Windows Analysis Report
https://2qud.ejtrading.net/

Overview

General Information

Sample URL: https://2qud.ejtrading.net/
Analysis ID: 1527173
Tags: openphish
Infos:

Detection

Score: 0
Range: 0 - 100
Whitelisted: false
Confidence: 80%

Signatures

Detected non-DNS traffic on DNS port

Classification

Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49747 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:55008 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.4:55098 version: TLS 1.2
Detected non-DNS traffic on DNS port
Source: global traffic TCP traffic: 192.168.2.4:55007 -> 1.1.1.1:53
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global traffic HTTP traffic detected: GET / HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /redirect.js?v=1 HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /main.b563a1b1790456b66383.css HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /compatTest.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /main.d170792e946b7ff7d822.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /redirect.js?v=1 HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic HTTP traffic detected: GET /_websync_?authed=0&version=10.9.9+A HTTP/1.1Host: t.meConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /1112.ed47151a49708b83c7b9.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /notification.mp3 HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Encoding: identity;q=1, *;q=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: audioReferer: https://2qud.ejtrading.net/Accept-Language: en-US,en;q=0.9Range: bytes=0-
Source: global traffic HTTP traffic detected: GET /compatTest.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /main.d170792e946b7ff7d822.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /_websync_?authed=0&version=10.9.9+A HTTP/1.1Host: t.meConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /_websync_?authed=0&version=10.9.9+A HTTP/1.1Host: telegram.meConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /7784.ec5164938531ffe545a2.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/1112.ed47151a49708b83c7b9.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /7283.cf7f8932e13cf852ff81.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /5193.006d97f0ae392264beae.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /1112.ed47151a49708b83c7b9.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /_websync_?authed=0&version=10.9.9+A HTTP/1.1Host: telegram.meConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /apis/guest/submit HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /6708.05075ec696cf1bca34b2.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /7784.ec5164938531ffe545a2.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /5193.006d97f0ae392264beae.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /7283.cf7f8932e13cf852ff81.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /8287.cbb61367338b7a7d4a32.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/1112.ed47151a49708b83c7b9.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /8074.274f30e4e4daca7d391c.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /6708.05075ec696cf1bca34b2.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /5284.7277a1f1667fee359077.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveCache-Control: max-age=0Accept: */*Service-Worker: scriptSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: serviceworkerReferer: https://2qud.ejtrading.net/User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /site.webmanifest HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /5905.7740c1743540df2d6991.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/8074.274f30e4e4daca7d391c.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /8074.274f30e4e4daca7d391c.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /8287.cbb61367338b7a7d4a32.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /4486.9e0ff3ce0a0c5de4a575.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/1112.ed47151a49708b83c7b9.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /9357.a36365e0d807a0987518.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/8074.274f30e4e4daca7d391c.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /4486.9e0ff3ce0a0c5de4a575.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /5905.7740c1743540df2d6991.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /5985.e8d9d0762c377bb07b03.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/1112.ed47151a49708b83c7b9.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://2qud.ejtrading.net/8074.274f30e4e4daca7d391c.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /9357.a36365e0d807a0987518.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /icon-192x192.png HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://2qud.ejtrading.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /rlottie-wasm.wasm HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://2qud.ejtrading.net/8074.274f30e4e4daca7d391c.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /rlottie-wasm.f013598f1b2ba719f25e.js HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /icon-192x192.png HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /rlottie-wasm.wasm HTTP/1.1Host: 2qud.ejtrading.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule90401v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic DNS traffic detected: DNS query: 2qud.ejtrading.net
Source: global traffic DNS traffic detected: DNS query: www.google.com
Source: global traffic DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic DNS traffic detected: DNS query: t.me
Source: global traffic DNS traffic detected: DNS query: telegram.me
Source: unknown HTTP traffic detected: POST /report/v4?s=xiqlf00SJnPrxssRE6SQi8f%2BWvLvQfd9Qudm8s09BA3mVb%2FRCTHbh%2FVkmugRnYXHpJflzsnqgjkk4b%2F8x8XVk0Ibg85AgVhTRnf7WLNrAHhpHYLFxPGTcA8Cu%2B90LDZus9ZarZ8%3D HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 484Content-Type: application/reports+jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sun, 06 Oct 2024 18:37:47 GMTTransfer-Encoding: chunkedConnection: closeAccess-Control-Allow-Credentials: trueAccess-Control-Allow-Headers: Content-Type, AuthorizationAccess-Control-Allow-Methods: POST, GET, OPTIONSAccess-Control-Allow-Origin: *Vary: Accept-EncodingVersion: v1.0.0CF-Cache-Status: DYNAMICReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1WP%2BQKT%2FrLp5iRtjIAGi%2Fy1Drf8CJ2r27Sp8AkkqrfSircW%2Bcnaso9xLbvVbPkEKEu4HXAZvFmUjIClKhNvLpHF1Q6zEkhiFiPRMdpjX64QoKqJxYd45z1RAHLJgB7X%2BdexlvaM%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 8ce7c3c34d33433e-EWR
Source: chromecache_170.2.dr, chromecache_174.2.dr String found in binary or memory: http://telegram.org/dl
Source: chromecache_171.2.dr String found in binary or memory: https://ss3.4sqi.net/img/categories_v2/
Source: chromecache_164.2.dr, chromecache_152.2.dr String found in binary or memory: https://t.me/
Source: chromecache_171.2.dr String found in binary or memory: https://t.me/_websync_
Source: chromecache_155.2.dr, chromecache_169.2.dr String found in binary or memory: https://telam.jiwhek.xyz/telegram.html
Source: chromecache_171.2.dr String found in binary or memory: https://telegram.me/_websync_;
Source: chromecache_171.2.dr String found in binary or memory: https://web.telegram.org/
Source: chromecache_155.2.dr, chromecache_169.2.dr String found in binary or memory: https://web.telegram.org/a
Source: chromecache_171.2.dr String found in binary or memory: https://web.telegram.org/a/
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown Network traffic detected: HTTP traffic on port 55040 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown Network traffic detected: HTTP traffic on port 55063 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55069
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55075
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55197
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55074
Source: unknown Network traffic detected: HTTP traffic on port 55028 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55198
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55073
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55199
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55072
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55079
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55193
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55078
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55194
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55077
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55195
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55196
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55190
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55191
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55192
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55071
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55070
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown Network traffic detected: HTTP traffic on port 55108 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55016 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55211 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55119 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55154 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55097 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55086
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55085
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55084
Source: unknown Network traffic detected: HTTP traffic on port 55051 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55189 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55200 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55087
Source: unknown Network traffic detected: HTTP traffic on port 55143 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55086 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55082
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55081
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55080
Source: unknown Network traffic detected: HTTP traffic on port 55178 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55097
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55094
Source: unknown Network traffic detected: HTTP traffic on port 55165 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55190 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55052 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55099
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55098
Source: unknown Network traffic detected: HTTP traffic on port 55085 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55093
Source: unknown Network traffic detected: HTTP traffic on port 55142 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55090
Source: unknown Network traffic detected: HTTP traffic on port 55131 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55029 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55074 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55120 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55015 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55028
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55027
Source: unknown Network traffic detected: HTTP traffic on port 55118 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55026
Source: unknown Network traffic detected: HTTP traffic on port 55191 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55025
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55146
Source: unknown Network traffic detected: HTTP traffic on port 55153 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55147
Source: unknown Network traffic detected: HTTP traffic on port 55130 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55148
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55029
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55149
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55031
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55153
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55030
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55154
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55155
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55156
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55035
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55034
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55150
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55033
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55151
Source: unknown Network traffic detected: HTTP traffic on port 55201 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55032
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55152
Source: unknown Network traffic detected: HTTP traffic on port 55213 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55041 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55087 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55179 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55039
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55038
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55037
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55036
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55157
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55158
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55159
Source: unknown Network traffic detected: HTTP traffic on port 55030 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55042
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55164
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55165
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55041
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55040
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55166
Source: unknown Network traffic detected: HTTP traffic on port 55164 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55167
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55046
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55160
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55045
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55161
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55044
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55162
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55043
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55163
Source: unknown Network traffic detected: HTTP traffic on port 55042 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55212 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55049
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55048
Source: unknown Network traffic detected: HTTP traffic on port 55098 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55047
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55168
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55169
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55053
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55175
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55052
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55176
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55051
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55177
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55050
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55178
Source: unknown Network traffic detected: HTTP traffic on port 55075 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55057
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55171
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55056
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55172
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55173
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55054
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55174
Source: unknown Network traffic detected: HTTP traffic on port 55129 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55170
Source: unknown Network traffic detected: HTTP traffic on port 55180 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown Network traffic detected: HTTP traffic on port 55064 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55059
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55058
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55179
Source: unknown Network traffic detected: HTTP traffic on port 55152 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55064
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55186
Source: unknown Network traffic detected: HTTP traffic on port 55053 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55063
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55187
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55062
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55188
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55061
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55189
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55068
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55182
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55067
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55183
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55066
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55184
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55065
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55185
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55180
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55181
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55060
Source: unknown Network traffic detected: HTTP traffic on port 55141 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown Network traffic detected: HTTP traffic on port 55107 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown Network traffic detected: HTTP traffic on port 55208 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55054 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55077 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55031 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55163 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55140 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55066 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55192 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55020 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55013 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55181 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55105 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55151 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55065 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55193 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55170 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55139 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55106 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55043 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55099 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55117 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55162 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55032 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55128 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55067 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55210 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55044 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55021 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55012 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55182 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55104 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55127 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55150 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55171 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55115 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55149 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55090 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55116 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55161 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55033 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55056 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55209 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55194 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55022 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55078 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55138 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55183 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55011 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55172 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55195 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55114 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55137 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55217 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55125 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55102 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55045 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55034 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55160 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55126 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55046 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55023 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55079 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55184 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55010 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55148 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55173 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55205 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55068 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55057 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55159 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55080 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55216 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55103 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55101 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55147 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55009 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55058 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55035 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55207 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55093 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55196 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55024 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55136 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55112 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55185 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55082 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55218 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55174 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55206 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55069 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55197 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55059 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55113 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55158 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55081 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55146 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55070 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55169 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55047 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55135 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55008 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55036 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55124 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55019 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55106
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55107
Source: unknown Network traffic detected: HTTP traffic on port 55025 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55108
Source: unknown Network traffic detected: HTTP traffic on port 55157 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55109
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55102
Source: unknown Network traffic detected: HTTP traffic on port 55134 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55103
Source: unknown Network traffic detected: HTTP traffic on port 55111 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55104
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55105
Source: unknown Network traffic detected: HTTP traffic on port 55186 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55110
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55111
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55112
Source: unknown Network traffic detected: HTTP traffic on port 55175 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55037 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55072 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55117
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55118
Source: unknown Network traffic detected: HTTP traffic on port 55203 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55119
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55113
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55114
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55115
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55116
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55120
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55121
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55122
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55123
Source: unknown Network traffic detected: HTTP traffic on port 55048 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55168 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55214 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55122 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55094 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55071 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55128
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55129
Source: unknown Network traffic detected: HTTP traffic on port 55202 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55124
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55009
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55125
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55008
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55126
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55127
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55131
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55132
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55133
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55134
Source: unknown Network traffic detected: HTTP traffic on port 55026 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55013
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55012
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55011
Source: unknown Network traffic detected: HTTP traffic on port 55049 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55010
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55130
Source: unknown Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55123 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55198 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55018 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55100 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55017
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55139
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55016
Source: unknown Network traffic detected: HTTP traffic on port 55060 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55015
Source: unknown Network traffic detected: HTTP traffic on port 55156 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55135
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55136
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55019
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55137
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55018
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55138
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55142
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55020
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55143
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55144
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55145
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55024
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55023
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55022
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55140
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55021
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55141
Source: unknown Network traffic detected: HTTP traffic on port 55187 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55145 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55199 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55038 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55176 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55204 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55073 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55144 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55167 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55050 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55121 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55062 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55133 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55200
Source: unknown Network traffic detected: HTTP traffic on port 55027 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55109 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55017 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55209
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55205
Source: unknown Network traffic detected: HTTP traffic on port 55061 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55206
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55207
Source: unknown Network traffic detected: HTTP traffic on port 55155 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55208
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55201
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55202
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55203
Source: unknown Network traffic detected: HTTP traffic on port 55132 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55204
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55210
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55211
Source: unknown Network traffic detected: HTTP traffic on port 55188 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55215 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55177 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55039 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55216
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55217
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55218
Source: unknown Network traffic detected: HTTP traffic on port 55110 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55212
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55213
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55214
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55215
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55100
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 55101
Source: unknown Network traffic detected: HTTP traffic on port 55084 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 55166 -> 443
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49747 version: TLS 1.2
Source: unknown HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:55008 version: TLS 1.2
Source: unknown HTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.4:55098 version: TLS 1.2
Source: classification engine Classification label: clean0.win@23/59@18/9
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2276 --field-trial-handle=2136,i,373504701825141358,12353475851925403573,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://2qud.ejtrading.net/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5984 --field-trial-handle=2136,i,373504701825141358,12353475851925403573,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2276 --field-trial-handle=2136,i,373504701825141358,12353475851925403573,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5984 --field-trial-handle=2136,i,373504701825141358,12353475851925403573,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: Window Recorder Window detected: More than 3 window changes detected
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 process2 2 Behavior Graph ID: 1527173 URL: https://2qud.ejtrading.net/ Startdate: 06/10/2024 Architecture: WINDOWS Score: 0 5 chrome.exe 1 2->5         started        8 chrome.exe 2->8         started        dnsIp3 15 192.168.2.13 unknown unknown 5->15 17 192.168.2.15 unknown unknown 5->17 19 3 other IPs or domains 5->19 10 chrome.exe 5->10         started        13 chrome.exe 5->13         started        process4 dnsIp5 21 t.me 149.154.167.99, 443, 55011, 55023 TELEGRAMRU United Kingdom 10->21 23 www.google.com 142.250.185.132, 443, 49744, 55097 GOOGLEUS United States 10->23 25 3 other IPs or domains 10->25
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
142.250.185.132
 www.google.com United States
15169 GOOGLEUS false
149.154.167.99
 telegram.me United Kingdom
62041 TELEGRAMRU false
239.255.255.250
 unknown Reserved
unknown unknown false
35.190.80.1
 a.nel.cloudflare.com United States
15169 GOOGLEUS false
104.21.56.249
 2qud.ejtrading.net United States
13335 CLOUDFLARENETUS false

Private

IP
192.168.2.4
192.168.2.5
192.168.2.13
192.168.2.15

Contacted Domains

Name IP Active
a.nel.cloudflare.com 35.190.80.1 true
telegram.me 149.154.167.99 true
t.me 149.154.167.99 true
www.google.com 142.250.185.132 true
2qud.ejtrading.net 104.21.56.249 true
fp2e7a.wpc.phicdn.net 192.229.221.95 true
s-part-0032.t-0009.t-msedge.net 13.107.246.60 true
windowsupdatebg.s.llnwi.net 87.248.204.0 true

Contacted URLs

Name Malicious Antivirus Detection Reputation
https://2qud.ejtrading.net/api/rcd false
    		unknown
    https://2qud.ejtrading.net/5284.7277a1f1667fee359077.js false
      		unknown
      https://2qud.ejtrading.net/compatTest.js false
        		unknown
        https://t.me/_websync_?authed=0&version=10.9.9+A false
          		unknown
          https://2qud.ejtrading.net/8074.274f30e4e4daca7d391c.js false
            		unknown
            https://2qud.ejtrading.net/ false
              		unknown
              https://2qud.ejtrading.net/4486.9e0ff3ce0a0c5de4a575.js false
                		unknown
                https://2qud.ejtrading.net/7283.cf7f8932e13cf852ff81.js false
                  		unknown
                  https://a.nel.cloudflare.com/report/v4?s=mPLBPoLI4hSTgzUz%2FME9Tc61rAa5jHV6IxkPmgx%2FCVEjGcmkqILmjTdHRX6IZmqCFEH7EA%2FGfZXQhmoKEKUp0fkp7sqkoRx9a6LAkzBVp1RzbjvZquZjhUubII%2FU6qGidvVzOZ8%3D false
                    		unknown
                    https://2qud.ejtrading.net/5193.006d97f0ae392264beae.js false
                      		unknown
                      https://2qud.ejtrading.net/9357.a36365e0d807a0987518.js false
                        		unknown
                        https://2qud.ejtrading.net/icon-192x192.png false
                          		unknown
                          https://2qud.ejtrading.net/5985.e8d9d0762c377bb07b03.js false
                            		unknown
                            https://2qud.ejtrading.net/rlottie-wasm.f013598f1b2ba719f25e.js false
                              		unknown
                              https://2qud.ejtrading.net/rlottie-wasm.wasm false
                                		unknown
                                https://2qud.ejtrading.net/1112.ed47151a49708b83c7b9.js false
                                  		unknown
                                  https://a.nel.cloudflare.com/report/v4?s=JJP31FKUwRQmdB93TfWh3pYTytbI4u0awhZ%2FKbZ5rBy96vUDtgO2SXYSi4fm%2B5wkzTE0155FACxLBg%2FcazGBK0ZdpF5uurJsmlGQJSf%2Bp8yep5xjhn83QY%2FAB%2BA7cU8cJ2nnTdk%3D false
                                    		unknown
                                    https://2qud.ejtrading.net/favicon.ico false
                                      		unknown
                                      https://2qud.ejtrading.net/site.webmanifest false
                                        		unknown
                                        https://2qud.ejtrading.net/5905.7740c1743540df2d6991.js false
                                          		unknown
                                          https://2qud.ejtrading.net/redirect.js?v=1 false
                                            		unknown
                                            https://2qud.ejtrading.net/main.d170792e946b7ff7d822.js false
                                              		unknown
                                              https://2qud.ejtrading.net/apis/guest/submit false
                                                		unknown
                                                https://2qud.ejtrading.net/notification.mp3 false
                                                  		unknown
                                                  https://telegram.me/_websync_?authed=0&version=10.9.9+A false
                                                    		unknown
                                                    https://2qud.ejtrading.net/7784.ec5164938531ffe545a2.js false
                                                      		unknown
                                                      https://2qud.ejtrading.net/6708.05075ec696cf1bca34b2.js false
                                                        		unknown
                                                        https://2qud.ejtrading.net/main.b563a1b1790456b66383.css false
                                                          		unknown
                                                          https://2qud.ejtrading.net/8287.cbb61367338b7a7d4a32.js false
                                                            		unknown