Windows Analysis Report
original.eml

Overview

General Information

Sample name: original.eml
Analysis ID: 1523590
MD5: bc6822ad7fe00617e7ce8bc26be62c50
SHA1: 021e3cb93aeb72f54cd6bb9b902080d1d296f45a
SHA256: 9f3b542b991708f9798b4571e9ea866945ae732afda11d4e3f45b9d62e58c497
Infos:

Detection

Score: 3
Range: 0 - 100
Whitelisted: false
Confidence: 60%

Signatures

Connects to many different domains
Detected non-DNS traffic on DNS port
Queries the volume information (name, serial number etc) of a device
Sigma detected: Office Autorun Keys Modification
Sigma detected: Outlook Security Settings Updated - Registry
Sigma detected: Suspicious Office Outbound Connections
Stores files to the Windows start menu directory

Classification

Source: https://pages.autodesk.com/index.php/email/emailWebview?mkt_tok=OTE4LUZPRC00MzMAAAGV59Q0GGPKlfsm2CJezQFDAS4-2UWc6wpQSJ0lXGUxjcW-uQ1JWkXmAVI9_bqZAx-E_EK-LsL2nzau4Vd76uZx72NALg6iCRP7kD6gpkJvFWVlf8ocQNFr&email=OTE4LUZPRC00MzMAAAGV6D07nqywB_fAaVE-IsMUjGNda1StdXfHwPFvxEceuj15tX3tXczj3NwpBoZwlH6L3kqA0j-MLt9f_k8j9Y4kgeggoSAag-yUfVE HTTP Parser: No favicon
Source: https://www.autodesk.com/company/legal-notices-trademarks/privacy-statement?mktvar002=6396284009%7CEML%7C654649188&utm_medium=email&utm_source=ilm-email&utm_campaign=6396284cross-indtech-admin-newsletter&utm_id=6396284009&mkt_tok=OTE4LUZPRC00MzMAAAGV59Q0GFwT-ynvu0FBstV71zjEMolcgvENGh4gX4gFE4ceSLrsI5abZA36VP_GupS9k7K5Z94qQQy2_of5sl8zfe1OX8phUk2XyXUUR5_tIlhHgP8Nj2vm HTTP Parser: No favicon
Source: unknown HTTPS traffic detected: 40.126.31.73:443 -> 192.168.2.16:49718 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49719 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49722 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49777 version: TLS 1.2
Source: unknown HTTPS traffic detected: 35.83.47.126:443 -> 192.168.2.16:49802 version: TLS 1.2
Source: unknown HTTPS traffic detected: 104.17.73.206:443 -> 192.168.2.16:49799 version: TLS 1.2
Source: unknown HTTPS traffic detected: 104.17.73.206:443 -> 192.168.2.16:49798 version: TLS 1.2
Source: unknown HTTPS traffic detected: 104.17.74.206:443 -> 192.168.2.16:49801 version: TLS 1.2
Source: unknown HTTPS traffic detected: 35.83.47.126:443 -> 192.168.2.16:49809 version: TLS 1.2
Source: chrome.exe Memory has grown: Private usage: 1MB later: 29MB
Connects to many different domains
Source: unknown Network traffic detected: DNS query count 71
Detected non-DNS traffic on DNS port
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: global traffic TCP traffic: 192.168.2.16:49921 -> 1.1.1.1:53
Source: unknown TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 40.126.31.73
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: global traffic DNS traffic detected: DNS query: can01.safelinks.protection.outlook.com
Source: global traffic DNS traffic detected: DNS query: click.autodesk.com
Source: global traffic DNS traffic detected: DNS query: pages.autodesk.com
Source: global traffic DNS traffic detected: DNS query: damassets.autodesk.net
Source: global traffic DNS traffic detected: DNS query: f3umihjxdn.eoapxl.com
Source: global traffic DNS traffic detected: DNS query: pxl.eoapxl.com
Source: global traffic DNS traffic detected: DNS query: eoaclk.com
Source: global traffic DNS traffic detected: DNS query: autodeskfeedback.az1.qualtrics.com
Source: global traffic DNS traffic detected: DNS query: eu.qualtrics.com
Source: global traffic DNS traffic detected: DNS query: swc.autodesk.com
Source: global traffic DNS traffic detected: DNS query: www.autodesk.com
Source: global traffic DNS traffic detected: DNS query: static-dc.autodesk.net
Source: global traffic DNS traffic detected: DNS query: tags.tiqcdn.com
Source: global traffic DNS traffic detected: DNS query: swc-stg.autodesk.com
Source: global traffic DNS traffic detected: DNS query: app.launchdarkly.com
Source: global traffic DNS traffic detected: DNS query: dpm.demdex.net
Source: global traffic DNS traffic detected: DNS query: cdn.speedcurve.com
Source: global traffic DNS traffic detected: DNS query: prd-cfp.autodesk.com
Source: global traffic DNS traffic detected: DNS query: autodesk.tt.omtrdc.net
Source: global traffic DNS traffic detected: DNS query: fonts.autodesk.com
Source: global traffic DNS traffic detected: DNS query: akamai.tiqcdn.com
Source: global traffic DNS traffic detected: DNS query: events.launchdarkly.com
Source: global traffic DNS traffic detected: DNS query: damassets.autodesk.com
Source: global traffic DNS traffic detected: DNS query: epsilon.6sense.com
Source: global traffic DNS traffic detected: DNS query: ipm-aem.autodesk.com
Source: global traffic DNS traffic detected: DNS query: j.6sc.co
Source: global traffic DNS traffic detected: DNS query: universal-search.autodesk.com
Source: global traffic DNS traffic detected: DNS query: secure.adnxs.com
Source: global traffic DNS traffic detected: DNS query: c.6sc.co
Source: global traffic DNS traffic detected: DNS query: ipv6.6sc.co
Source: global traffic DNS traffic detected: DNS query: eps.6sc.co
Source: global traffic DNS traffic detected: DNS query: smetrics.autodesk.com
Source: global traffic DNS traffic detected: DNS query: gtm.wape.autodesk.com
Source: global traffic DNS traffic detected: DNS query: b.6sc.co
Source: global traffic DNS traffic detected: DNS query: app.digital-help-prd.autodesk.com
Source: global traffic DNS traffic detected: DNS query: www.upsellit.com
Source: global traffic DNS traffic detected: DNS query: munchkin.marketo.net
Source: global traffic DNS traffic detected: DNS query: api.digital-help-prd.autodesk.com
Source: global traffic DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic DNS traffic detected: DNS query: znb2b6wn008pbgkwn-autodeskfeedback.siteintercept.qualtrics.com
Source: global traffic DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic DNS traffic detected: DNS query: www.mczbf.com
Source: global traffic DNS traffic detected: DNS query: a.wa.autodesk.com
Source: global traffic DNS traffic detected: DNS query: cfp-mfe-prd.autodesk.com
Source: global traffic DNS traffic detected: DNS query: c.wa.autodesk.com
Source: global traffic DNS traffic detected: DNS query: js.adsrvr.org
Source: global traffic DNS traffic detected: DNS query: insight.adsrvr.org
Source: global traffic DNS traffic detected: DNS query: analytics.google.com
Source: global traffic DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic DNS traffic detected: DNS query: match.adsrvr.org
Source: global traffic DNS traffic detected: DNS query: aiq-in.autodesk.com
Source: global traffic DNS traffic detected: DNS query: siteintercept.qualtrics.com
Source: global traffic DNS traffic detected: DNS query: 918-fod-433.mktoresp.com
Source: global traffic DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic DNS traffic detected: DNS query: pixel.rubiconproject.com
Source: global traffic DNS traffic detected: DNS query: ib.adnxs.com
Source: global traffic DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic DNS traffic detected: DNS query: idsync.rlcdn.com
Source: global traffic DNS traffic detected: DNS query: app.upsellit.com
Source: global traffic DNS traffic detected: DNS query: cdn.prod.uidapi.com
Source: global traffic DNS traffic detected: DNS query: www.google.com
Source: global traffic DNS traffic detected: DNS query: 4334017.fls.doubleclick.net
Source: global traffic DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic DNS traffic detected: DNS query: www.facebook.com
Source: global traffic DNS traffic detected: DNS query: 6038712.fls.doubleclick.net
Source: global traffic DNS traffic detected: DNS query: 4205822.fls.doubleclick.net
Source: global traffic DNS traffic detected: DNS query: sp.analytics.yahoo.com
Source: global traffic DNS traffic detected: DNS query: adservice.google.com
Source: global traffic DNS traffic detected: DNS query: ad.doubleclick.net
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown Network traffic detected: HTTP traffic on port 50142 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50049 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50176 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown Network traffic detected: HTTP traffic on port 50166 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown Network traffic detected: HTTP traffic on port 50109 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50132 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown Network traffic detected: HTTP traffic on port 50174 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50162 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50129 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50070 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49953 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50047 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50140 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50174
Source: unknown Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50176
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49984 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50180
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50181
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50147 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50138
Source: unknown Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49974 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50149 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50032 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50131
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50130
Source: unknown Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50133
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50132
Source: unknown Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50135
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50134
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown Network traffic detected: HTTP traffic on port 50078 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown Network traffic detected: HTTP traffic on port 49939 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50140
Source: unknown Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50149
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50142
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50141
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50144
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50143
Source: unknown Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50146
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50147
Source: unknown Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50151
Source: unknown Network traffic detected: HTTP traffic on port 50138 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50103 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50153
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50155
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50154
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49940 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50160
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown Network traffic detected: HTTP traffic on port 50137 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50162
Source: unknown Network traffic detected: HTTP traffic on port 50066 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50104 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50089 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50171 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50042
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50163
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50166
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50047
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50167
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50171
Source: unknown Network traffic detected: HTTP traffic on port 50160 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49962 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50126 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50122 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49970 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50042 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49935 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50180 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50134 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50053 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49981 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50088 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50076 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50133 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50031 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49969 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50167 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50020 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown Network traffic detected: HTTP traffic on port 50075 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50135 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49936
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49935
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49934
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50064 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50123 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49936 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50124 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49982 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50146 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown HTTPS traffic detected: 40.126.31.73:443 -> 192.168.2.16:49718 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49719 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49721 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49722 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.16:49777 version: TLS 1.2
Source: unknown HTTPS traffic detected: 35.83.47.126:443 -> 192.168.2.16:49802 version: TLS 1.2
Source: unknown HTTPS traffic detected: 104.17.73.206:443 -> 192.168.2.16:49799 version: TLS 1.2
Source: unknown HTTPS traffic detected: 104.17.73.206:443 -> 192.168.2.16:49798 version: TLS 1.2
Source: unknown HTTPS traffic detected: 104.17.74.206:443 -> 192.168.2.16:49801 version: TLS 1.2
Source: unknown HTTPS traffic detected: 35.83.47.126:443 -> 192.168.2.16:49809 version: TLS 1.2
Source: classification engine Classification label: clean3.winEML@43/189@259/490
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE File created: C:\Users\user\Documents\Outlook Files\~Outlook Data File - NoEmail.pst.tmp
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE File created: C:\Users\user\AppData\Local\Temp\Outlook Logging\OUTLOOK_16_0_16827_20130-20241001T1407420656-7104.etl
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE File read: C:\Users\desktop.ini
Source: unknown Process created: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" /eml "C:\Users\user\Desktop\original.eml"
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe "C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe" "E77354C0-0F1F-44EE-A841-DF106B12011A" "1DC1AC28-B77B-44A2-B1EB-B0808D00A1F8" "7104" "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" "WordCombinedFloatieLreOnline.onnx"
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE "C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE" /eml "C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.Outlook\MRXVIG15\phish_alert_iocp_v1.10.14.eml"
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe "C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe" "E77354C0-0F1F-44EE-A841-DF106B12011A" "1DC1AC28-B77B-44A2-B1EB-B0808D00A1F8" "7104" "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" "WordCombinedFloatieLreOnline.onnx"
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://can01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fclick.autodesk.com%2Fv%2FOTE4LUZPRC00MzMAAAGV59Q0GPAetRFioAPkuzAbnSakT3EiLe_bPxY70FwcWVsH5UeIvTriGbbuRg1NvXWRpkcrs30%3D&data=05%7C02%7Cjimmy.levasseur%40metalus.qc.ca%7Ceac87b48b3a54125a58b08dce233f6ce%7C4f85cc14eaa84e0b829193aab6969f78%7C0%7C0%7C638633960027832067%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=sEHa7c27ijVZzn4qZ33VhWbce3uLuVKAyt1UGiPLmlQ%3D&reserved=0
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2184 --field-trial-handle=1816,i,15266273602331990781,9014994802760181309,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://can01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fclick.autodesk.com%2Fdc%2F1GQ4hiLEEfpNUvqWjd4lDPLdg7GyYVvkCoX592l7ktp1gfpOeEiOEWQ9Xx4R98I00al_oJvfq2DfUVKkrKQmMa3fynUwk6Zu0Hp5iXwDVfC_WsjV7JaRInUuDUtcGyeg6L9LN8omWWrS7XJcAFFgILum6PhQA7ukELFwmi3yWcBBo3LW_-kvWKmzTrcPMjVc-zC1TXdVF4EfM7IJIpDE5Kd7Wk_MzTk4xJCRQQuQMpXD3QzegqzihRBQYXmi_b8fFw1T7JcT8N9FblFb_V5Pwg%3D%3D%2FOTE4LUZPRC00MzMAAAGV59Q0GI7Ae0rFIFY8pKWewu9TNIas2fIHRB5B5ZkKlTy6MKRpm546fE81VIIslsaz0rw__n8%3D&data=05%7C02%7Cjimmy.levasseur%40metalus.qc.ca%7Ceac87b48b3a54125a58b08dce233f6ce%7C4f85cc14eaa84e0b829193aab6969f78%7C0%7C0%7C638633960027874976%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=w2niZzzAeL1ydY2o%2FdU2pFb%2BDRaA4IieMLzNyifox9E%3D&reserved=0
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2060 --field-trial-handle=1996,i,9947585437536709150,17502010602333247611,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE "C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE" /eml "C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.Outlook\MRXVIG15\phish_alert_iocp_v1.10.14.eml"
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://can01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fclick.autodesk.com%2Fv%2FOTE4LUZPRC00MzMAAAGV59Q0GPAetRFioAPkuzAbnSakT3EiLe_bPxY70FwcWVsH5UeIvTriGbbuRg1NvXWRpkcrs30%3D&data=05%7C02%7Cjimmy.levasseur%40metalus.qc.ca%7Ceac87b48b3a54125a58b08dce233f6ce%7C4f85cc14eaa84e0b829193aab6969f78%7C0%7C0%7C638633960027832067%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=sEHa7c27ijVZzn4qZ33VhWbce3uLuVKAyt1UGiPLmlQ%3D&reserved=0
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://can01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fclick.autodesk.com%2Fdc%2F1GQ4hiLEEfpNUvqWjd4lDPLdg7GyYVvkCoX592l7ktp1gfpOeEiOEWQ9Xx4R98I00al_oJvfq2DfUVKkrKQmMa3fynUwk6Zu0Hp5iXwDVfC_WsjV7JaRInUuDUtcGyeg6L9LN8omWWrS7XJcAFFgILum6PhQA7ukELFwmi3yWcBBo3LW_-kvWKmzTrcPMjVc-zC1TXdVF4EfM7IJIpDE5Kd7Wk_MzTk4xJCRQQuQMpXD3QzegqzihRBQYXmi_b8fFw1T7JcT8N9FblFb_V5Pwg%3D%3D%2FOTE4LUZPRC00MzMAAAGV59Q0GI7Ae0rFIFY8pKWewu9TNIas2fIHRB5B5ZkKlTy6MKRpm546fE81VIIslsaz0rw__n8%3D&data=05%7C02%7Cjimmy.levasseur%40metalus.qc.ca%7Ceac87b48b3a54125a58b08dce233f6ce%7C4f85cc14eaa84e0b829193aab6969f78%7C0%7C0%7C638633960027874976%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=w2niZzzAeL1ydY2o%2FdU2pFb%2BDRaA4IieMLzNyifox9E%3D&reserved=0
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2184 --field-trial-handle=1816,i,15266273602331990781,9014994802760181309,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2060 --field-trial-handle=1996,i,9947585437536709150,17502010602333247611,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://can01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fclick.autodesk.com%2Fdc%2F1GQ4hiLEEfpNUvqWjd4lDNW_8eFckShPOSxTdsimcMIXXUg7y4xd6VibxPm01zNTs_PR2PzfLa9tS99Pb2KycCGx46nhnvt4eTdCUdEEIwSPzChWHjxrKudO_qb5lFAtvjO93t2Ffd0-cnfePyu1XsqdZP97-GI3QttgCWOybeMN1-vaNN4v4E9k1ztvg6eynJMlSMbUXstgu6_SqZAdzY9XLV7Uvq_a-U9LE1IHUEUrqntJcifnzoFeEccUC2l3GfdOCgftUAn4bEuUmsWuKQ%3D%3D%2FOTE4LUZPRC00MzMAAAGV59Q0GOFlZIVhpBeBYOh8PTympeHgfrawpqyB2V2KvH7qPzefEb0DML4DxNwE-5xBtd28q4Y%3D&data=05%7C02%7Cjimmy.levasseur%40metalus.qc.ca%7Ceac87b48b3a54125a58b08dce233f6ce%7C4f85cc14eaa84e0b829193aab6969f78%7C0%7C0%7C638633960027903835%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=NkGzdWz%2FeaChvZqOWHiddy%2FqtnDj1u9pGbEGwxvOthc%3D&reserved=0
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2156 --field-trial-handle=1928,i,7293634958245559932,13547044802255277452,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://can01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fclick.autodesk.com%2Fdc%2F1GQ4hiLEEfpNUvqWjd4lDNW_8eFckShPOSxTdsimcMIXXUg7y4xd6VibxPm01zNTs_PR2PzfLa9tS99Pb2KycCGx46nhnvt4eTdCUdEEIwSPzChWHjxrKudO_qb5lFAtvjO93t2Ffd0-cnfePyu1XsqdZP97-GI3QttgCWOybeMN1-vaNN4v4E9k1ztvg6eynJMlSMbUXstgu6_SqZAdzY9XLV7Uvq_a-U9LE1IHUEUrqntJcifnzoFeEccUC2l3GfdOCgftUAn4bEuUmsWuKQ%3D%3D%2FOTE4LUZPRC00MzMAAAGV59Q0GOFlZIVhpBeBYOh8PTympeHgfrawpqyB2V2KvH7qPzefEb0DML4DxNwE-5xBtd28q4Y%3D&data=05%7C02%7Cjimmy.levasseur%40metalus.qc.ca%7Ceac87b48b3a54125a58b08dce233f6ce%7C4f85cc14eaa84e0b829193aab6969f78%7C0%7C0%7C638633960027903835%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=NkGzdWz%2FeaChvZqOWHiddy%2FqtnDj1u9pGbEGwxvOthc%3D&reserved=0
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2156 --field-trial-handle=1928,i,7293634958245559932,13547044802255277452,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Section loaded: apphelp.dll
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Section loaded: c2r64.dll
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Section loaded: userenv.dll
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Section loaded: msasn1.dll
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Section loaded: kernel.appcore.dll
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Section loaded: cryptsp.dll
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Section loaded: rsaenh.dll
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Section loaded: cryptbase.dll
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Section loaded: gpapi.dll
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\ClickToRun\REGISTRY\MACHINE\Software\Classes\Wow6432Node\CLSID\{F959DBBB-3867-41F2-8E5F-3B8BEFAA81B3}\InprocServer32
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Window found: window name: SysTabControl32
Source: Window Recorder Window detected: More than 3 window changes detected
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Key opened: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Common
Stores files to the Windows start menu directory
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Process information set: NOGPFAULTERRORBOX | NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE File Volume queried: C:\Windows\SysWOW64 FullSizeInformation
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE Process information queried: ProcessInformation
Queries the volume information (name, serial number etc) of a device
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Queries volume information: C:\Program Files (x86)\Microsoft Office\root\Office16\AI\WordCombinedFloatieLreOnline.onnx VolumeInformation
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuid
windows-stand
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
192.28.144.124
 918-fod-433.mktoresp.com United States
15224 OMNITUREUS false
142.250.185.228
 unknown United States
15169 GOOGLEUS false
185.89.210.153
 unknown Germany
29990 ASN-APPNEXUS false
142.250.185.226
 td.doubleclick.net United States
15169 GOOGLEUS false
13.224.189.98
 unknown United States
16509 AMAZON-02US false
99.81.89.111
 unknown United States
16509 AMAZON-02US false
142.251.168.84
 unknown United States
15169 GOOGLEUS false
35.167.162.242
 wape-analytics-linux-103647063.us-west-2.elb.amazonaws.com United States
16509 AMAZON-02US false
34.173.157.226
 aiq-in.autodesk.com United States
2686 ATGS-MMD-ASUS false
46.137.24.228
 dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com Ireland
16509 AMAZON-02US false
104.17.73.206
 unknown United States
13335 CLOUDFLARENETUS false
66.235.152.221
 adobetarget.data.adobedc.net United States
15224 OMNITUREUS false
142.250.186.70
 unknown United States
15169 GOOGLEUS false
157.240.252.13
 scontent.xx.fbcdn.net United States
32934 FACEBOOKUS false
35.71.131.137
 unknown United States
237 MERIT-AS-14US false
1.1.1.1
 unknown Australia
13335 CLOUDFLARENETUS false
216.58.206.40
 unknown United States
15169 GOOGLEUS false
63.140.62.17
 autodesk.com.ssl.sc.omtrdc.net United States
15224 OMNITUREUS false
239.255.255.250
 unknown Reserved
unknown unknown false
18.173.212.121
 d2avimlm6gq3h9.cloudfront.net United States
3 MIT-GATEWAYSUS false
104.17.71.206
 ab58.mktossl.com United States
13335 CLOUDFLARENETUS false
142.250.185.194
 unknown United States
15169 GOOGLEUS false
99.83.231.3
 eps.6sc.co United States
16509 AMAZON-02US false
35.244.174.68
 idsync.rlcdn.com United States
15169 GOOGLEUS false
95.101.111.184
 unknown European Union
12956 TELEFONICATELXIUSES false
76.223.9.105
 unknown United States
16509 AMAZON-02US false
23.215.23.38
 unknown United States
20940 AKAMAI-ASN1EU false
142.250.185.78
 unknown United States
15169 GOOGLEUS false
44.206.162.61
 events.launchdarkly.com United States
14618 AMAZON-AESUS false
142.250.186.130
 adservice.google.com United States
15169 GOOGLEUS false
18.66.102.5
 unknown United States
3 MIT-GATEWAYSUS false
142.250.185.166
 unknown United States
15169 GOOGLEUS false
18.66.102.101
 d327j5wh71069m.cloudfront.net United States
3 MIT-GATEWAYSUS false
104.102.18.173
 unknown United States
16625 AKAMAI-ASUS false
142.250.181.238
 unknown United States
15169 GOOGLEUS false
151.101.194.217
 unknown United States
54113 FASTLYUS false
142.250.185.162
 cm.g.doubleclick.net United States
15169 GOOGLEUS false
142.250.186.132
 www.google.com United States
15169 GOOGLEUS false
34.117.39.58
 www.upsellit.com United States
139070 GOOGLE-AS-APGoogleAsiaPacificPteLtdSG false
157.240.252.35
 star-mini.c10r.facebook.com United States
32934 FACEBOOKUS false
104.102.47.193
 unknown United States
16625 AKAMAI-ASUS false
142.250.186.136
 unknown United States
15169 GOOGLEUS false
52.113.194.132
 unknown United States
8068 MICROSOFT-CORP-MSN-AS-BLOCKUS false
95.101.111.170
 unknown European Union
12956 TELEFONICATELXIUSES false
2.22.61.186
 unknown European Union
20940 AKAMAI-ASN1EU false
151.101.2.217
 unknown United States
54113 FASTLYUS false
65.9.66.7
 fonts.autodesk.com United States
16509 AMAZON-02US false
37.252.171.21
 unknown European Union
29990 ASN-APPNEXUS false
52.37.57.5
 eoaclk.com United States
16509 AMAZON-02US false
13.33.187.58
 dzfq4ouujrxm8.cloudfront.net United States
16509 AMAZON-02US false
151.101.130.217
 unknown United States
54113 FASTLYUS false
13.248.142.121
 epsilon.6sense.com United States
16509 AMAZON-02US false
76.223.34.91
 unknown United States
16509 AMAZON-02US false
13.33.187.60
 unknown United States
16509 AMAZON-02US false
52.222.236.61
 api.digital-help-prd.autodesk.com United States
16509 AMAZON-02US false
104.17.74.206
 unknown United States
13335 CLOUDFLARENETUS false
142.250.184.226
 unknown United States
15169 GOOGLEUS false
142.250.186.35
 unknown United States
15169 GOOGLEUS false
69.173.144.165
 unknown United States
26667 RUBICONPROJECTUS false
3.33.220.150
 match.adsrvr.org United States
8987 AMAZONEXPANSIONGB false
142.250.186.36
 unknown United States
15169 GOOGLEUS false
142.250.184.198
 unknown United States
15169 GOOGLEUS false
142.250.186.38
 unknown United States
15169 GOOGLEUS false
104.17.72.206
 mkto-ab580004.com United States
13335 CLOUDFLARENETUS false
23.201.253.231
 unknown United States
16625 AKAMAI-ASUS false
54.171.122.26
 unknown United States
16509 AMAZON-02US false
13.107.42.14
 unknown United States
8068 MICROSOFT-CORP-MSN-AS-BLOCKUS false
52.109.28.48
 unknown United States
8075 MICROSOFT-CORP-MSN-AS-BLOCKUS false
66.226.1.69
 app.upsellit.com United States
7296 ALCHEMYNETUS false
172.217.18.102
 ad.doubleclick.net United States
15169 GOOGLEUS false
142.250.184.238
 analytics.google.com United States
15169 GOOGLEUS false
54.246.144.89
 spdc-global.pbp.gysm.yahoodns.net United States
16509 AMAZON-02US false
52.223.40.198
 insight.adsrvr.org United States
8987 AMAZONEXPANSIONGB false
54.213.132.110
 pxl.eoapxl.com United States
16509 AMAZON-02US false
104.17.208.240
 unknown United States
13335 CLOUDFLARENETUS false
142.250.184.234
 unknown United States
15169 GOOGLEUS false
172.217.16.198
 unknown United States
15169 GOOGLEUS false
74.125.133.157
 stats.g.doubleclick.net United States
15169 GOOGLEUS false
216.58.206.70
 dart.l.doubleclick.net United States
15169 GOOGLEUS false
75.2.112.85
 a7e69c29ba7d7b1b0.awsglobalaccelerator.com United States
16509 AMAZON-02US false
52.109.89.18
 unknown United States
8075 MICROSOFT-CORP-MSN-AS-BLOCKUS false
18.172.103.101
 dg2iu7dxxehbo.cloudfront.net United States
3 MIT-GATEWAYSUS false
104.17.209.240
 unknown United States
13335 CLOUDFLARENETUS false
18.245.31.55
 app.digital-help-prd.autodesk.com United States
16509 AMAZON-02US false
172.217.23.110
 unknown United States
15169 GOOGLEUS false
52.102.12.252
 can01.safelinks.eop-tm2.outlook.com United States
8075 MICROSOFT-CORP-MSN-AS-BLOCKUS false
150.171.28.10
 ax-0001.ax-msedge.net United States
8075 MICROSOFT-CORP-MSN-AS-BLOCKUS false
20.42.73.26
 unknown United States
8075 MICROSOFT-CORP-MSN-AS-BLOCKUS false
142.250.186.98
 googleads.g.doubleclick.net United States
15169 GOOGLEUS false
216.58.212.131
 unknown United States
15169 GOOGLEUS false
142.250.185.132
 unknown United States
15169 GOOGLEUS false
35.83.47.126
 f3umihjxdn.eoapxl.com United States
237 MERIT-AS-14US false
88.221.169.119
 unknown European Union
16625 AKAMAI-ASUS false
185.89.210.90
 ib.anycast.adnxs.com Germany
29990 ASN-APPNEXUS false
104.102.43.106
 unknown United States
16625 AKAMAI-ASUS false
13.224.189.110
 dcjdc5qmbbux7.cloudfront.net United States
16509 AMAZON-02US false
157.240.251.35
 unknown United States
32934 FACEBOOKUS false

Private

IP
192.168.2.16

Contacted Domains

Name IP Active
app.upsellit.com 66.226.1.69 true
dart.l.doubleclick.net 216.58.206.70 true
d2avimlm6gq3h9.cloudfront.net 18.173.212.121 true
a7e69c29ba7d7b1b0.awsglobalaccelerator.com 75.2.112.85 true
events.launchdarkly.com 44.206.162.61 true
dg2iu7dxxehbo.cloudfront.net 18.172.103.101 true
adservice.google.com 142.250.186.130 true
eps.6sc.co 99.83.231.3 true
spdc-global.pbp.gysm.yahoodns.net 54.246.144.89 true
stats.g.doubleclick.net 74.125.133.157 true
www.upsellit.com 34.117.39.58 true
ab58.mktossl.com 104.17.71.206 true
adobetarget.data.adobedc.net 66.235.152.221 true
app.digital-help-prd.autodesk.com 18.245.31.55 true
insight.adsrvr.org 52.223.40.198 true
scontent.xx.fbcdn.net 157.240.252.13 true
idsync.rlcdn.com 35.244.174.68 true
pxl.eoapxl.com 54.213.132.110 true
cm.g.doubleclick.net 142.250.185.162 true
eoaclk.com 52.37.57.5 true
autodesk.com.ssl.sc.omtrdc.net 63.140.62.17 true
www.google.com 142.250.186.132 true
epsilon.6sense.com 13.248.142.121 true
dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com 46.137.24.228 true
fonts.autodesk.com 65.9.66.7 true
d327j5wh71069m.cloudfront.net 18.66.102.101 true
match.adsrvr.org 3.33.220.150 true
star-mini.c10r.facebook.com 157.240.252.35 true
aiq-in.autodesk.com 34.173.157.226 true
ad.doubleclick.net 172.217.18.102 true
api.digital-help-prd.autodesk.com 52.222.236.61 true
ax-0001.ax-msedge.net 150.171.28.10 true
can01.safelinks.eop-tm2.outlook.com 52.102.12.252 true
918-fod-433.mktoresp.com 192.28.144.124 true
googleads.g.doubleclick.net 142.250.186.98 true
wape-analytics-linux-103647063.us-west-2.elb.amazonaws.com 35.167.162.242 true
f3umihjxdn.eoapxl.com 35.83.47.126 true
dcjdc5qmbbux7.cloudfront.net 13.224.189.110 true
analytics.google.com 142.250.184.238 true
td.doubleclick.net 142.250.185.226 true
ib.anycast.adnxs.com 185.89.210.90 true
mkto-ab580004.com 104.17.72.206 true
dzfq4ouujrxm8.cloudfront.net 13.33.187.58 true
damassets.autodesk.net unknown unknown
swc-stg.autodesk.com unknown unknown
a.wa.autodesk.com unknown unknown
akamai.tiqcdn.com unknown unknown
siteintercept.qualtrics.com unknown unknown
secure.adnxs.com unknown unknown
j.6sc.co unknown unknown
autodesk.tt.omtrdc.net unknown unknown
4205822.fls.doubleclick.net unknown unknown
js.adsrvr.org unknown unknown
c.6sc.co unknown unknown
smetrics.autodesk.com unknown unknown
damassets.autodesk.com unknown unknown
ipm-aem.autodesk.com unknown unknown
eu.qualtrics.com unknown unknown
pixel.rubiconproject.com unknown unknown
pages.autodesk.com unknown unknown
connect.facebook.net unknown unknown
px.ads.linkedin.com unknown unknown
munchkin.marketo.net unknown unknown
c.wa.autodesk.com unknown unknown
autodeskfeedback.az1.qualtrics.com unknown unknown
tags.tiqcdn.com unknown unknown
ipv6.6sc.co unknown unknown
prd-cfp.autodesk.com unknown unknown
www.mczbf.com unknown unknown
cfp-mfe-prd.autodesk.com unknown unknown
sp.analytics.yahoo.com unknown unknown
cdn.speedcurve.com unknown unknown
static-dc.autodesk.net unknown unknown
click.autodesk.com unknown unknown
swc.autodesk.com unknown unknown
4334017.fls.doubleclick.net unknown unknown
6038712.fls.doubleclick.net unknown unknown
znb2b6wn008pbgkwn-autodeskfeedback.siteintercept.qualtrics.com unknown unknown
b.6sc.co unknown unknown
dpm.demdex.net unknown unknown
cdn.prod.uidapi.com unknown unknown
can01.safelinks.protection.outlook.com unknown unknown
www.facebook.com unknown unknown
app.launchdarkly.com unknown unknown
www.linkedin.com unknown unknown
www.autodesk.com unknown unknown
gtm.wape.autodesk.com unknown unknown
snap.licdn.com unknown unknown
ib.adnxs.com unknown unknown
universal-search.autodesk.com unknown unknown

Contacted URLs

Name Malicious Antivirus Detection Reputation
https://www.autodesk.com/company/legal-notices-trademarks/privacy-statement?mktvar002=6396284009%7CEML%7C654649188&utm_medium=email&utm_source=ilm-email&utm_campaign=6396284cross-indtech-admin-newsletter&utm_id=6396284009&mkt_tok=OTE4LUZPRC00MzMAAAGV59Q0GFwT-ynvu0FBstV71zjEMolcgvENGh4gX4gFE4ceSLrsI5abZA36VP_GupS9k7K5Z94qQQy2_of5sl8zfe1OX8phUk2XyXUUR5_tIlhHgP8Nj2vm false
    		unknown
    https://pages.autodesk.com/index.php/email/emailWebview?mkt_tok=OTE4LUZPRC00MzMAAAGV59Q0GGPKlfsm2CJezQFDAS4-2UWc6wpQSJ0lXGUxjcW-uQ1JWkXmAVI9_bqZAx-E_EK-LsL2nzau4Vd76uZx72NALg6iCRP7kD6gpkJvFWVlf8ocQNFr&email=OTE4LUZPRC00MzMAAAGV6D07nqywB_fAaVE-IsMUjGNda1StdXfHwPFvxEceuj15tX3tXczj3NwpBoZwlH6L3kqA0j-MLt9f_k8j9Y4kgeggoSAag-yUfVE false
      		unknown
      https://pages.autodesk.com/index.php/email/emailWebview?email=OTE4LUZPRC00MzMAAAGV6D07nqywB_fAaVE-IsMUjGNda1StdXfHwPFvxEceuj15tX3tXczj3NwpBoZwlH6L3kqA0j-MLt9f_k8j9Y4kgeggoSAag-yUfVE false
        		unknown