/scripts/drivercare.js	false		unknown
https://my.drivercare.com/public/images/default/driverCare_noRoad_small.png	false		unknown
https://sso.ceinetwork.com/public/Images/Background-DC5.gif	false		unknown
https://sso.ceinetwork.com/_Incapsula_Resource?SWKMTFSR=1&e=0.5853423237597253	false		unknown
https://sso.ceinetwork.com/favicon.ico	false		unknown
https://sso.ceinetwork.com/public/scripts/sso.js	false		unknown
https://sso.ceinetwork.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1882433758	false		unknown
https://seal.networksolutions.com/siteseal/javascript/siteseal.js	false	0%, Virustotal, Browse	unknown
https://seal.networksolutions.com/images/basicrecblue.gif	false	0%, Virustotal, Browse	unknown
https://my.drivercare.com/Shared/Authentication/LogIn?ReturnUrl=%2f	false	0%, Virustotal, Browse	unknown
https://sso.ceinetwork.com/public/styles/main.css?638627617655743192	false		unknown
https://sso.ceinetwork.com/driverCare	false		unknown
https://sso.ceinetwork.com/public/scripts/thirdparty.js	false		unknown
http://www.mydrivercare.com/	false	1%, Virustotal, Browse	unknown

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 11:07:57 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	C5F5B8B5E380BA9C1CDDAED51F74DCF3	62CA55F08B6E40A0CB4D047DC179A70115CCDFDB	17E4E46B91C8767211DCD4D37698DD86C2721BC661E1233B4019F06D7D1AF315
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 11:07:57 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	74AD3CDEE3249B585D4F4E5B37D2ECCC	F0508548AA039056E26289A799FF519CC8A17F07	5321B1E929CA39C7BC9047B56BBF6B30CF9A318B2F9F080DC14B65777A2FDE40
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	8AF13D426D86F81F80F4F38937DB450C	80008998CE6FF47CE323E57A9D78D5DD79444BAC	B3A3E1E0CB9C15B004682B83C24F87D476E9EF41F54EAC2A6BEC55078D20AC18
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 11:07:57 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	81BDA2FD02278F4DB7E01BF347B5A78D	499E868575789F998CB0CDA78C1029E397AB6259	988FDC70AE3F3CBDC74059604A597F3292DD3E4219436E8886DFD4FD704EA811
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 11:07:57 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	BC4D1A34AFC871852B454EFA80D8D3D6	77913BA579B8EC2FAF8BD3BE50FB89F58A18BA11	AF84D580AB4D3DE4C27324618531CEA0120E2AD9D3EE387EABBD47EB276F1C4D
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Mon Sep 30 11:07:57 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide	B4C5607A5729BEC4F7640E3B9A6A4951	FDAD2253348FCB88E67D18E163B877309A2BBCEA	86A6E4868D6CA781A519C517C6BD3E481E66792D68BEF719D375475BEAAE35DE
Chrome Cache Entry: 65	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	92B8F1E78409407013A09D6BD1EF5552	4D60FF8C5077691426048025E8083A9184AE74B9	EA6F780A1C0346A4E66F7C0C3F8B49A8CAA198CE20D0BE82F560C7FEEDE881EA
Chrome Cache Entry: 66	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	9AC2B47464A154A9AF7206854D614501	6EEF8EC32D3625A0767DB972E5171BBBECCA6593	D7453E6E6C26088CCAEE807DB0A349512891C2B9D85D5DF0B930A96BE50394E2
Chrome Cache Entry: 67	ASCII text, with no line terminators	71BF8E259927171405D3975A06727CBB	CF07C19D1DDDDEBBEC02561232CDCC99EEE29177	97BF0F762D81C6F6AB7EAF8C6B6E2A04E27F36B94707C0D6722530CD99F080C4
Chrome Cache Entry: 68	GIF image data, version 89a, 566 x 378	617877122761C9CD120085A1924D8803	7C7AB13C20DD219FD67A9C4EA7914B6AE78DC869	C0E7F614F777464948DFF9671FB5496A7D325818521B83418171A5927B056A2E
Chrome Cache Entry: 69	HTML document, ASCII text	CEB5AF84B1151AA510BFB4A4503A58E6	106FBD9E511266BCB1C9C2CA5A3EFF7BA206992C	3920D725BD576FA0E66FD9771C9978D78F5DA4BB4F0D72D6C08B178B1DD6C1C6
Chrome Cache Entry: 70	GIF image data, version 89a, 172 x 44	1E07917AD0E0881E558CB66BA4B45F5D	920E0CC946BADABFD8160F3A11E463945904AB76	733CF80BDE687E46B1304BB44D1BAE54A82A2C3A391D6532DCCA691DA8E7B1B3
Chrome Cache Entry: 71	PNG image data, 146 x 24, 8-bit/color RGBA, non-interlaced	52EAF59CCCCC213810C085AF5F9E931A	8045F3E492FCD141EED4177DE914F2BC3B83DEAB	29E50874B99A76EDCF9C2B155A7120D72C983F30167EFB061D3D7DA57A62BB00
Chrome Cache Entry: 72	ASCII text, with very long lines (1107)	867E60C78036FBA84EBC89357655ABC3	E2F7EB31361020681CE7BB11D1827AB500AC4C01	460B3B390F14272FFFDC3DD38BE7EA090B49C5BAB3885CB56597076306B35496
Chrome Cache Entry: 73	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	9AC2B47464A154A9AF7206854D614501	6EEF8EC32D3625A0767DB972E5171BBBECCA6593	D7453E6E6C26088CCAEE807DB0A349512891C2B9D85D5DF0B930A96BE50394E2
Chrome Cache Entry: 74	HTML document, ASCII text, with CRLF line terminators	D5349B10C6CD1FA6FCDD8C17607D4256	57D40580C3D5AC4CCABAF1B163CDB7AB67C1C7FA	FB2AC27D0B05C87740B272C39BED308C606585EF7BA6C92917299638146ADA51
Chrome Cache Entry: 75	ASCII text, with CRLF line terminators	006BC64C30353FB953F9B096B12552DF	1265368EA8D01C4D11B71CE3BD7179E80581515D	2CD66A382E992A7F91801662D284CE15F2CB55531614DC53BC437E229546BF31
Chrome Cache Entry: 76	HTML document, ASCII text, with very long lines (31418), with CRLF line terminators	18F0CEB7CFB774D61840CE98950D06B6	EF9C75C6B720705BF842A78310AF61C5C38605C7	5C2F3301BDEA60A6974730EBDA0C261F5C488C25674F48D92F333D8E6D811B16
Chrome Cache Entry: 77	GIF image data, version 89a, 566 x 378	617877122761C9CD120085A1924D8803	7C7AB13C20DD219FD67A9C4EA7914B6AE78DC869	C0E7F614F777464948DFF9671FB5496A7D325818521B83418171A5927B056A2E
Chrome Cache Entry: 78	HTML document, ASCII text	CEB5AF84B1151AA510BFB4A4503A58E6	106FBD9E511266BCB1C9C2CA5A3EFF7BA206992C	3920D725BD576FA0E66FD9771C9978D78F5DA4BB4F0D72D6C08B178B1DD6C1C6
Chrome Cache Entry: 79	HTML document, ASCII text, with very long lines (302), with CRLF, LF line terminators	AEACCA181CBC8479D0E4925ACCC113B4	063DFF89AE52101C8176EF2350D6CCA806CBBFBA	82B0081BCABB01E20420624E74E36051EE63610D5A3E0861F7B873ADAC2E84E9
Chrome Cache Entry: 80	PNG image data, 146 x 24, 8-bit/color RGBA, non-interlaced	52EAF59CCCCC213810C085AF5F9E931A	8045F3E492FCD141EED4177DE914F2BC3B83DEAB	29E50874B99A76EDCF9C2B155A7120D72C983F30167EFB061D3D7DA57A62BB00
Chrome Cache Entry: 81	GIF image data, version 89a, 172 x 44	1E07917AD0E0881E558CB66BA4B45F5D	920E0CC946BADABFD8160F3A11E463945904AB76	733CF80BDE687E46B1304BB44D1BAE54A82A2C3A391D6532DCCA691DA8E7B1B3
Chrome Cache Entry: 82	Unicode text, UTF-8 (with BOM) text, with CRLF line terminators	92B8F1E78409407013A09D6BD1EF5552	4D60FF8C5077691426048025E8083A9184AE74B9	EA6F780A1C0346A4E66F7C0C3F8B49A8CAA198CE20D0BE82F560C7FEEDE881EA

HTML body contains low number of good links

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: Number of links: 0

HTML body contains password input but no form action

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: <input type="password" .../> found but no <form action="...

HTML title does not match URL

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: Title: CEI - Global Vehicle Risk Solutions does not match URL

Invalid 'forgot password' link found

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: Invalid link: Forgot your password?

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: <input type="password" .../> found

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: No favicon

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: No <meta name="author".. found

Source: https://sso.ceinetwork.com/driverCare

HTTP Parser: No <meta name="copyright".. found

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49748 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49733 version: TLS 1.2

Uses insecure TLS / SSL version for HTTPS connection

Source: unknown

HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49748 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	TCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: my.drivercare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Shared/Authentication/LogIn?ReturnUrl=%2f HTTP/1.1Host: my.drivercare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookie_encrypted=1176866758.1.357570960.2457704961; visid_incap_2608729=Hoy9vDHeTaWIm97M4Ur0xp6U+mYAAAAAQUIPAAAAAACFyW6Bmm8xswq5ALIr8Yhk; incap_ses_1845_2608729=gYqdb9+PD0GYltff3sGaGZ6U+mYAAAAAyLUQd9TsR9e2u02CstyGNw==
Source: global traffic	HTTP traffic detected: GET /public/styles/main.css?638627617655743192 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/Images/Background-DC5.gif HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/scripts/thirdparty.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/scripts/sso.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/scripts/drivercare.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1882433758 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /siteseal/javascript/siteseal.js HTTP/1.1Host: seal.networksolutions.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sso.ceinetwork.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/images/default/driverCare_noRoad_small.png HTTP/1.1Host: my.drivercare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5853423237597253 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /images/basicrecblue.gif HTTP/1.1Host: seal.networksolutions.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/scripts/drivercare.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /public/scripts/sso.js HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1882433758 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /public/Images/Background-DC5.gif HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /siteseal/javascript/siteseal.js HTTP/1.1Host: seal.networksolutions.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5853423237597253 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==; ___utmvc=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
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /public/images/default/driverCare_noRoad_small.png HTTP/1.1Host: my.drivercare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cookie_encrypted=1176866758.1.357570960.2457704961; visid_incap_2608729=Hoy9vDHeTaWIm97M4Ur0xp6U+mYAAAAAQUIPAAAAAACFyW6Bmm8xswq5ALIr8Yhk; incap_ses_1845_2608729=gYqdb9+PD0GYltff3sGaGZ6U+mYAAAAAyLUQd9TsR9e2u02CstyGNw==
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5853423237597253 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /images/basicrecblue.gif HTTP/1.1Host: seal.networksolutions.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5853423237597253 HTTP/1.1Host: sso.ceinetwork.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: sso.ceinetwork.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ceinetwork.com/driverCareAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ASP.NET_SessionId=cl0h5eeiqxkwnv3eevghwc4d; cookie_encrypted=1176866758.1.351330768.2457715200; visid_incap_2577718=F3InCyKWTrWm4O0whOgxraGU+mYAAAAAQUIPAAAAAAC8W644H6WK6iFm/HgDZS76; incap_ses_1845_2577718=pb3xSF57jiyxn9ff3sGaGaGU+mYAAAAAAkOTBBA2FkoqS7A5qSkuWw==
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.mydrivercare.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: www.mydrivercare.com
Source: global traffic	DNS traffic detected: DNS query: my.drivercare.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: sso.ceinetwork.com
Source: global traffic	DNS traffic detected: DNS query: seal.networksolutions.com

Source: unknown

Source: global traffic

Source: chromecache_79.1.dr	String found in binary or memory: http://www.google.com/search?q=Enable
Source: chromecache_76.1.dr	String found in binary or memory: https://SSO.ceinetwork.com/driverCare
Source: chromecache_79.1.dr	String found in binary or memory: https://my.drivercare.com/public/images/default/driverCare_noRoad_small.png
Source: chromecache_79.1.dr	String found in binary or memory: https://seal.networksolutions.com/images/basicrecblue.gif
Source: chromecache_79.1.dr	String found in binary or memory: https://seal.networksolutions.com/siteseal/javascript/siteseal.js

Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49733 version: TLS 1.2

Source: classification engine

Classification label: clean3.win@18/36@20/7

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=2012,i,15930214663263681697,9946918800049318254,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://www.myDriverCare.com"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2080 --field-trial-handle=2012,i,15930214663263681697,9946918800049318254,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

ID:	1522640
Product:	CloudBasic
Start time:	14:07:03
Start date:	30.09.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
http://www.myDriverCare.com

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report http://www.myDriverCare.com

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
http://www.myDriverCare.com