remcos | hxxps://tria[.]ge/240408-yqhtcsad26

Resubmissions

09/04/2024, 08:34 UTC

240409-kgehpaea41 6

09/04/2024, 08:33 UTC

240409-kf5cqaag23 1

08/04/2024, 20:17 UTC

240408-y24vzaea7t 10

Analysis

max time kernel
153s
max time network
158s
platform
windows10-2004_x64
resource
win10v2004-20240319-en
resource tags

arch:x64arch:x86image:win10v2004-20240319-enlocale:en-usos:windows10-2004-x64system
submitted
08/04/2024, 20:17 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://tria.ge/240408-yqhtcsad26

Score

10^/10

remcos remotehost rat

Malware Config

Extracted

Family

remcos

Botnet

RemoteHost

ogbatobanana.duckdns.org:4047

Attributes

audio_folder
MicRecords
audio_record_time
5
connect_delay
0
connect_interval
1
copy_file
remcos.exe
copy_folder
Remcos
delete_file
false
hide_file
false
hide_keylog_file
false
install_flag
false
keylog_crypt
false
keylog_file
logs.dat
keylog_flag
false
keylog_folder
remcos
mouse_option
false
mutex
Rmc-0R92B3
screenshot_crypt
false
screenshot_flag
false
screenshot_folder
Screenshots
screenshot_path
%AppData%
screenshot_time
10
take_screenshot_option
false
take_screenshot_time
5

Signatures

Remcos
Remcos is a closed-source remote control and surveillance software.
rat remcos

Suspicious use of NtCreateThreadExHideFromDebugger 1 IoCs

pid	Process
3900	Maryann TAX Organizer.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-817259280-2658881748-983986378-1000\{C684AAD2-96FC-43C5-B5AF-704AF4D8DBE7}	msedge.exe

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
4796	msedge.exe
4796	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4796 wrote to memory of 5608	4796	msedge.exe	130
PID 4796 wrote to memory of 5608	4796	msedge.exe	130
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 5416	4796	msedge.exe	131
PID 4796 wrote to memory of 4784	4796	msedge.exe	132
PID 4796 wrote to memory of 4784	4796	msedge.exe	132
PID 4796 wrote to memory of 6008	4796	msedge.exe	133
PID 4796 wrote to memory of 6008	4796	msedge.exe	133
PID 4796 wrote to memory of 6008	4796	msedge.exe	133
PID 4796 wrote to memory of 6008	4796	msedge.exe	133
PID 4796 wrote to memory of 6008	4796	msedge.exe	133
PID 4796 wrote to memory of 6008	4796	msedge.exe	133
PID 4796 wrote to memory of 6008	4796	msedge.exe	133
PID 4796 wrote to memory of 6008	4796	msedge.exe	133
PID 4796 wrote to memory of 6008	4796	msedge.exe	133

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://tria.ge/240408-yqhtcsad26
1⤵
PID:5068

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=4756 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:1288

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=5416 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:5092

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=5752 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:8
1⤵
PID:3932

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=5924 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:4368

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=4784 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:2300

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --mojo-platform-channel-handle=3980 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:8
1⤵
PID:4752

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --instant-process --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --mojo-platform-channel-handle=6108 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:3092

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --mojo-platform-channel-handle=5632 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:3296

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --instant-process --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=25 --mojo-platform-channel-handle=6244 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:2732

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --instant-process --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=27 --mojo-platform-channel-handle=5636 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:5240

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=28 --mojo-platform-channel-handle=5264 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:5304

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=29 --mojo-platform-channel-handle=6120 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:5452

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=30 --mojo-platform-channel-handle=6080 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:5684

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=6828 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:8
1⤵
PID:5920

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --lang=en-US --service-sandbox-type=collections --no-appcompat-clear --mojo-platform-channel-handle=6636 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:8
1⤵
PID:5988

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=33 --mojo-platform-channel-handle=7048 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:1
1⤵
PID:5996

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.FileUtilService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --mojo-platform-channel-handle=7232 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:8
1⤵
PID:6004

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --mojo-platform-channel-handle=7228 --field-trial-handle=2244,i,11986678581565715302,451159359636456336,262144 --variations-seed-version /prefetch:8
1⤵
PID:6100

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:5256

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window
1⤵
- Enumerates system info in registry
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:4796
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=122.0.6261.129 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=122.0.2365.92 --initial-client-data=0x238,0x23c,0x240,0x234,0x2a8,0x7ff899ca5fd8,0x7ff899ca5fe4,0x7ff899ca5ff0
  2⤵
  PID:5608
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=2272 --field-trial-handle=2276,i,3953723225297659701,8487835554735741754,262144 --variations-seed-version /prefetch:2
  2⤵
  PID:5416
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --mojo-platform-channel-handle=3280 --field-trial-handle=2276,i,3953723225297659701,8487835554735741754,262144 --variations-seed-version /prefetch:3
  2⤵
  PID:4784
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --mojo-platform-channel-handle=3544 --field-trial-handle=2276,i,3953723225297659701,8487835554735741754,262144 --variations-seed-version /prefetch:8
  2⤵
  PID:6008
- C:\Program Files (x86)\Microsoft\Edge\Application\122.0.2365.92\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\122.0.2365.92\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --mojo-platform-channel-handle=4444 --field-trial-handle=2276,i,3953723225297659701,8487835554735741754,262144 --variations-seed-version /prefetch:8
  2⤵
  PID:1288
- C:\Program Files (x86)\Microsoft\Edge\Application\122.0.2365.92\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\122.0.2365.92\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --mojo-platform-channel-handle=4444 --field-trial-handle=2276,i,3953723225297659701,8487835554735741754,262144 --variations-seed-version /prefetch:8
  2⤵
  PID:756
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --mojo-platform-channel-handle=4536 --field-trial-handle=2276,i,3953723225297659701,8487835554735741754,262144 --variations-seed-version /prefetch:8
  2⤵
  PID:5152
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --mojo-platform-channel-handle=4652 --field-trial-handle=2276,i,3953723225297659701,8487835554735741754,262144 --variations-seed-version /prefetch:8
  2⤵
  PID:5124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --mojo-platform-channel-handle=3436 --field-trial-handle=2276,i,3953723225297659701,8487835554735741754,262144 --variations-seed-version /prefetch:8
  2⤵
  PID:4900

C:\Users\Admin\Downloads\Maryann 2023 Tax Organizer\Maryann 2023 Tax Organizer\Maryann TAX Organizer.exe
"C:\Users\Admin\Downloads\Maryann 2023 Tax Organizer\Maryann 2023 Tax Organizer\Maryann TAX Organizer.exe"
1⤵
- Suspicious use of NtCreateThreadExHideFromDebugger
PID:3900
- C:\Windows\SysWOW64\cmd.exe
  cmd.exe /C reg add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "*Chrome" /t REG_SZ /d "rundll32.exe C:\Users\Admin\AppData\Roaming\VIVA_01.dll",EntryPoint /f & exit
  2⤵
  PID:5284
- - C:\Windows\SysWOW64\reg.exe
    reg add "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" /v "*Chrome" /t REG_SZ /d "rundll32.exe C:\Users\Admin\AppData\Roaming\VIVA_01.dll",EntryPoint /f
    3⤵
    PID:5508
- C:\Users\Admin\Downloads\Maryann 2023 Tax Organizer\Maryann 2023 Tax Organizer\Maryann TAX Organizer.exe
  "C:\Users\Admin\Downloads\Maryann 2023 Tax Organizer\Maryann 2023 Tax Organizer\Maryann TAX Organizer.exe"
  2⤵
  PID:416

Network

DNS

tria.ge

Remote address:

8.8.8.8:53

Request

tria.ge

IN A

Response

tria.ge

IN A

154.61.71.12
DNS

tria.ge

Remote address:

8.8.8.8:53

Request

tria.ge

IN Unknown

Response
DNS

tria.ge

Remote address:

8.8.8.8:53

Request

tria.ge

IN A

Response

tria.ge

IN A

154.61.71.12
DNS

nav-edge.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

nav-edge.smartscreen.microsoft.com

IN A

Response

nav-edge.smartscreen.microsoft.com

IN CNAME

tm-prod-wd-csp-edge.trafficmanager.net

tm-prod-wd-csp-edge.trafficmanager.net

IN CNAME

prod-agic-uw-1.ukwest.cloudapp.azure.com

prod-agic-uw-1.ukwest.cloudapp.azure.com

IN A

51.140.242.104
DNS

nav-edge.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

nav-edge.smartscreen.microsoft.com

IN Unknown

Response

nav-edge.smartscreen.microsoft.com

IN CNAME

tm-prod-wd-csp-edge.trafficmanager.net

tm-prod-wd-csp-edge.trafficmanager.net

IN CNAME

prod-agic-uw-3.ukwest.cloudapp.azure.com
DNS

business.bing.com

Remote address:

8.8.8.8:53

Request

business.bing.com

IN A

Response

business.bing.com

IN CNAME

business-bing-com.b-0005.b-msedge.net

business-bing-com.b-0005.b-msedge.net

IN CNAME

b-0005.b-msedge.net

b-0005.b-msedge.net

IN A

13.107.6.158
DNS

business.bing.com

Remote address:

8.8.8.8:53

Request

business.bing.com

IN Unknown

Response

business.bing.com

IN CNAME

business-bing-com.b-0005.b-msedge.net

business-bing-com.b-0005.b-msedge.net

IN CNAME

b-0005.b-msedge.net
DNS

bzib.nelreports.net

Remote address:

8.8.8.8:53

Request

bzib.nelreports.net

IN A

Response

bzib.nelreports.net

IN CNAME

bzib.nelreports.net.akamaized.net

bzib.nelreports.net.akamaized.net

IN CNAME

a416.dscd.akamai.net

a416.dscd.akamai.net

IN A

104.91.71.133

a416.dscd.akamai.net

IN A

104.91.71.140
DNS

bzib.nelreports.net

Remote address:

8.8.8.8:53

Request

bzib.nelreports.net

IN Unknown

Response

bzib.nelreports.net

IN CNAME

bzib.nelreports.net.akamaized.net

bzib.nelreports.net.akamaized.net

IN CNAME

a416.dscd.akamai.net
DNS

www.microsoft.com

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

72.246.173.187
DNS

www.microsoft.com

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

72.246.173.187
DNS

www.microsoft.com

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN Unknown

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net
DNS

12.71.61.154.in-addr.arpa

Remote address:

8.8.8.8:53

Request

12.71.61.154.in-addr.arpa

IN PTR

Response
DNS

150.1.37.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

150.1.37.23.in-addr.arpa

IN PTR

Response

150.1.37.23.in-addr.arpa

IN PTR

a23-37-1-150deploystaticakamaitechnologiescom
DNS

104.242.140.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

104.242.140.51.in-addr.arpa

IN PTR

Response
DNS

17.160.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

17.160.190.20.in-addr.arpa

IN PTR

Response
DNS

www.microsoft.com

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A
DNS

telem-edge.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

telem-edge.smartscreen.microsoft.com

IN A

Response

telem-edge.smartscreen.microsoft.com

IN CNAME

tm-prod-wd-csp-edge.trafficmanager.net

tm-prod-wd-csp-edge.trafficmanager.net

IN CNAME

prod-agic-uw-2.ukwest.cloudapp.azure.com

prod-agic-uw-2.ukwest.cloudapp.azure.com

IN A

51.140.244.186
DNS

telem-edge.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

telem-edge.smartscreen.microsoft.com

IN Unknown

Response

telem-edge.smartscreen.microsoft.com

IN CNAME

tm-prod-wd-csp-edge.trafficmanager.net

tm-prod-wd-csp-edge.trafficmanager.net

IN CNAME

prod-agic-us-1.uksouth.cloudapp.azure.com
DNS

149.220.183.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

149.220.183.52.in-addr.arpa

IN PTR

Response
DNS

133.71.91.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.71.91.104.in-addr.arpa

IN PTR

Response

133.71.91.104.in-addr.arpa

IN PTR

a104-91-71-133deploystaticakamaitechnologiescom
DNS

133.71.91.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.71.91.104.in-addr.arpa

IN PTR
DNS

187.173.246.72.in-addr.arpa

Remote address:

8.8.8.8:53

Request

187.173.246.72.in-addr.arpa

IN PTR

Response

187.173.246.72.in-addr.arpa

IN PTR

a72-246-173-187deploystaticakamaitechnologiescom
DNS

187.173.246.72.in-addr.arpa

Remote address:

8.8.8.8:53

Request

187.173.246.72.in-addr.arpa

IN PTR
DNS

9.228.82.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

9.228.82.20.in-addr.arpa

IN PTR

Response
DNS

240.197.17.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

240.197.17.2.in-addr.arpa

IN PTR

Response

240.197.17.2.in-addr.arpa

IN PTR

a2-17-197-240deploystaticakamaitechnologiescom
DNS

186.244.140.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

186.244.140.51.in-addr.arpa

IN PTR

Response
DNS

72.61.62.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

72.61.62.23.in-addr.arpa

IN PTR

Response

72.61.62.23.in-addr.arpa

IN PTR

a23-62-61-72deploystaticakamaitechnologiescom
DNS

www.microsoft.com

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

72.246.173.187
DNS

edgestatic.azureedge.net

Remote address:

8.8.8.8:53

Request

edgestatic.azureedge.net

IN A

Response

edgestatic.azureedge.net

IN CNAME

edgestatic.afd.azureedge.net

edgestatic.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.part-0036.t-0009.t-msedge.net

shed.dual-low.part-0036.t-0009.t-msedge.net

IN CNAME

part-0036.t-0009.t-msedge.net

part-0036.t-0009.t-msedge.net

IN A

13.107.246.64

part-0036.t-0009.t-msedge.net

IN A

13.107.213.64
DNS

edgestatic.azureedge.net

Remote address:

8.8.8.8:53

Request

edgestatic.azureedge.net

IN Unknown

Response

edgestatic.azureedge.net

IN CNAME

edgestatic.afd.azureedge.net

edgestatic.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.part-0036.t-0009.t-msedge.net

shed.dual-low.part-0036.t-0009.t-msedge.net

IN CNAME

part-0036.t-0009.t-msedge.net
DNS

c.s-microsoft.com

Remote address:

8.8.8.8:53

Request

c.s-microsoft.com

IN A

Response

c.s-microsoft.com

IN CNAME

c-s.cms.ms.akadns.net

c-s.cms.ms.akadns.net

IN CNAME

c.s-microsoft.com-c.edgekey.net

c.s-microsoft.com-c.edgekey.net

IN CNAME

e13678.dscg.akamaiedge.net

e13678.dscg.akamaiedge.net

IN A

23.37.1.217
DNS

c.s-microsoft.com

Remote address:

8.8.8.8:53

Request

c.s-microsoft.com

IN Unknown

Response

c.s-microsoft.com

IN CNAME

c-s.cms.ms.akadns.net

c-s.cms.ms.akadns.net

IN CNAME

c.s-microsoft.com-c.edgekey.net

c.s-microsoft.com-c.edgekey.net

IN CNAME

e13678.dscg.akamaiedge.net
DNS

11.2.37.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.2.37.23.in-addr.arpa

IN PTR

Response

11.2.37.23.in-addr.arpa

IN PTR

a23-37-2-11deploystaticakamaitechnologiescom
DNS

wcpstatic.microsoft.com

Remote address:

8.8.8.8:53

Request

wcpstatic.microsoft.com

IN A

Response

wcpstatic.microsoft.com

IN CNAME

consentdeliveryfd.azurefd.net

consentdeliveryfd.azurefd.net

IN CNAME

firstparty-azurefd-prod.trafficmanager.net

firstparty-azurefd-prod.trafficmanager.net

IN CNAME

shed.dual-low.part-0036.t-0009.t-msedge.net

shed.dual-low.part-0036.t-0009.t-msedge.net

IN CNAME

part-0036.t-0009.t-msedge.net

part-0036.t-0009.t-msedge.net

IN A

13.107.246.64

part-0036.t-0009.t-msedge.net

IN A

13.107.213.64
DNS

wcpstatic.microsoft.com

Remote address:

8.8.8.8:53

Request

wcpstatic.microsoft.com

IN Unknown

Response

wcpstatic.microsoft.com

IN CNAME

consentdeliveryfd.azurefd.net

consentdeliveryfd.azurefd.net

IN CNAME

firstparty-azurefd-prod.trafficmanager.net

firstparty-azurefd-prod.trafficmanager.net

IN CNAME

shed.dual-low.part-0036.t-0009.t-msedge.net

shed.dual-low.part-0036.t-0009.t-msedge.net

IN CNAME

part-0036.t-0009.t-msedge.net
DNS

57.169.31.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

57.169.31.20.in-addr.arpa

IN PTR

Response
DNS

chromewebstore.googleapis.com

Remote address:

8.8.8.8:53

Request

chromewebstore.googleapis.com

IN A

Response

chromewebstore.googleapis.com

IN A

216.58.204.74

chromewebstore.googleapis.com

IN A

172.217.169.10

chromewebstore.googleapis.com

IN A

216.58.212.234

chromewebstore.googleapis.com

IN A

142.250.179.234

chromewebstore.googleapis.com

IN A

142.250.180.10

chromewebstore.googleapis.com

IN A

142.250.187.202

chromewebstore.googleapis.com

IN A

142.250.187.234

chromewebstore.googleapis.com

IN A

142.250.178.10

chromewebstore.googleapis.com

IN A

172.217.16.234

chromewebstore.googleapis.com

IN A

142.250.200.10

chromewebstore.googleapis.com

IN A

142.250.200.42

chromewebstore.googleapis.com

IN A

216.58.201.106
DNS

chromewebstore.googleapis.com

Remote address:

8.8.8.8:53

Request

chromewebstore.googleapis.com

IN Unknown

Response
DNS

74.204.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

74.204.58.216.in-addr.arpa

IN PTR

Response

74.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f101e100net

74.204.58.216.in-addr.arpa

IN PTR

lhr48s49-in-f10�H

74.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f74�H
DNS

50.23.12.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

50.23.12.20.in-addr.arpa

IN PTR

Response
DNS

206.23.85.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

206.23.85.13.in-addr.arpa

IN PTR

Response
DNS

99.58.20.217.in-addr.arpa

Remote address:

8.8.8.8:53

Request

99.58.20.217.in-addr.arpa

IN PTR

Response
DNS

acrobat.adobe.com

Remote address:

8.8.8.8:53

Request

acrobat.adobe.com

IN A

Response

acrobat.adobe.com

IN CNAME

acrobat.adobe.com.i.edgekey.net

acrobat.adobe.com.i.edgekey.net

IN CNAME

e29329.dsca.akamaiedge.net

e29329.dsca.akamaiedge.net

IN A

23.62.61.97

e29329.dsca.akamaiedge.net

IN A

23.62.61.185
DNS

acrobat.adobe.com

Remote address:

8.8.8.8:53

Request

acrobat.adobe.com

IN Unknown

Response

acrobat.adobe.com

IN CNAME

acrobat.adobe.com.i.edgekey.net

acrobat.adobe.com.i.edgekey.net

IN CNAME

e29329.dsca.akamaiedge.net
DNS

acrobat.adobe.com

Remote address:

8.8.8.8:53

Request

acrobat.adobe.com

IN A

Response

acrobat.adobe.com

IN CNAME

acrobat.adobe.com.i.edgekey.net

acrobat.adobe.com.i.edgekey.net

IN CNAME

e29329.dsca.akamaiedge.net

e29329.dsca.akamaiedge.net

IN A

23.62.61.97

e29329.dsca.akamaiedge.net

IN A

23.62.61.185
DNS

adobeid-na1.services.adobe.com

Remote address:

8.8.8.8:53

Request

adobeid-na1.services.adobe.com

IN A

Response

adobeid-na1.services.adobe.com

IN CNAME

services-weighted.prod.ims.adobejanus.com

services-weighted.prod.ims.adobejanus.com

IN CNAME

adobeid-na1.services.adobe.com.cdn.cloudflare.net

adobeid-na1.services.adobe.com.cdn.cloudflare.net

IN A

104.18.32.195

adobeid-na1.services.adobe.com.cdn.cloudflare.net

IN A

172.64.155.61
DNS

adobeid-na1.services.adobe.com

Remote address:

8.8.8.8:53

Request

adobeid-na1.services.adobe.com

IN Unknown

Response

adobeid-na1.services.adobe.com

IN CNAME

services-weighted.prod.ims.adobejanus.com

services-weighted.prod.ims.adobejanus.com

IN CNAME

adobeid-na1.services.adobe.com.cdn.cloudflare.net

adobeid-na1.services.adobe.com.cdn.cloudflare.net

IN Unknown

h2h ì@�=
DNS

adobe.tt.omtrdc.net

Remote address:

8.8.8.8:53

Request

adobe.tt.omtrdc.net

IN A

Response

adobe.tt.omtrdc.net

IN CNAME

adobetarget.data.adobedc.net

adobetarget.data.adobedc.net

IN A

66.235.152.156

adobetarget.data.adobedc.net

IN A

66.235.152.225

adobetarget.data.adobedc.net

IN A

66.235.152.221
DNS

adobe.tt.omtrdc.net

Remote address:

8.8.8.8:53

Request

adobe.tt.omtrdc.net

IN Unknown

Response

adobe.tt.omtrdc.net

IN CNAME

adobetarget.data.adobedc.net
DNS

wwwimages2.adobe.com

Remote address:

8.8.8.8:53

Request

wwwimages2.adobe.com

IN A

Response

wwwimages2.adobe.com

IN CNAME

stls-wwwimages2.adobe.com-cn.edgesuite.net

stls-wwwimages2.adobe.com-cn.edgesuite.net

IN CNAME

stls-wwwimages2.adobe.com-cn.edgesuite.net.globalredir.akadns.net

stls-wwwimages2.adobe.com-cn.edgesuite.net.globalredir.akadns.net

IN CNAME

a361.dscg.akamai.net

a361.dscg.akamai.net

IN A

23.63.101.163

a361.dscg.akamai.net

IN A

23.63.101.171
DNS

wwwimages2.adobe.com

Remote address:

8.8.8.8:53

Request

wwwimages2.adobe.com

IN Unknown

Response

wwwimages2.adobe.com

IN CNAME

stls-wwwimages2.adobe.com-cn.edgesuite.net

stls-wwwimages2.adobe.com-cn.edgesuite.net

IN CNAME

stls-wwwimages2.adobe.com-cn.edgesuite.net.globalredir.akadns.net

stls-wwwimages2.adobe.com-cn.edgesuite.net.globalredir.akadns.net

IN CNAME

a361.dscg.akamai.net
DNS

www.adobe.com

Remote address:

8.8.8.8:53

Request

www.adobe.com

IN A

Response

www.adobe.com

IN CNAME

stls.adobe.com-cn.edgesuite.net

stls.adobe.com-cn.edgesuite.net

IN CNAME

stls.adobe.com-cn.edgesuite.net.globalredir.akadns.net

stls.adobe.com-cn.edgesuite.net.globalredir.akadns.net

IN CNAME

a1815.dscr.akamai.net

a1815.dscr.akamai.net

IN A

23.14.90.89

a1815.dscr.akamai.net

IN A

23.14.90.107
DNS

www.adobe.com

Remote address:

8.8.8.8:53

Request

www.adobe.com

IN Unknown

Response

www.adobe.com

IN CNAME

stls.adobe.com-cn.edgesuite.net

stls.adobe.com-cn.edgesuite.net

IN CNAME

stls.adobe.com-cn.edgesuite.net.globalredir.akadns.net

stls.adobe.com-cn.edgesuite.net.globalredir.akadns.net

IN CNAME

a1815.dscr.akamai.net
DNS

widget.uservoice.com

Remote address:

8.8.8.8:53

Request

widget.uservoice.com

IN A

Response

widget.uservoice.com

IN A

104.17.30.92

widget.uservoice.com

IN A

104.17.29.92

widget.uservoice.com

IN A

104.17.28.92

widget.uservoice.com

IN A

104.17.27.92

widget.uservoice.com

IN A

104.17.31.92
DNS

widget.uservoice.com

Remote address:

8.8.8.8:53

Request

widget.uservoice.com

IN Unknown

Response

widget.uservoice.com

IN Unknown

h2h\h\h\h\h\P&Gh\&Gh\&Gh\&Gh\&Gh\
DNS

97.61.62.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

97.61.62.23.in-addr.arpa

IN PTR

Response

97.61.62.23.in-addr.arpa

IN PTR

a23-62-61-97deploystaticakamaitechnologiescom
DNS

use.typekit.net

Remote address:

8.8.8.8:53

Request

use.typekit.net

IN A

Response

use.typekit.net

IN CNAME

use-stls.adobe.com.edgesuite.net

use-stls.adobe.com.edgesuite.net

IN CNAME

a1988.dscg1.akamai.net

a1988.dscg1.akamai.net

IN A

104.91.71.78

a1988.dscg1.akamai.net

IN A

104.91.71.98
DNS

use.typekit.net

Remote address:

8.8.8.8:53

Request

use.typekit.net

IN Unknown

Response

use.typekit.net

IN CNAME

use-stls.adobe.com.edgesuite.net

use-stls.adobe.com.edgesuite.net

IN CNAME

a1988.dscg1.akamai.net
DNS

send-asr.acrobat.com

Remote address:

8.8.8.8:53

Request

send-asr.acrobat.com

IN A

Response

send-asr.acrobat.com

IN CNAME

send-legacy-fc-asr.adobe.io

send-legacy-fc-asr.adobe.io

IN A

52.213.110.235

send-legacy-fc-asr.adobe.io

IN A

79.125.71.5
DNS

send-asr.acrobat.com

Remote address:

8.8.8.8:53

Request

send-asr.acrobat.com

IN Unknown

Response

send-asr.acrobat.com

IN CNAME

send-legacy-fc-asr.adobe.io
DNS

static.adobelogin.com

Remote address:

8.8.8.8:53

Request

static.adobelogin.com

IN A

Response

static.adobelogin.com

IN CNAME

adobelogin-static.prod.ims.adobejanus.com

adobelogin-static.prod.ims.adobejanus.com

IN CNAME

dd20fzx9mj46f.cloudfront.net

dd20fzx9mj46f.cloudfront.net

IN A

3.162.20.118

dd20fzx9mj46f.cloudfront.net

IN A

3.162.20.101

dd20fzx9mj46f.cloudfront.net

IN A

3.162.20.12

dd20fzx9mj46f.cloudfront.net

IN A

3.162.20.57
DNS

static.adobelogin.com

Remote address:

8.8.8.8:53

Request

static.adobelogin.com

IN Unknown

Response

static.adobelogin.com

IN CNAME

adobelogin-static.prod.ims.adobejanus.com

adobelogin-static.prod.ims.adobejanus.com

IN CNAME

dd20fzx9mj46f.cloudfront.net
DNS

auth.services.adobe.com

Remote address:

8.8.8.8:53

Request

auth.services.adobe.com

IN A

Response

auth.services.adobe.com

IN CNAME

auth.prod.ims.adobejanus.com

auth.prod.ims.adobejanus.com

IN CNAME

auth-weighted.prod.ims.adobejanus.com

auth-weighted.prod.ims.adobejanus.com

IN CNAME

auth.services.adobe.com.cdn.cloudflare.net

auth.services.adobe.com.cdn.cloudflare.net

IN A

172.64.155.179

auth.services.adobe.com.cdn.cloudflare.net

IN A

104.18.32.77
DNS

auth.services.adobe.com

Remote address:

8.8.8.8:53

Request

auth.services.adobe.com

IN Unknown

Response

auth.services.adobe.com

IN CNAME

auth.prod.ims.adobejanus.com

auth.prod.ims.adobejanus.com

IN CNAME

auth-weighted.prod.ims.adobejanus.com

auth-weighted.prod.ims.adobejanus.com

IN CNAME

auth.services.adobe.com.cdn.cloudflare.net

auth.services.adobe.com.cdn.cloudflare.net

IN Unknown

h2h M�@��
DNS

sstats.adobe.com

Remote address:

8.8.8.8:53

Request

sstats.adobe.com

IN A

Response

sstats.adobe.com

IN CNAME

adobe.com.ssl.d1.sc.omtrdc.net

adobe.com.ssl.d1.sc.omtrdc.net

IN A

66.235.152.225

adobe.com.ssl.d1.sc.omtrdc.net

IN A

66.235.152.221

adobe.com.ssl.d1.sc.omtrdc.net

IN A

66.235.152.156
DNS

sstats.adobe.com

Remote address:

8.8.8.8:53

Request

sstats.adobe.com

IN Unknown

Response

sstats.adobe.com

IN CNAME

adobe.com.ssl.d1.sc.omtrdc.net
DNS

prod.adobeccstatic.com

Remote address:

8.8.8.8:53

Request

prod.adobeccstatic.com

IN A

Response

prod.adobeccstatic.com

IN A

3.162.20.106

prod.adobeccstatic.com

IN A

3.162.20.103

prod.adobeccstatic.com

IN A

3.162.20.24

prod.adobeccstatic.com

IN A

3.162.20.79
DNS

prod.adobeccstatic.com

Remote address:

8.8.8.8:53

Request

prod.adobeccstatic.com

IN Unknown

Response
DNS

pdfnow.adobe.io

Remote address:

8.8.8.8:53

Request

pdfnow.adobe.io

IN A

Response

pdfnow.adobe.io

IN A

44.198.154.229

pdfnow.adobe.io

IN A

34.199.101.34
DNS

pdfnow.adobe.io

Remote address:

8.8.8.8:53

Request

pdfnow.adobe.io

IN Unknown

Response
DNS

p.typekit.net

Remote address:

8.8.8.8:53

Request

p.typekit.net

IN A

Response

p.typekit.net

IN CNAME

p.typekit.net-stls-v3.edgesuite.net

p.typekit.net-stls-v3.edgesuite.net

IN CNAME

a1874.dscg1.akamai.net

a1874.dscg1.akamai.net

IN A

104.91.71.80

a1874.dscg1.akamai.net

IN A

104.91.71.91

a1874.dscg1.akamai.net

IN A

104.91.71.95
DNS

p.typekit.net

Remote address:

8.8.8.8:53

Request

p.typekit.net

IN Unknown

Response

p.typekit.net

IN CNAME

p.typekit.net-stls-v3.edgesuite.net

p.typekit.net-stls-v3.edgesuite.net

IN CNAME

a1874.dscg1.akamai.net
DNS

p13n.adobe.io

Remote address:

8.8.8.8:53

Request

p13n.adobe.io

IN A

Response

p13n.adobe.io

IN A

34.237.241.83

p13n.adobe.io

IN A

54.224.241.105

p13n.adobe.io

IN A

50.16.47.176

p13n.adobe.io

IN A

18.213.11.84
DNS

p13n.adobe.io

Remote address:

8.8.8.8:53

Request

p13n.adobe.io

IN Unknown

Response
DNS

notify.adobe.io

Remote address:

8.8.8.8:53

Request

notify.adobe.io

IN A

Response

notify.adobe.io

IN A

3.233.129.217

notify.adobe.io

IN A

52.22.41.97

notify.adobe.io

IN A

3.219.243.226

notify.adobe.io

IN A

52.6.155.20
DNS

notify.adobe.io

Remote address:

8.8.8.8:53

Request

notify.adobe.io

IN Unknown

Response
DNS

l.betrad.com

Remote address:

8.8.8.8:53

Request

l.betrad.com

IN A

Response

l.betrad.com

IN CNAME

privacycollector-production-457481513.us-east-1.elb.amazonaws.com

privacycollector-production-457481513.us-east-1.elb.amazonaws.com

IN A

3.231.35.194

privacycollector-production-457481513.us-east-1.elb.amazonaws.com

IN A

54.198.157.193

privacycollector-production-457481513.us-east-1.elb.amazonaws.com

IN A

52.2.227.200

privacycollector-production-457481513.us-east-1.elb.amazonaws.com

IN A

107.22.91.90

privacycollector-production-457481513.us-east-1.elb.amazonaws.com

IN A

3.228.195.183

privacycollector-production-457481513.us-east-1.elb.amazonaws.com

IN A

34.231.239.183
DNS

l.betrad.com

Remote address:

8.8.8.8:53

Request

l.betrad.com

IN Unknown

Response

l.betrad.com

IN CNAME

privacycollector-production-457481513.us-east-1.elb.amazonaws.com
DNS

ims-na1.adobelogin.com

Remote address:

8.8.8.8:53

Request

ims-na1.adobelogin.com

IN A

Response

ims-na1.adobelogin.com

IN CNAME

adobelogin.prod.ims.adobejanus.com

adobelogin.prod.ims.adobejanus.com

IN CNAME

edgeproxy-irl1.cloud.adobe.io

edgeproxy-irl1.cloud.adobe.io

IN CNAME

ethos.ethos502-prod-irl1.ethos.adobe.net

ethos.ethos502-prod-irl1.ethos.adobe.net

IN CNAME

pv24v41zibm.prod.cloud.adobe.io

pv24v41zibm.prod.cloud.adobe.io

IN A

34.250.85.196
DNS

ims-na1.adobelogin.com

Remote address:

8.8.8.8:53

Request

ims-na1.adobelogin.com

IN Unknown

Response

ims-na1.adobelogin.com

IN CNAME

adobelogin.prod.ims.adobejanus.com

adobelogin.prod.ims.adobejanus.com

IN CNAME

edgeproxy-irl1.cloud.adobe.io

edgeproxy-irl1.cloud.adobe.io

IN CNAME

ethos.ethos502-prod-irl1.ethos.adobe.net

ethos.ethos502-prod-irl1.ethos.adobe.net

IN CNAME

pv24v41zibm.prod.cloud.adobe.io
DNS

files-download2.acrocomcontent.com

Remote address:

8.8.8.8:53

Request

files-download2.acrocomcontent.com

IN A

Response

files-download2.acrocomcontent.com

IN CNAME

download2-migrate.r53.acrobat.com

download2-migrate.r53.acrobat.com

IN CNAME

assets-download-legacy.adobe.io

assets-download-legacy.adobe.io

IN A

34.199.101.34

assets-download-legacy.adobe.io

IN A

44.198.154.229
DNS

files-download2.acrocomcontent.com

Remote address:

8.8.8.8:53

Request

files-download2.acrocomcontent.com

IN Unknown

Response

files-download2.acrocomcontent.com

IN CNAME

download2-migrate.r53.acrobat.com

download2-migrate.r53.acrobat.com

IN CNAME

assets-download-legacy.adobe.io
DNS

dc-api-v2.adobecontent.io

Remote address:

8.8.8.8:53

Request

dc-api-v2.adobecontent.io

IN A

Response

dc-api-v2.adobecontent.io

IN CNAME

dc-api-v2-prod-bh-facade.adobe.io

dc-api-v2-prod-bh-facade.adobe.io

IN A

52.16.247.220

dc-api-v2-prod-bh-facade.adobe.io

IN A

52.51.28.236
DNS

dc-api-v2.adobecontent.io

Remote address:

8.8.8.8:53

Request

dc-api-v2.adobecontent.io

IN Unknown

Response

dc-api-v2.adobecontent.io

IN CNAME

dc-api-v2-prod-bh-facade.adobe.io
DNS

dc-api.adobecontent.io

Remote address:

8.8.8.8:53

Request

dc-api.adobecontent.io

IN A

Response

dc-api.adobecontent.io

IN CNAME

dc-api-prod-bh-facade.adobe.io

dc-api-prod-bh-facade.adobe.io

IN A

34.199.101.34

dc-api-prod-bh-facade.adobe.io

IN A

44.198.154.229
DNS

dc-api.adobecontent.io

Remote address:

8.8.8.8:53

Request

dc-api.adobecontent.io

IN Unknown

Response

dc-api.adobecontent.io

IN CNAME

dc-api-prod-bh-facade.adobe.io
DNS

dc-api.adobe.io

Remote address:

8.8.8.8:53

Request

dc-api.adobe.io

IN A

Response

dc-api.adobe.io

IN A

3.230.130.186

dc-api.adobe.io

IN A

34.197.224.31
DNS

dc-api.adobe.io

Remote address:

8.8.8.8:53

Request

dc-api.adobe.io

IN Unknown

Response
DNS

ccx-courier.adobe.io

Remote address:

8.8.8.8:53

Request

ccx-courier.adobe.io

IN A

Response

ccx-courier.adobe.io

IN A

52.48.8.54

ccx-courier.adobe.io

IN A

52.31.218.129

ccx-courier.adobe.io

IN A

34.252.184.159
DNS

ccx-courier.adobe.io

Remote address:

8.8.8.8:53

Request

ccx-courier.adobe.io

IN Unknown

Response
DNS

cc-api-data.adobe.io

Remote address:

8.8.8.8:53

Request

cc-api-data.adobe.io

IN A

Response

cc-api-data.adobe.io

IN A

52.48.126.58

cc-api-data.adobe.io

IN A

54.228.247.11

cc-api-data.adobe.io

IN A

34.246.54.182
DNS

cc-api-data.adobe.io

Remote address:

8.8.8.8:53

Request

cc-api-data.adobe.io

IN Unknown

Response
DNS

c.evidon.com

Remote address:

8.8.8.8:53

Request

c.evidon.com

IN A

Response

c.evidon.com

IN CNAME

newwildcard.evidon.com.edgekey.net

newwildcard.evidon.com.edgekey.net

IN CNAME

e119011.b.akamaiedge.net

e119011.b.akamaiedge.net

IN A

23.62.61.176

e119011.b.akamaiedge.net

IN A

23.62.61.72
DNS

c.evidon.com

Remote address:

8.8.8.8:53

Request

c.evidon.com

IN Unknown

Response

c.evidon.com

IN CNAME

newwildcard.evidon.com.edgekey.net

newwildcard.evidon.com.edgekey.net

IN CNAME

e119011.b.akamaiedge.net
DNS

by2.uservoice.com

Remote address:

8.8.8.8:53

Request

by2.uservoice.com

IN A

Response

by2.uservoice.com

IN A

104.17.28.92

by2.uservoice.com

IN A

104.17.31.92

by2.uservoice.com

IN A

104.17.30.92

by2.uservoice.com

IN A

104.17.29.92

by2.uservoice.com

IN A

104.17.27.92
DNS

by2.uservoice.com

Remote address:

8.8.8.8:53

Request

by2.uservoice.com

IN Unknown

Response

by2.uservoice.com

IN Unknown

h2h\h\h\h\h\P&Gh\&Gh\&Gh\&Gh\&Gh\
DNS

assets.adobedtm.com

Remote address:

8.8.8.8:53

Request

assets.adobedtm.com

IN A

Response

assets.adobedtm.com

IN CNAME

cn-assets.adobedtm.com.edgekey.net

cn-assets.adobedtm.com.edgekey.net

IN CNAME

e7808.dscg.akamaiedge.net

e7808.dscg.akamaiedge.net

IN A

23.37.1.19
DNS

assets.adobedtm.com

Remote address:

8.8.8.8:53

Request

assets.adobedtm.com

IN Unknown

Response

assets.adobedtm.com

IN CNAME

cn-assets.adobedtm.com.edgekey.net

cn-assets.adobedtm.com.edgekey.net

IN CNAME

e7808.dscg.akamaiedge.net
DNS

api.echosign.com

Remote address:

8.8.8.8:53

Request

api.echosign.com

IN A

Response

api.echosign.com

IN A

52.71.63.230

api.echosign.com

IN A

52.71.63.232

api.echosign.com

IN A

52.71.63.231
DNS

api.echosign.com

Remote address:

8.8.8.8:53

Request

api.echosign.com

IN Unknown

Response
DNS

ans.oobesaas.adobe.com

Remote address:

8.8.8.8:53

Request

ans.oobesaas.adobe.com

IN A

Response

ans.oobesaas.adobe.com

IN CNAME

prod.ans.prod.oobesaas.adobe.com

prod.ans.prod.oobesaas.adobe.com

IN CNAME

blue-prod.ans.prod.oobesaas.adobe.com

blue-prod.ans.prod.oobesaas.adobe.com

IN A

54.204.130.223

blue-prod.ans.prod.oobesaas.adobe.com

IN A

52.2.75.231

blue-prod.ans.prod.oobesaas.adobe.com

IN A

52.86.93.254

blue-prod.ans.prod.oobesaas.adobe.com

IN A

52.86.30.154

blue-prod.ans.prod.oobesaas.adobe.com

IN A

52.72.202.41

blue-prod.ans.prod.oobesaas.adobe.com

IN A

54.160.109.82

blue-prod.ans.prod.oobesaas.adobe.com

IN A

52.4.218.159

blue-prod.ans.prod.oobesaas.adobe.com

IN A

44.208.229.214
DNS

ans.oobesaas.adobe.com

Remote address:

8.8.8.8:53

Request

ans.oobesaas.adobe.com

IN Unknown

Response

ans.oobesaas.adobe.com

IN CNAME

prod.ans.prod.oobesaas.adobe.com

prod.ans.prod.oobesaas.adobe.com

IN CNAME

blue-prod.ans.prod.oobesaas.adobe.com
DNS

cdn-sharing.adobecc.com

Remote address:

8.8.8.8:53

Request

cdn-sharing.adobecc.com

IN A

Response

cdn-sharing.adobecc.com

IN CNAME

cdn-sharing.adobecc.map.fastly.net

cdn-sharing.adobecc.map.fastly.net

IN A

151.101.1.138

cdn-sharing.adobecc.map.fastly.net

IN A

151.101.65.138

cdn-sharing.adobecc.map.fastly.net

IN A

151.101.129.138

cdn-sharing.adobecc.map.fastly.net

IN A

151.101.193.138
DNS

cdn-sharing.adobecc.com

Remote address:

8.8.8.8:53

Request

cdn-sharing.adobecc.com

IN Unknown

Response

cdn-sharing.adobecc.com

IN CNAME

cdn-sharing.adobecc.map.fastly.net
DNS

files.acrobat.com

Remote address:

8.8.8.8:53

Request

files.acrobat.com

IN A

Response

files.acrobat.com

IN CNAME

files-migrate.r53.acrobat.com

files-migrate.r53.acrobat.com

IN CNAME

files-legacy-fc.adobe.io

files-legacy-fc.adobe.io

IN A

34.197.224.31

files-legacy-fc.adobe.io

IN A

3.230.130.186
DNS

files.acrobat.com

Remote address:

8.8.8.8:53

Request

files.acrobat.com

IN Unknown

Response

files.acrobat.com

IN CNAME

files-migrate.r53.acrobat.com

files-migrate.r53.acrobat.com

IN CNAME

files-legacy-fc.adobe.io
DNS

adobesearch.adobe.io

Remote address:

8.8.8.8:53

Request

adobesearch.adobe.io

IN A

Response

adobesearch.adobe.io

IN A

52.31.218.129

adobesearch.adobe.io

IN A

34.252.184.159

adobesearch.adobe.io

IN A

52.48.8.54
DNS

adobesearch.adobe.io

Remote address:

8.8.8.8:53

Request

adobesearch.adobe.io

IN Unknown

Response
DNS

195.32.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

195.32.18.104.in-addr.arpa

IN PTR

Response
DNS

156.152.235.66.in-addr.arpa

Remote address:

8.8.8.8:53

Request

156.152.235.66.in-addr.arpa

IN PTR

Response

156.152.235.66.in-addr.arpa

IN PTR

ip-66-235-152-156dataadobedcnet
DNS

179.155.64.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

179.155.64.172.in-addr.arpa

IN PTR

Response
DNS

235.110.213.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

235.110.213.52.in-addr.arpa

IN PTR

Response

235.110.213.52.in-addr.arpa

IN PTR

ec2-52-213-110-235 eu-west-1compute amazonawscom
DNS

163.101.63.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

163.101.63.23.in-addr.arpa

IN PTR

Response

163.101.63.23.in-addr.arpa

IN PTR

a23-63-101-163deploystaticakamaitechnologiescom
DNS

118.20.162.3.in-addr.arpa

Remote address:

8.8.8.8:53

Request

118.20.162.3.in-addr.arpa

IN PTR

Response

118.20.162.3.in-addr.arpa

IN PTR

server-3-162-20-118man51r cloudfrontnet
DNS

106.20.162.3.in-addr.arpa

Remote address:

8.8.8.8:53

Request

106.20.162.3.in-addr.arpa

IN PTR

Response

106.20.162.3.in-addr.arpa

IN PTR

server-3-162-20-106man51r cloudfrontnet
DNS

225.152.235.66.in-addr.arpa

Remote address:

8.8.8.8:53

Request

225.152.235.66.in-addr.arpa

IN PTR

Response

225.152.235.66.in-addr.arpa

IN PTR

ip-66-235-152-225dataadobedcnet
DNS

196.85.250.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

196.85.250.34.in-addr.arpa

IN PTR

Response

196.85.250.34.in-addr.arpa

IN PTR

ec2-34-250-85-196 eu-west-1compute amazonawscom
DNS

220.247.16.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

220.247.16.52.in-addr.arpa

IN PTR

Response

220.247.16.52.in-addr.arpa

IN PTR

ec2-52-16-247-220 eu-west-1compute amazonawscom
DNS

138.1.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

138.1.101.151.in-addr.arpa

IN PTR

Response
DNS

78.71.91.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

78.71.91.104.in-addr.arpa

IN PTR

Response

78.71.91.104.in-addr.arpa

IN PTR

a104-91-71-78deploystaticakamaitechnologiescom
DNS

80.71.91.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

80.71.91.104.in-addr.arpa

IN PTR

Response

80.71.91.104.in-addr.arpa

IN PTR

a104-91-71-80deploystaticakamaitechnologiescom
DNS

58.126.48.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

58.126.48.52.in-addr.arpa

IN PTR

Response

58.126.48.52.in-addr.arpa

IN PTR

ec2-52-48-126-58 eu-west-1compute amazonawscom
DNS

19.1.37.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

19.1.37.23.in-addr.arpa

IN PTR

Response

19.1.37.23.in-addr.arpa

IN PTR

a23-37-1-19deploystaticakamaitechnologiescom
DNS

129.218.31.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

129.218.31.52.in-addr.arpa

IN PTR

Response

129.218.31.52.in-addr.arpa

IN PTR

ec2-52-31-218-129 eu-west-1compute amazonawscom
DNS

229.154.198.44.in-addr.arpa

Remote address:

8.8.8.8:53

Request

229.154.198.44.in-addr.arpa

IN PTR

Response

229.154.198.44.in-addr.arpa

IN PTR

ec2-44-198-154-229 compute-1 amazonawscom
DNS

83.241.237.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

83.241.237.34.in-addr.arpa

IN PTR

Response

83.241.237.34.in-addr.arpa

IN PTR

ec2-34-237-241-83 compute-1 amazonawscom
DNS

217.129.233.3.in-addr.arpa

Remote address:

8.8.8.8:53

Request

217.129.233.3.in-addr.arpa

IN PTR

Response

217.129.233.3.in-addr.arpa

IN PTR

ec2-3-233-129-217 compute-1 amazonawscom
DNS

223.130.204.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

223.130.204.54.in-addr.arpa

IN PTR

Response

223.130.204.54.in-addr.arpa

IN PTR

ec2-54-204-130-223 compute-1 amazonawscom
DNS

230.63.71.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

230.63.71.52.in-addr.arpa

IN PTR

Response

230.63.71.52.in-addr.arpa

IN PTR

ec2-52-71-63-230 compute-1 amazonawscom
DNS

34.101.199.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

34.101.199.34.in-addr.arpa

IN PTR

Response

34.101.199.34.in-addr.arpa

IN PTR

ec2-34-199-101-34 compute-1 amazonawscom
DNS

186.130.230.3.in-addr.arpa

Remote address:

8.8.8.8:53

Request

186.130.230.3.in-addr.arpa

IN PTR

Response

186.130.230.3.in-addr.arpa

IN PTR

ec2-3-230-130-186 compute-1 amazonawscom
DNS

31.224.197.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

31.224.197.34.in-addr.arpa

IN PTR

Response

31.224.197.34.in-addr.arpa

IN PTR

ec2-34-197-224-31 compute-1 amazonawscom
DNS

geo2.adobe.com

Remote address:

8.8.8.8:53

Request

geo2.adobe.com

IN A

Response

geo2.adobe.com

IN CNAME

ssl-delivery.adobe.com.edgekey.net

ssl-delivery.adobe.com.edgekey.net

IN CNAME

e4578.dscg.akamaiedge.net

e4578.dscg.akamaiedge.net

IN A

23.37.0.169
DNS

geo2.adobe.com

Remote address:

8.8.8.8:53

Request

geo2.adobe.com

IN Unknown

Response

geo2.adobe.com

IN CNAME

ssl-delivery.adobe.com.edgekey.net

ssl-delivery.adobe.com.edgekey.net

IN CNAME

e4578.dscg.akamaiedge.net
DNS

cdn.cookielaw.org

Remote address:

8.8.8.8:53

Request

cdn.cookielaw.org

IN A

Response

cdn.cookielaw.org

IN A

104.19.177.52

cdn.cookielaw.org

IN A

104.19.178.52
DNS

cdn.cookielaw.org

Remote address:

8.8.8.8:53

Request

cdn.cookielaw.org

IN Unknown

Response

cdn.cookielaw.org

IN Unknown

h2h�4h�4 &Gh�4&Gh�4
DNS

89.90.14.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

89.90.14.23.in-addr.arpa

IN PTR

Response

89.90.14.23.in-addr.arpa

IN PTR

a23-14-90-89deploystaticakamaitechnologiescom
DNS

dpm.demdex.net

Remote address:

8.8.8.8:53

Request

dpm.demdex.net

IN A

Response

dpm.demdex.net

IN CNAME

gslb-2.demdex.net

gslb-2.demdex.net

IN CNAME

edge-irl1.demdex.net

edge-irl1.demdex.net

IN CNAME

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.214.218.223

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.77.235.26

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.31.53.125

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.212.88.72

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

34.242.210.124

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.19.147.254

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.194.78.109

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.76.35.37
DNS

dpm.demdex.net

Remote address:

8.8.8.8:53

Request

dpm.demdex.net

IN Unknown

Response

dpm.demdex.net

IN CNAME

gslb-2.demdex.net

gslb-2.demdex.net

IN CNAME

edge-irl1.demdex.net

edge-irl1.demdex.net

IN CNAME

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com
DNS

client.messaging.adobe.com

Remote address:

8.8.8.8:53

Request

client.messaging.adobe.com

IN A

Response

client.messaging.adobe.com

IN A

54.230.10.25

client.messaging.adobe.com

IN A

54.230.10.61

client.messaging.adobe.com

IN A

54.230.10.52

client.messaging.adobe.com

IN A

54.230.10.129
DNS

client.messaging.adobe.com

Remote address:

8.8.8.8:53

Request

client.messaging.adobe.com

IN Unknown

Response
DNS

geolocation.onetrust.com

Remote address:

8.8.8.8:53

Request

geolocation.onetrust.com

IN A

Response

geolocation.onetrust.com

IN A

104.18.32.137

geolocation.onetrust.com

IN A

172.64.155.119
DNS

geolocation.onetrust.com

Remote address:

8.8.8.8:53

Request

geolocation.onetrust.com

IN Unknown

Response

geolocation.onetrust.com

IN Unknown

h2h ��@�w &GDh �&GD�@�w
DNS

adobemobiledev.demdex.net

Remote address:

8.8.8.8:53

Request

adobemobiledev.demdex.net

IN A

Response

adobemobiledev.demdex.net

IN CNAME

gslb-2.demdex.net

gslb-2.demdex.net

IN CNAME

edge-irl1.demdex.net

edge-irl1.demdex.net

IN CNAME

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.212.88.72

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

63.34.203.75

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.49.110.165

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.194.78.109

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.171.118.212

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

34.246.11.24

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

63.32.175.215

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

34.252.225.209
DNS

adobemobiledev.demdex.net

Remote address:

8.8.8.8:53

Request

adobemobiledev.demdex.net

IN Unknown

Response

adobemobiledev.demdex.net

IN CNAME

gslb-2.demdex.net

gslb-2.demdex.net

IN CNAME

edge-irl1.demdex.net

edge-irl1.demdex.net

IN CNAME

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com
DNS

adobemobiledev.demdex.net

Remote address:

8.8.8.8:53

Request

adobemobiledev.demdex.net

IN A

Response

adobemobiledev.demdex.net

IN CNAME

gslb-2.demdex.net

gslb-2.demdex.net

IN CNAME

edge-irl1.demdex.net

edge-irl1.demdex.net

IN CNAME

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.17.202.44

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

63.32.175.215

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

176.34.167.98

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.213.103.114

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.49.110.165

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

34.246.11.24

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

34.252.225.209

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

63.34.203.75
DNS

acrobat.adobe.com

Remote address:

8.8.8.8:53

Request

acrobat.adobe.com

IN A

Response

acrobat.adobe.com

IN CNAME

acrobat.adobe.com.i.edgekey.net

acrobat.adobe.com.i.edgekey.net

IN CNAME

e29329.dsca.akamaiedge.net

e29329.dsca.akamaiedge.net

IN A

23.62.61.97

e29329.dsca.akamaiedge.net

IN A

23.62.61.185
DNS

cm.everesttech.net

Remote address:

8.8.8.8:53

Request

cm.everesttech.net

IN A

Response

cm.everesttech.net

IN CNAME

cm.everesttech.net.akadns.net

cm.everesttech.net.akadns.net

IN A

52.19.209.129

cm.everesttech.net.akadns.net

IN A

52.17.26.1

cm.everesttech.net.akadns.net

IN A

99.81.63.100
DNS

cm.everesttech.net

Remote address:

8.8.8.8:53

Request

cm.everesttech.net

IN Unknown

Response

cm.everesttech.net

IN CNAME

cm.everesttech.net.akadns.net
DNS

52.177.19.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

52.177.19.104.in-addr.arpa

IN PTR

Response
DNS

169.0.37.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

169.0.37.23.in-addr.arpa

IN PTR

Response

169.0.37.23.in-addr.arpa

IN PTR

a23-37-0-169deploystaticakamaitechnologiescom
DNS

223.218.214.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

223.218.214.52.in-addr.arpa

IN PTR

Response

223.218.214.52.in-addr.arpa

IN PTR

ec2-52-214-218-223 eu-west-1compute amazonawscom
DNS

server.messaging.adobe.com

Remote address:

8.8.8.8:53

Request

server.messaging.adobe.com

IN A

Response

server.messaging.adobe.com

IN A

34.233.40.195

server.messaging.adobe.com

IN A

54.174.27.39
DNS

server.messaging.adobe.com

Remote address:

8.8.8.8:53

Request

server.messaging.adobe.com

IN Unknown

Response
DNS

92.30.17.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

92.30.17.104.in-addr.arpa

IN PTR

Response
DNS

25.10.230.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

25.10.230.54.in-addr.arpa

IN PTR

Response

25.10.230.54.in-addr.arpa

IN PTR

server-54-230-10-25man50r cloudfrontnet
DNS

137.32.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

137.32.18.104.in-addr.arpa

IN PTR

Response
DNS

72.88.212.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

72.88.212.52.in-addr.arpa

IN PTR

Response

72.88.212.52.in-addr.arpa

IN PTR

ec2-52-212-88-72 eu-west-1compute amazonawscom
DNS

129.209.19.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

129.209.19.52.in-addr.arpa

IN PTR

Response

129.209.19.52.in-addr.arpa

IN PTR

ec2-52-19-209-129 eu-west-1compute amazonawscom
DNS

195.40.233.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

195.40.233.34.in-addr.arpa

IN PTR

Response

195.40.233.34.in-addr.arpa

IN PTR

ec2-34-233-40-195 compute-1 amazonawscom
DNS

privacyportal.onetrust.com

Remote address:

8.8.8.8:53

Request

privacyportal.onetrust.com

IN A

Response

privacyportal.onetrust.com

IN A

104.18.32.137

privacyportal.onetrust.com

IN A

172.64.155.119
DNS

privacyportal.onetrust.com

Remote address:

8.8.8.8:53

Request

privacyportal.onetrust.com

IN Unknown

Response

privacyportal.onetrust.com

IN Unknown

h2h ��@�w &GDh �&GD�@�w
DNS

249.197.17.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

249.197.17.2.in-addr.arpa

IN PTR

Response

249.197.17.2.in-addr.arpa

IN PTR

a2-17-197-249deploystaticakamaitechnologiescom
DNS

update.googleapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

update.googleapis.com

IN A

Response

update.googleapis.com

IN A

142.250.178.3
DNS

update.googleapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

update.googleapis.com

IN Unknown

Response
DNS

edge-mobile-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-mobile-static.azureedge.net

IN A

Response

edge-mobile-static.azureedge.net

IN CNAME

edge-mobile-static.afd.azureedge.net

edge-mobile-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.part-0036.t-0009.t-msedge.net

shed.dual-low.part-0036.t-0009.t-msedge.net

IN CNAME

part-0036.t-0009.t-msedge.net

part-0036.t-0009.t-msedge.net

IN A

13.107.246.64

part-0036.t-0009.t-msedge.net

IN A

13.107.213.64
DNS

edge-mobile-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-mobile-static.azureedge.net

IN Unknown

Response

edge-mobile-static.azureedge.net

IN CNAME

edge-mobile-static.afd.azureedge.net

edge-mobile-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.part-0036.t-0009.t-msedge.net

shed.dual-low.part-0036.t-0009.t-msedge.net

IN CNAME

part-0036.t-0009.t-msedge.net
DNS

11.227.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.227.111.52.in-addr.arpa

IN PTR

Response
DNS

edge-consumer-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-consumer-static.azureedge.net

IN A

Response

edge-consumer-static.azureedge.net

IN CNAME

edge-consumer-static.afd.azureedge.net

edge-consumer-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.part-0036.t-0009.t-msedge.net

shed.dual-low.part-0036.t-0009.t-msedge.net

IN CNAME

part-0036.t-0009.t-msedge.net

part-0036.t-0009.t-msedge.net

IN A

13.107.246.64

part-0036.t-0009.t-msedge.net

IN A

13.107.213.64
DNS

edge-consumer-static.azureedge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

edge-consumer-static.azureedge.net

IN Unknown

Response

edge-consumer-static.azureedge.net

IN CNAME

edge-consumer-static.afd.azureedge.net

edge-consumer-static.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.part-0036.t-0009.t-msedge.net

shed.dual-low.part-0036.t-0009.t-msedge.net

IN CNAME

part-0036.t-0009.t-msedge.net
DNS

tse1.mm.bing.net

Remote address:

8.8.8.8:53

Request

tse1.mm.bing.net

IN A

Response

tse1.mm.bing.net

IN CNAME

mm-mm.bing.net.trafficmanager.net

mm-mm.bing.net.trafficmanager.net

IN CNAME

dual-a-0001.a-msedge.net

dual-a-0001.a-msedge.net

IN A

204.79.197.200

dual-a-0001.a-msedge.net

IN A

13.107.21.200
GET

https://tse1.mm.bing.net/th?id=OADD2.10239370255189_1E7XE0SO5A57SENIS&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

Remote address:

204.79.197.200:443

Request

GET /th?id=OADD2.10239370255189_1E7XE0SO5A57SENIS&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 664406
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 903B2B6460874AE7971D5330EC86E7E1 Ref B: LON04EDGE0718 Ref C: 2024-04-08T20:19:47Z
date: Mon, 08 Apr 2024 20:19:47 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239370255188_1EKPMYV01DV13G64K&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

Remote address:

204.79.197.200:443

Request

GET /th?id=OADD2.10239370255188_1EKPMYV01DV13G64K&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 682798
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 16A96D5DB1B74C988438E64BD2F472D0 Ref B: LON04EDGE0718 Ref C: 2024-04-08T20:19:47Z
date: Mon, 08 Apr 2024 20:19:47 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239362113785_1BQQBFJAZTSP82CQ9&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

Remote address:

204.79.197.200:443

Request

GET /th?id=OADD2.10239362113785_1BQQBFJAZTSP82CQ9&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 700590
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1DC09A13AB6C4C8199DA98DA6FEB9143 Ref B: LON04EDGE0718 Ref C: 2024-04-08T20:19:47Z
date: Mon, 08 Apr 2024 20:19:47 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239379019160_1CYVPZ2UN6QMEATU2&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

Remote address:

204.79.197.200:443

Request

GET /th?id=OADD2.10239379019160_1CYVPZ2UN6QMEATU2&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 543854
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 98BD917B6A9A46848939EC3FE57216F5 Ref B: LON04EDGE0718 Ref C: 2024-04-08T20:19:47Z
date: Mon, 08 Apr 2024 20:19:47 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239379019164_1DBDX3CJXSDC8PX7N&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

Remote address:

204.79.197.200:443

Request

GET /th?id=OADD2.10239379019164_1DBDX3CJXSDC8PX7N&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 497954
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4D4496185D844B3BA37C7C746A7139AF Ref B: LON04EDGE0718 Ref C: 2024-04-08T20:19:47Z
date: Mon, 08 Apr 2024 20:19:47 GMT
GET

https://tse1.mm.bing.net/th?id=OADD2.10239362113786_1YKVBWQB04TYV1QMR&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

Remote address:

204.79.197.200:443

Request

GET /th?id=OADD2.10239362113786_1YKVBWQB04TYV1QMR&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 585983
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4D0A359EEE7441F68652F96F0766A432 Ref B: LON04EDGE0718 Ref C: 2024-04-08T20:19:48Z
date: Mon, 08 Apr 2024 20:19:47 GMT
DNS

43.58.199.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

43.58.199.20.in-addr.arpa

IN PTR

Response
DNS

25.173.189.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

25.173.189.20.in-addr.arpa

IN PTR

Response
DNS

ogbatobanana.duckdns.org

Remote address:

8.8.8.8:53

Request

ogbatobanana.duckdns.org

IN A

Response

ogbatobanana.duckdns.org

IN A

45.89.55.76
DNS

76.55.89.45.in-addr.arpa

Remote address:

8.8.8.8:53

Request

76.55.89.45.in-addr.arpa

IN PTR

Response

76.55.89.45.in-addr.arpa

IN PTR

plex02 tomarhostcom

154.61.71.12:443

tria.ge

tls

12.2kB
185.5kB
169
159
154.61.71.12:443

tria.ge

tls

1.1kB
4.2kB
11
10
51.140.242.104:443

nav-edge.smartscreen.microsoft.com

98 B
52 B
2
1
51.140.242.104:443

nav-edge.smartscreen.microsoft.com

tls

19.5kB
16.8kB
45
47
13.107.6.158:443

business.bing.com

tls

2.0kB
9.7kB
18
22
104.91.71.133:443

bzib.nelreports.net

tls

2.5kB
6.1kB
14
16
72.246.173.187:443

www.microsoft.com

tls

2.7kB
22.4kB
26
34
51.140.244.186:443

telem-edge.smartscreen.microsoft.com

tls

6.1kB
8.1kB
19
21
23.62.61.72:443

www.bing.com

tls

22.4kB
871.5kB
423
637
13.107.246.64:443

edgestatic.azureedge.net

tls

97.7kB
4.5MB
1956
3207
13.107.246.64:443

edgestatic.azureedge.net

tls

1.7kB
7.6kB
11
11
13.107.246.64:443

edgestatic.azureedge.net

tls

1.6kB
7.5kB
10
10
13.107.246.64:443

edgestatic.azureedge.net

tls

8.8kB
272.1kB
133
207
13.107.246.64:443

wcpstatic.microsoft.com

tls

3.9kB
90.9kB
46
77
13.107.246.64:443

edgestatic.azureedge.net

tls

793 B
271 B
6
4
216.58.204.74:443

chromewebstore.googleapis.com

tls

2.1kB
7.9kB
17
16
23.62.61.97:443

acrobat.adobe.com

tls

153.2kB
6.4MB
3078
4935
23.62.61.97:443

acrobat.adobe.com

tls

1.1kB
4.9kB
10
9
23.62.61.97:443

acrobat.adobe.com

tls

1.8kB
6.4kB
14
15
104.18.32.195:443

adobeid-na1.services.adobe.com

tls

1.7kB
4.7kB
13
10
66.235.152.156:443

adobe.tt.omtrdc.net

tls

1.0kB
4.4kB
9
11
52.213.110.235:443

send-asr.acrobat.com

tls

6.5kB
15.8kB
24
32
172.64.155.179:443

auth.services.adobe.com

tls

2.2kB
22.3kB
25
24
23.63.101.163:443

wwwimages2.adobe.com

tls

959 B
4.7kB
8
11
104.91.71.78:443

use.typekit.net

tls

10.6kB
245.7kB
176
191
3.162.20.118:443

static.adobelogin.com

tls

1.0kB
4.6kB
8
9
66.235.152.225:443

sstats.adobe.com

tls

5.9kB
7.3kB
28
31
3.162.20.106:443

prod.adobeccstatic.com

tls

1.1kB
5.6kB
9
10
44.198.154.229:443

pdfnow.adobe.io

tls

1.1kB
5.7kB
12
15
104.91.71.80:443

p.typekit.net

tls

1.1kB
6.2kB
10
14
34.237.241.83:443

p13n.adobe.io

tls

2.7kB
10.0kB
16
19
3.233.129.217:443

notify.adobe.io

tls

1.1kB
5.8kB
12
15
34.250.85.196:443

ims-na1.adobelogin.com

tls

1.1kB
9.8kB
10
12
52.16.247.220:443

dc-api-v2.adobecontent.io

tls

1.1kB
5.7kB
12
15
34.199.101.34:443

dc-api.adobecontent.io

tls

1.2kB
5.7kB
12
15
3.230.130.186:443

dc-api.adobe.io

tls

17.2kB
9.7kB
31
26
52.48.126.58:443

cc-api-data.adobe.io

tls

6.9kB
7.8kB
23
23
23.37.1.19:443

assets.adobedtm.com

tls

1.0kB
4.9kB
9
11
52.71.63.230:443

api.echosign.com

tls

1.4kB
6.1kB
15
15
54.204.130.223:443

ans.oobesaas.adobe.com

tls

1.2kB
6.7kB
11
11
151.101.1.138:443

cdn-sharing.adobecc.com

tls

2.1MB
123.5MB
45589
88447
34.197.224.31:443

files.acrobat.com

tls

2.6kB
8.6kB
15
18
52.31.218.129:443

adobesearch.adobe.io

tls

1.2kB
5.8kB
12
15
13.107.246.64:443

wcpstatic.microsoft.com

46 B
40 B
1
1
104.18.32.195:443

adobeid-na1.services.adobe.com

tls

2.4kB
5.3kB
14
14
3.230.130.186:443

dc-api.adobe.io

tls

40.2kB
12.4kB
53
39
3.230.130.186:443

dc-api.adobe.io

tls

5.9kB
8.4kB
22
22
3.230.130.186:443

dc-api.adobe.io

tls

18.2kB
9.9kB
34
28
3.230.130.186:443

dc-api.adobe.io

tls

22.6kB
7.4kB
33
26
3.230.130.186:443

dc-api.adobe.io

tls

2.3kB
6.4kB
14
16
104.91.71.78:443

use.typekit.net

tls

1.9kB
13.7kB
17
24
3.162.20.106:443

prod.adobeccstatic.com

tls

5.0kB
155.2kB
83
120
3.162.20.106:443

prod.adobeccstatic.com

tls

956 B
5.2kB
9
7
23.14.90.89:443

www.adobe.com

tls

1.1kB
4.6kB
10
10
23.14.90.89:443

www.adobe.com

tls

2.5kB
23.1kB
27
30
23.37.0.169:443

geo2.adobe.com

tls

1.8kB
4.9kB
11
9
23.37.1.19:443

assets.adobedtm.com

tls

7.1kB
214.6kB
108
172
104.19.177.52:443

cdn.cookielaw.org

tls

7.1kB
246.1kB
117
203
104.91.71.80:443

p.typekit.net

tls

1.9kB
6.7kB
15
19
52.214.218.223:443

dpm.demdex.net

tls

3.1kB
12.3kB
24
24
52.48.126.58:443

cc-api-data.adobe.io

tls

1.8kB
6.3kB
13
16
52.48.126.58:443

cc-api-data.adobe.io

tls

5.6kB
6.8kB
20
21
23.63.101.163:443

wwwimages2.adobe.com

tls

2.5kB
18.1kB
21
29
23.63.101.163:443

wwwimages2.adobe.com

tls

1.1kB
4.6kB
10
10
104.17.30.92:443

widget.uservoice.com

tls

2.5kB
26.6kB
26
36
52.48.126.58:443

cc-api-data.adobe.io

tls

5.6kB
6.8kB
20
21
54.230.10.25:443

client.messaging.adobe.com

tls

1.1kB
7.3kB
9
10
54.230.10.25:443

client.messaging.adobe.com

tls

3.3kB
47.6kB
41
44
104.18.32.137:443

geolocation.onetrust.com

tls

1.8kB
3.6kB
12
11
52.212.88.72:443

adobemobiledev.demdex.net

tls

1.9kB
8.7kB
14
15
66.235.152.225:443

sstats.adobe.com

tls

177.3kB
15.6kB
182
116
52.48.126.58:443

cc-api-data.adobe.io

tls

1.2kB
5.8kB
12
15
66.235.152.156:443

adobe.tt.omtrdc.net

tls

3.2kB
5.6kB
16
16
52.19.209.129:443

cm.everesttech.net

tls

1.8kB
6.6kB
10
11
54.230.10.25:443

client.messaging.adobe.com

tls

2.0kB
8.6kB
15
14
34.233.40.195:443

server.messaging.adobe.com

tls

1.7kB
7.4kB
13
14
104.19.177.52:443

cdn.cookielaw.org

tls

2.2kB
10.5kB
20
20
34.233.40.195:443

server.messaging.adobe.com

tls

4.0kB
8.3kB
17
15
52.213.110.235:443

send-asr.acrobat.com

tls

3.2kB
8.8kB
18
23
52.213.110.235:443

send-asr.acrobat.com

tls

1.2kB
5.7kB
12
15
104.18.32.137:443

privacyportal.onetrust.com

tls

10.2kB
5.6kB
20
21
142.250.178.3:443

update.googleapis.com

tls

msedge.exe

3.1kB
7.7kB
16
16
13.107.246.64:443

edge-mobile-static.azureedge.net

tls

msedge.exe

2.4kB
11.5kB
16
19
13.107.246.64:443

edge-consumer-static.azureedge.net

tls

msedge.exe

2.3kB
8.6kB
14
17
204.79.197.200:443

tse1.mm.bing.net

tls, http2

1.2kB
8.1kB
16
14
204.79.197.200:443

tse1.mm.bing.net

tls, http2

1.2kB
8.1kB
16
14
204.79.197.200:443

tse1.mm.bing.net

tls, http2

1.2kB
8.1kB
16
14
204.79.197.200:443

https://tse1.mm.bing.net/th?id=OADD2.10239362113786_1YKVBWQB04TYV1QMR&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

tls, http2

132.4kB
3.8MB
2770
2764

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239370255189_1E7XE0SO5A57SENIS&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239370255188_1EKPMYV01DV13G64K&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239362113785_1BQQBFJAZTSP82CQ9&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239379019160_1CYVPZ2UN6QMEATU2&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239379019164_1DBDX3CJXSDC8PX7N&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://tse1.mm.bing.net/th?id=OADD2.10239362113786_1YKVBWQB04TYV1QMR&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90

HTTP Response

200
204.79.197.200:443

tse1.mm.bing.net

tls, http2

1.2kB
8.1kB
16
14
45.89.55.76:4047

ogbatobanana.duckdns.org

tls

1.9kB
1.1kB
8
8

8.8.8.8:53

tria.ge

dns

53 B
69 B
1
1

DNS Request

tria.ge

DNS Response

154.61.71.12
8.8.8.8:53

tria.ge

dns

53 B
115 B
1
1

DNS Request

tria.ge
8.8.8.8:53

tria.ge

dns

53 B
69 B
1
1

DNS Request

tria.ge

DNS Response

154.61.71.12
8.8.8.8:53

nav-edge.smartscreen.microsoft.com

dns

80 B
199 B
1
1

DNS Request

nav-edge.smartscreen.microsoft.com

DNS Response

51.140.242.104
8.8.8.8:53

nav-edge.smartscreen.microsoft.com

dns

80 B
243 B
1
1

DNS Request

nav-edge.smartscreen.microsoft.com
8.8.8.8:53

business.bing.com

dns

63 B
144 B
1
1

DNS Request

business.bing.com

DNS Response

13.107.6.158
8.8.8.8:53

business.bing.com

dns

63 B
185 B
1
1

DNS Request

business.bing.com
8.8.8.8:53

bzib.nelreports.net

dns

65 B
172 B
1
1

DNS Request

bzib.nelreports.net

DNS Response

104.91.71.133

104.91.71.140
8.8.8.8:53

bzib.nelreports.net

dns

65 B
204 B
1
1

DNS Request

bzib.nelreports.net
8.8.8.8:53

www.microsoft.com

dns

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

72.246.173.187
8.8.8.8:53

www.microsoft.com

dns

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

72.246.173.187
8.8.8.8:53

www.microsoft.com

dns

63 B
275 B
1
1

DNS Request

www.microsoft.com
8.8.8.8:53

12.71.61.154.in-addr.arpa

dns

71 B
129 B
1
1

DNS Request

12.71.61.154.in-addr.arpa
8.8.8.8:53

150.1.37.23.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

150.1.37.23.in-addr.arpa
8.8.8.8:53

104.242.140.51.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

104.242.140.51.in-addr.arpa
8.8.8.8:53

17.160.190.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

17.160.190.20.in-addr.arpa
8.8.8.8:53

www.microsoft.com

dns

63 B
1

DNS Request

www.microsoft.com
8.8.8.8:53

telem-edge.smartscreen.microsoft.com

dns

82 B
201 B
1
1

DNS Request

telem-edge.smartscreen.microsoft.com

DNS Response

51.140.244.186
8.8.8.8:53

telem-edge.smartscreen.microsoft.com

dns

82 B
246 B
1
1

DNS Request

telem-edge.smartscreen.microsoft.com
8.8.8.8:53

149.220.183.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

149.220.183.52.in-addr.arpa
8.8.8.8:53

133.71.91.104.in-addr.arpa

dns

144 B
137 B
2
1

DNS Request

133.71.91.104.in-addr.arpa

DNS Request

133.71.91.104.in-addr.arpa
8.8.8.8:53

187.173.246.72.in-addr.arpa

dns

146 B
139 B
2
1

DNS Request

187.173.246.72.in-addr.arpa

DNS Request

187.173.246.72.in-addr.arpa
8.8.8.8:53

9.228.82.20.in-addr.arpa

dns

70 B
156 B
1
1

DNS Request

9.228.82.20.in-addr.arpa
8.8.8.8:53

240.197.17.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

240.197.17.2.in-addr.arpa
8.8.8.8:53

186.244.140.51.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

186.244.140.51.in-addr.arpa
8.8.8.8:53

72.61.62.23.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

72.61.62.23.in-addr.arpa
8.8.8.8:53

www.microsoft.com

dns

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

72.246.173.187
8.8.8.8:53

edgestatic.azureedge.net

dns

70 B
245 B
1
1

DNS Request

edgestatic.azureedge.net

DNS Response

13.107.246.64

13.107.213.64
8.8.8.8:53

edgestatic.azureedge.net

dns

70 B
273 B
1
1

DNS Request

edgestatic.azureedge.net
8.8.8.8:53

c.s-microsoft.com

dns

63 B
193 B
1
1

DNS Request

c.s-microsoft.com

DNS Response

23.37.1.217
8.8.8.8:53

c.s-microsoft.com

dns

63 B
238 B
1
1

DNS Request

c.s-microsoft.com
8.8.8.8:53

11.2.37.23.in-addr.arpa

dns

69 B
131 B
1
1

DNS Request

11.2.37.23.in-addr.arpa
8.8.8.8:53

wcpstatic.microsoft.com

dns

69 B
265 B
1
1

DNS Request

wcpstatic.microsoft.com

DNS Response

13.107.246.64

13.107.213.64
8.8.8.8:53

wcpstatic.microsoft.com

dns

69 B
280 B
1
1

DNS Request

wcpstatic.microsoft.com
224.0.0.251:5353

204 B
3
8.8.8.8:53

57.169.31.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

57.169.31.20.in-addr.arpa
8.8.8.8:53

chromewebstore.googleapis.com

dns

75 B
267 B
1
1

DNS Request

chromewebstore.googleapis.com

DNS Response

216.58.204.74

172.217.169.10

216.58.212.234

142.250.179.234

142.250.180.10

142.250.187.202

142.250.187.234

142.250.178.10

172.217.16.234

142.250.200.10

142.250.200.42

216.58.201.106
8.8.8.8:53

chromewebstore.googleapis.com

dns

75 B
132 B
1
1

DNS Request

chromewebstore.googleapis.com
8.8.8.8:53

74.204.58.216.in-addr.arpa

dns

72 B
171 B
1
1

DNS Request

74.204.58.216.in-addr.arpa
8.8.8.8:53

50.23.12.20.in-addr.arpa

dns

70 B
156 B
1
1

DNS Request

50.23.12.20.in-addr.arpa
8.8.8.8:53

206.23.85.13.in-addr.arpa

dns

71 B
145 B
1
1

DNS Request

206.23.85.13.in-addr.arpa
8.8.8.8:53

99.58.20.217.in-addr.arpa

dns

71 B
131 B
1
1

DNS Request

99.58.20.217.in-addr.arpa
8.8.8.8:53

acrobat.adobe.com

dns

63 B
177 B
1
1

DNS Request

acrobat.adobe.com

DNS Response

23.62.61.97

23.62.61.185
8.8.8.8:53

acrobat.adobe.com

dns

63 B
206 B
1
1

DNS Request

acrobat.adobe.com
8.8.8.8:53

acrobat.adobe.com

dns

63 B
177 B
1
1

DNS Request

acrobat.adobe.com

DNS Response

23.62.61.97

23.62.61.185
8.8.8.8:53

adobeid-na1.services.adobe.com

dns

76 B
223 B
1
1

DNS Request

adobeid-na1.services.adobe.com

DNS Response

104.18.32.195

172.64.155.61
8.8.8.8:53

adobeid-na1.services.adobe.com

dns

76 B
225 B
1
1

DNS Request

adobeid-na1.services.adobe.com
8.8.8.8:53

adobe.tt.omtrdc.net

dns

65 B
152 B
1
1

DNS Request

adobe.tt.omtrdc.net

DNS Response

66.235.152.156

66.235.152.225

66.235.152.221
8.8.8.8:53

adobe.tt.omtrdc.net

dns

65 B
172 B
1
1

DNS Request

adobe.tt.omtrdc.net
8.8.8.8:53

wwwimages2.adobe.com

dns

66 B
261 B
1
1

DNS Request

wwwimages2.adobe.com

DNS Response

23.63.101.163

23.63.101.171
8.8.8.8:53

wwwimages2.adobe.com

dns

66 B
290 B
1
1

DNS Request

wwwimages2.adobe.com
8.8.8.8:53

www.adobe.com

dns

59 B
233 B
1
1

DNS Request

www.adobe.com

DNS Response

23.14.90.89

23.14.90.107
8.8.8.8:53

www.adobe.com

dns

59 B
262 B
1
1

DNS Request

www.adobe.com
8.8.8.8:53

widget.uservoice.com

dns

66 B
146 B
1
1

DNS Request

widget.uservoice.com

DNS Response

104.17.30.92

104.17.29.92

104.17.28.92

104.17.27.92

104.17.31.92
8.8.8.8:53

widget.uservoice.com

dns

66 B
196 B
1
1

DNS Request

widget.uservoice.com
8.8.8.8:53

97.61.62.23.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

97.61.62.23.in-addr.arpa
8.8.8.8:53

use.typekit.net

dns

61 B
169 B
1
1

DNS Request

use.typekit.net

DNS Response

104.91.71.78

104.91.71.98
8.8.8.8:53

use.typekit.net

dns

61 B
202 B
1
1

DNS Request

use.typekit.net
8.8.8.8:53

send-asr.acrobat.com

dns

66 B
139 B
1
1

DNS Request

send-asr.acrobat.com

DNS Response

52.213.110.235

79.125.71.5
8.8.8.8:53

send-asr.acrobat.com

dns

66 B
189 B
1
1

DNS Request

send-asr.acrobat.com
8.8.8.8:53

static.adobelogin.com

dns

67 B
225 B
1
1

DNS Request

static.adobelogin.com

DNS Response

3.162.20.118

3.162.20.101

3.162.20.12

3.162.20.57
8.8.8.8:53

static.adobelogin.com

dns

67 B
243 B
1
1

DNS Request

static.adobelogin.com
8.8.8.8:53

auth.services.adobe.com

dns

69 B
224 B
1
1

DNS Request

auth.services.adobe.com

DNS Response

172.64.155.179

104.18.32.77
8.8.8.8:53

auth.services.adobe.com

dns

69 B
226 B
1
1

DNS Request

auth.services.adobe.com
8.8.8.8:53

sstats.adobe.com

dns

62 B
154 B
1
1

DNS Request

sstats.adobe.com

DNS Response

66.235.152.225

66.235.152.221

66.235.152.156
8.8.8.8:53

sstats.adobe.com

dns

62 B
165 B
1
1

DNS Request

sstats.adobe.com
8.8.8.8:53

prod.adobeccstatic.com

dns

68 B
132 B
1
1

DNS Request

prod.adobeccstatic.com

DNS Response

3.162.20.106

3.162.20.103

3.162.20.24

3.162.20.79
8.8.8.8:53

prod.adobeccstatic.com

dns

68 B
149 B
1
1

DNS Request

prod.adobeccstatic.com
8.8.8.8:53

pdfnow.adobe.io

dns

61 B
93 B
1
1

DNS Request

pdfnow.adobe.io

DNS Response

44.198.154.229

34.199.101.34
8.8.8.8:53

pdfnow.adobe.io

dns

61 B
146 B
1
1

DNS Request

pdfnow.adobe.io
8.8.8.8:53

p.typekit.net

dns

59 B
186 B
1
1

DNS Request

p.typekit.net

DNS Response

104.91.71.80

104.91.71.91

104.91.71.95
8.8.8.8:53

p.typekit.net

dns

59 B
203 B
1
1

DNS Request

p.typekit.net
8.8.8.8:53

p13n.adobe.io

dns

59 B
123 B
1
1

DNS Request

p13n.adobe.io

DNS Response

34.237.241.83

54.224.241.105

50.16.47.176

18.213.11.84
8.8.8.8:53

p13n.adobe.io

dns

59 B
144 B
1
1

DNS Request

p13n.adobe.io
8.8.8.8:53

notify.adobe.io

dns

61 B
125 B
1
1

DNS Request

notify.adobe.io

DNS Response

3.233.129.217

52.22.41.97

3.219.243.226

52.6.155.20
8.8.8.8:53

notify.adobe.io

dns

61 B
146 B
1
1

DNS Request

notify.adobe.io
8.8.8.8:53

l.betrad.com

dns

58 B
230 B
1
1

DNS Request

l.betrad.com

DNS Response

3.231.35.194

54.198.157.193

52.2.227.200

107.22.91.90

3.228.195.183

34.231.239.183
8.8.8.8:53

l.betrad.com

dns

58 B
216 B
1
1

DNS Request

l.betrad.com
8.8.8.8:53

ims-na1.adobelogin.com

dns

68 B
257 B
1
1

DNS Request

ims-na1.adobelogin.com

DNS Response

34.250.85.196
8.8.8.8:53

ims-na1.adobelogin.com

dns

68 B
318 B
1
1

DNS Request

ims-na1.adobelogin.com
8.8.8.8:53

files-download2.acrocomcontent.com

dns

80 B
201 B
1
1

DNS Request

files-download2.acrocomcontent.com

DNS Response

34.199.101.34

44.198.154.229
8.8.8.8:53

files-download2.acrocomcontent.com

dns

80 B
251 B
1
1

DNS Request

files-download2.acrocomcontent.com
8.8.8.8:53

dc-api-v2.adobecontent.io

dns

71 B
148 B
1
1

DNS Request

dc-api-v2.adobecontent.io

DNS Response

52.16.247.220

52.51.28.236
8.8.8.8:53

dc-api-v2.adobecontent.io

dns

71 B
201 B
1
1

DNS Request

dc-api-v2.adobecontent.io
8.8.8.8:53

dc-api.adobecontent.io

dns

68 B
142 B
1
1

DNS Request

dc-api.adobecontent.io

DNS Response

34.199.101.34

44.198.154.229
8.8.8.8:53

dc-api.adobecontent.io

dns

68 B
195 B
1
1

DNS Request

dc-api.adobecontent.io
8.8.8.8:53

dc-api.adobe.io

dns

61 B
93 B
1
1

DNS Request

dc-api.adobe.io

DNS Response

3.230.130.186

34.197.224.31
8.8.8.8:53

dc-api.adobe.io

dns

61 B
146 B
1
1

DNS Request

dc-api.adobe.io
8.8.8.8:53

ccx-courier.adobe.io

dns

66 B
114 B
1
1

DNS Request

ccx-courier.adobe.io

DNS Response

52.48.8.54

52.31.218.129

34.252.184.159
8.8.8.8:53

ccx-courier.adobe.io

dns

66 B
151 B
1
1

DNS Request

ccx-courier.adobe.io
8.8.8.8:53

cc-api-data.adobe.io

dns

66 B
114 B
1
1

DNS Request

cc-api-data.adobe.io

DNS Response

52.48.126.58

54.228.247.11

34.246.54.182
8.8.8.8:53

cc-api-data.adobe.io

dns

66 B
151 B
1
1

DNS Request

cc-api-data.adobe.io
8.8.8.8:53

c.evidon.com

dns

58 B
173 B
1
1

DNS Request

c.evidon.com

DNS Response

23.62.61.176

23.62.61.72
8.8.8.8:53

c.evidon.com

dns

58 B
199 B
1
1

DNS Request

c.evidon.com
8.8.8.8:53

by2.uservoice.com

dns

63 B
143 B
1
1

DNS Request

by2.uservoice.com

DNS Response

104.17.28.92

104.17.31.92

104.17.30.92

104.17.29.92

104.17.27.92
8.8.8.8:53

by2.uservoice.com

dns

63 B
193 B
1
1

DNS Request

by2.uservoice.com
8.8.8.8:53

assets.adobedtm.com

dns

65 B
165 B
1
1

DNS Request

assets.adobedtm.com

DNS Response

23.37.1.19
8.8.8.8:53

assets.adobedtm.com

dns

65 B
210 B
1
1

DNS Request

assets.adobedtm.com
8.8.8.8:53

api.echosign.com

dns

62 B
110 B
1
1

DNS Request

api.echosign.com

DNS Response

52.71.63.230

52.71.63.232

52.71.63.231
8.8.8.8:53

api.echosign.com

dns

62 B
144 B
1
1

DNS Request

api.echosign.com
8.8.8.8:53

ans.oobesaas.adobe.com

dns

68 B
248 B
1
1

DNS Request

ans.oobesaas.adobe.com

DNS Response

54.204.130.223

52.2.75.231

52.86.93.254

52.86.30.154

52.72.202.41

54.160.109.82

52.4.218.159

44.208.229.214
8.8.8.8:53

ans.oobesaas.adobe.com

dns

68 B
202 B
1
1

DNS Request

ans.oobesaas.adobe.com
8.8.8.8:53

cdn-sharing.adobecc.com

dns

69 B
181 B
1
1

DNS Request

cdn-sharing.adobecc.com

DNS Response

151.101.1.138

151.101.65.138

151.101.129.138

151.101.193.138
8.8.8.8:53

cdn-sharing.adobecc.com

dns

69 B
175 B
1
1

DNS Request

cdn-sharing.adobecc.com
8.8.8.8:53

files.acrobat.com

dns

63 B
165 B
1
1

DNS Request

files.acrobat.com

DNS Response

34.197.224.31

3.230.130.186
8.8.8.8:53

files.acrobat.com

dns

63 B
215 B
1
1

DNS Request

files.acrobat.com
8.8.8.8:53

adobesearch.adobe.io

dns

66 B
114 B
1
1

DNS Request

adobesearch.adobe.io

DNS Response

52.31.218.129

34.252.184.159

52.48.8.54
8.8.8.8:53

adobesearch.adobe.io

dns

66 B
151 B
1
1

DNS Request

adobesearch.adobe.io
8.8.8.8:53

195.32.18.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

195.32.18.104.in-addr.arpa
8.8.8.8:53

156.152.235.66.in-addr.arpa

dns

73 B
121 B
1
1

DNS Request

156.152.235.66.in-addr.arpa
8.8.8.8:53

179.155.64.172.in-addr.arpa

dns

73 B
135 B
1
1

DNS Request

179.155.64.172.in-addr.arpa
8.8.8.8:53

235.110.213.52.in-addr.arpa

dns

73 B
137 B
1
1

DNS Request

235.110.213.52.in-addr.arpa
8.8.8.8:53

163.101.63.23.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

163.101.63.23.in-addr.arpa
8.8.8.8:53

118.20.162.3.in-addr.arpa

dns

71 B
127 B
1
1

DNS Request

118.20.162.3.in-addr.arpa
8.8.8.8:53

106.20.162.3.in-addr.arpa

dns

71 B
127 B
1
1

DNS Request

106.20.162.3.in-addr.arpa
8.8.8.8:53

225.152.235.66.in-addr.arpa

dns

73 B
121 B
1
1

DNS Request

225.152.235.66.in-addr.arpa
8.8.8.8:53

196.85.250.34.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

196.85.250.34.in-addr.arpa
8.8.8.8:53

220.247.16.52.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

220.247.16.52.in-addr.arpa
8.8.8.8:53

138.1.101.151.in-addr.arpa

dns

72 B
132 B
1
1

DNS Request

138.1.101.151.in-addr.arpa
8.8.8.8:53

78.71.91.104.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

78.71.91.104.in-addr.arpa
8.8.8.8:53

80.71.91.104.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

80.71.91.104.in-addr.arpa
8.8.8.8:53

58.126.48.52.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

58.126.48.52.in-addr.arpa
8.8.8.8:53

19.1.37.23.in-addr.arpa

dns

69 B
131 B
1
1

DNS Request

19.1.37.23.in-addr.arpa
8.8.8.8:53

129.218.31.52.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

129.218.31.52.in-addr.arpa
8.8.8.8:53

229.154.198.44.in-addr.arpa

dns

73 B
129 B
1
1

DNS Request

229.154.198.44.in-addr.arpa
8.8.8.8:53

83.241.237.34.in-addr.arpa

dns

72 B
127 B
1
1

DNS Request

83.241.237.34.in-addr.arpa
8.8.8.8:53

217.129.233.3.in-addr.arpa

dns

72 B
127 B
1
1

DNS Request

217.129.233.3.in-addr.arpa
8.8.8.8:53

223.130.204.54.in-addr.arpa

dns

73 B
129 B
1
1

DNS Request

223.130.204.54.in-addr.arpa
8.8.8.8:53

230.63.71.52.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

230.63.71.52.in-addr.arpa
8.8.8.8:53

34.101.199.34.in-addr.arpa

dns

72 B
127 B
1
1

DNS Request

34.101.199.34.in-addr.arpa
8.8.8.8:53

186.130.230.3.in-addr.arpa

dns

72 B
127 B
1
1

DNS Request

186.130.230.3.in-addr.arpa
8.8.8.8:53

31.224.197.34.in-addr.arpa

dns

72 B
127 B
1
1

DNS Request

31.224.197.34.in-addr.arpa
8.8.8.8:53

geo2.adobe.com

dns

60 B
160 B
1
1

DNS Request

geo2.adobe.com

DNS Response

23.37.0.169
8.8.8.8:53

geo2.adobe.com

dns

60 B
205 B
1
1

DNS Request

geo2.adobe.com
8.8.8.8:53

cdn.cookielaw.org

dns

63 B
95 B
1
1

DNS Request

cdn.cookielaw.org

DNS Response

104.19.177.52

104.19.178.52
8.8.8.8:53

cdn.cookielaw.org

dns

63 B
133 B
1
1

DNS Request

cdn.cookielaw.org
8.8.8.8:53

89.90.14.23.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

89.90.14.23.in-addr.arpa
8.8.8.8:53

dpm.demdex.net

dns

60 B
305 B
1
1

DNS Request

dpm.demdex.net

DNS Response

52.214.218.223

54.77.235.26

52.31.53.125

52.212.88.72

34.242.210.124

52.19.147.254

54.194.78.109

54.76.35.37
8.8.8.8:53

dpm.demdex.net

dns

60 B
259 B
1
1

DNS Request

dpm.demdex.net
8.8.8.8:53

client.messaging.adobe.com

dns

72 B
136 B
1
1

DNS Request

client.messaging.adobe.com

DNS Response

54.230.10.25

54.230.10.61

54.230.10.52

54.230.10.129
8.8.8.8:53

client.messaging.adobe.com

dns

72 B
154 B
1
1

DNS Request

client.messaging.adobe.com
8.8.8.8:53

geolocation.onetrust.com

dns

70 B
102 B
1
1

DNS Request

geolocation.onetrust.com

DNS Response

104.18.32.137

172.64.155.119
8.8.8.8:53

geolocation.onetrust.com

dns

70 B
140 B
1
1

DNS Request

geolocation.onetrust.com
8.8.8.8:53

adobemobiledev.demdex.net

dns

71 B
316 B
1
1

DNS Request

adobemobiledev.demdex.net

DNS Response

52.212.88.72

63.34.203.75

52.49.110.165

54.194.78.109

54.171.118.212

34.246.11.24

63.32.175.215

34.252.225.209
8.8.8.8:53

adobemobiledev.demdex.net

dns

71 B
270 B
1
1

DNS Request

adobemobiledev.demdex.net
8.8.8.8:53

adobemobiledev.demdex.net

dns

71 B
316 B
1
1

DNS Request

adobemobiledev.demdex.net

DNS Response

52.17.202.44

63.32.175.215

176.34.167.98

52.213.103.114

52.49.110.165

34.246.11.24

34.252.225.209

63.34.203.75
8.8.8.8:53

acrobat.adobe.com

dns

63 B
177 B
1
1

DNS Request

acrobat.adobe.com

DNS Response

23.62.61.97

23.62.61.185
8.8.8.8:53

cm.everesttech.net

dns

64 B
152 B
1
1

DNS Request

cm.everesttech.net

DNS Response

52.19.209.129

52.17.26.1

99.81.63.100
8.8.8.8:53

cm.everesttech.net

dns

64 B
170 B
1
1

DNS Request

cm.everesttech.net
8.8.8.8:53

52.177.19.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

52.177.19.104.in-addr.arpa
8.8.8.8:53

169.0.37.23.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

169.0.37.23.in-addr.arpa
8.8.8.8:53

223.218.214.52.in-addr.arpa

dns

73 B
137 B
1
1

DNS Request

223.218.214.52.in-addr.arpa
8.8.8.8:53

server.messaging.adobe.com

dns

72 B
104 B
1
1

DNS Request

server.messaging.adobe.com

DNS Response

34.233.40.195

54.174.27.39
8.8.8.8:53

server.messaging.adobe.com

dns

72 B
154 B
1
1

DNS Request

server.messaging.adobe.com
8.8.8.8:53

92.30.17.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

92.30.17.104.in-addr.arpa
8.8.8.8:53

25.10.230.54.in-addr.arpa

dns

71 B
127 B
1
1

DNS Request

25.10.230.54.in-addr.arpa
8.8.8.8:53

137.32.18.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

137.32.18.104.in-addr.arpa
8.8.8.8:53

72.88.212.52.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

72.88.212.52.in-addr.arpa
8.8.8.8:53

129.209.19.52.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

129.209.19.52.in-addr.arpa
8.8.8.8:53

195.40.233.34.in-addr.arpa

dns

72 B
127 B
1
1

DNS Request

195.40.233.34.in-addr.arpa
8.8.8.8:53

privacyportal.onetrust.com

dns

72 B
104 B
1
1

DNS Request

privacyportal.onetrust.com

DNS Response

104.18.32.137

172.64.155.119
8.8.8.8:53

privacyportal.onetrust.com

dns

72 B
142 B
1
1

DNS Request

privacyportal.onetrust.com
23.62.61.72:443

c.evidon.com

https

1.8kB
5.3kB
8
9
8.8.8.8:53

249.197.17.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

249.197.17.2.in-addr.arpa
8.8.8.8:53

update.googleapis.com

dns

msedge.exe

67 B
83 B
1
1

DNS Request

update.googleapis.com

DNS Response

142.250.178.3
8.8.8.8:53

update.googleapis.com

dns

msedge.exe

67 B
124 B
1
1

DNS Request

update.googleapis.com
8.8.8.8:53

edge-mobile-static.azureedge.net

dns

msedge.exe

78 B
261 B
1
1

DNS Request

edge-mobile-static.azureedge.net

DNS Response

13.107.246.64

13.107.213.64
8.8.8.8:53

edge-mobile-static.azureedge.net

dns

msedge.exe

78 B
289 B
1
1

DNS Request

edge-mobile-static.azureedge.net
8.8.8.8:53

11.227.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

11.227.111.52.in-addr.arpa
8.8.8.8:53

edge-consumer-static.azureedge.net

dns

msedge.exe

80 B
265 B
1
1

DNS Request

edge-consumer-static.azureedge.net

DNS Response

13.107.246.64

13.107.213.64
8.8.8.8:53

edge-consumer-static.azureedge.net

dns

msedge.exe

80 B
293 B
1
1

DNS Request

edge-consumer-static.azureedge.net
8.8.8.8:53

tse1.mm.bing.net

dns

62 B
173 B
1
1

DNS Request

tse1.mm.bing.net

DNS Response

204.79.197.200

13.107.21.200
8.8.8.8:53

43.58.199.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

43.58.199.20.in-addr.arpa
8.8.8.8:53

25.173.189.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

25.173.189.20.in-addr.arpa
8.8.8.8:53

ogbatobanana.duckdns.org

dns

70 B
86 B
1
1

DNS Request

ogbatobanana.duckdns.org

DNS Response

45.89.55.76
8.8.8.8:53

76.55.89.45.in-addr.arpa

dns

70 B
104 B
1
1

DNS Request

76.55.89.45.in-addr.arpa

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
280B

MD5
6c31327026c1e9a2f5134f961be9e9e9

SHA1
76231710cc5510da38fe2583626ea571bcab9543

SHA256
4461f6b7fd5a45fa5e32e1c71df6a2b2f39ae653a37d6741a5c9ecc4b3fde334

SHA512
e6f747f926a242517152235662aec2f3601917a99216b1137320a395a1c2a5ad0fe6df70e9cf54def42b954fa008bec3397a5099d77f3a4cc6a5c3ba8bd919f1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\DualEngine\SiteList-Enterprise.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

Filesize
4KB

MD5
df06198024b005032b2f891534985522

SHA1
6ff096447eb7be6d4559d2795baeb58eea44701f

SHA256
f34a4d2b7cb774ca69845adf225343a7135aac9eea7137cb169508bcb9789b00

SHA512
f1e44019e5f508b7a05c3852123b56d7510510a370f2c2ac93c7127d524817f6fa44c2cd83b5ffee4c675db77d149de87467be20b3e533420a6fd1382df189e7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\SCT Auditing Pending Reports

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Sdch Dictionaries

Filesize
40B

MD5
20d4b8fa017a12a108c87f540836e250

SHA1
1ac617fac131262b6d3ce1f52f5907e31d5f6f00

SHA256
6028bd681dbf11a0a58dde8a0cd884115c04caa59d080ba51bde1b086ce0079d

SHA512
507b2b8a8a168ff8f2bdafa5d9d341c44501a5f17d9f63f3d43bd586bc9e8ae33221887869fa86f845b7d067cb7d2a7009efd71dda36e03a40a74fee04b86856

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
13KB

MD5
6bf1d221eebe4717b03e5a5bd15f3061

SHA1
f71db0d5cdd960100cb5e6dbfc4f4aace09632c2

SHA256
f5450f6dc23e11923e7831ce9060a5e913fd2704ea7a340e30142da515167806

SHA512
3d7c7207c5f10146518024a07af30de37eaa2f8b5fbe11eda5634724b16f4a187cf18615f4b98fd382bf877d0a6f4ee1c5bdffd38e93ddea296032e6413cf364

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

Filesize
30KB

MD5
c1b65effb924e96abb0f85b131458bcc

SHA1
9a9af7ee3332925079760702966de3b67318eea8

SHA256
cc13d6410b18cff6e99f14abb07ec5e8fdf386f811fc8c8aa7500f6862351c0e

SHA512
796cb45fa702cb19a5ab4bf96215e6283272ee7690258a62d53ad9569f358b2fa52004be773ea6b83d18eb59541ef7e9d7b2c9630740cd15d5e2378939d46a83

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
82KB

MD5
9b74dad242c26fe0ff5691e723d7c333

SHA1
70f7157039eab1cf093c4c45ba579b8cc47e8943

SHA256
4aef7d420f50b09116cafc7039898eeb90d0c9ffabffe7f1b2c140c0de4bedde

SHA512
2a38fc41a7e8ccb7e047171876a3baa9ed394dcd3e3f26a226262ca9f53d97ef8461ea7a19ff19d17e5eca5d6850c44c9a4000060ec1ab230454a2a6fe08f7ff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
92KB

MD5
cb5264a938a44d22b0b3c074e3de0241

SHA1
cb964315ae8473b7af5e5f6efa0d02217a090888

SHA256
67de386354581f62d756f276c37798cc8e3d1fd9638ee9f0889b2bb0bcd32159

SHA512
67f79c64e15f67ab2374146dae037c20903811ade3d83282fa93350b9e1d2c6a0e98ffba3167ffaa4c7b0d33dfbda4b69ada3414ba884184b9fb0b8bcdc8f1d3

Download Submit
memory/416-141-0x0000000000410000-0x0000000000492000-memory.dmp

Filesize
520KB

Download
memory/416-136-0x00000000001D0000-0x00000000001D1000-memory.dmp

Filesize
4KB

Download
memory/416-138-0x0000000000410000-0x0000000000492000-memory.dmp

Filesize
520KB

Download
memory/416-139-0x0000000000410000-0x0000000000492000-memory.dmp

Filesize
520KB

Download
memory/416-142-0x0000000000410000-0x0000000000492000-memory.dmp

Filesize
520KB

Download
memory/416-144-0x0000000000410000-0x0000000000492000-memory.dmp

Filesize
520KB

Download
memory/416-145-0x0000000000410000-0x0000000000492000-memory.dmp

Filesize
520KB

Download
memory/3900-135-0x0000000010000000-0x0000000012DB3000-memory.dmp

Filesize
45.7MB

Download
memory/3900-134-0x0000000010000000-0x0000000012DB3000-memory.dmp

Filesize
45.7MB

Download
memory/3900-143-0x0000000010000000-0x0000000012DB3000-memory.dmp

Filesize
45.7MB

Download

Resubmissions

Analysis

Sharing

General

Malware Config

Extracted

Signatures

Processes

Network

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request