Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

198724d2ab...8.html

windows7-x64

1

198724d2ab...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    143s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/06/2024, 08:55 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    198724d2abdc935e75d220d67fec3586_JaffaCakes118.html

  • Size

    53KB

  • MD5

    198724d2abdc935e75d220d67fec3586

  • SHA1

    0404611b048f8df584d65c8612800d0c6424395a

  • SHA256

    9654187ffb63301b73e28c7aa294cab7c06faefc90b7dad7a895f96990413384

  • SHA512

    3964c4c6f5a093271fa592ef30496d693cd8e03feb5ca766474af0d97bc45f72a6eac1a4c6114ce38ce5ff1f78d478ca09bd4c4e538feb3f96f5ada9402a24fe

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUvrunlYQ63Nj+q5VyvR0w2AzTICbbuoN/t9M/dNwIUEDmD/:CkgUiIakTqGivi+PyUvrunlYQ63Nj+qA

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\198724d2abdc935e75d220d67fec3586_JaffaCakes118.html
    1⤵
      PID:4596
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=4896 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1
      1⤵
        PID:3652
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=4608 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1
        1⤵
          PID:3944
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=5720 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:8
          1⤵
            PID:2320
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=3952 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1
            1⤵
              PID:1748
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=5460 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:1
              1⤵
                PID:2172
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=5860 --field-trial-handle=2356,i,13261194862334667799,7441241219475888176,262144 --variations-seed-version /prefetch:8
                1⤵
                  PID:3980

                Network

                • flag-us
                  DNS
                  business.bing.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  business.bing.com
                  IN A
                  Response
                  business.bing.com
                  IN CNAME
                  business-bing-com.b-0005.b-msedge.net
                  business-bing-com.b-0005.b-msedge.net
                  IN CNAME
                  b-0005.b-msedge.net
                  b-0005.b-msedge.net
                  IN A
                  13.107.6.158
                • flag-us
                  DNS
                  business.bing.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  business.bing.com
                  IN Unknown
                  Response
                  business.bing.com
                  IN CNAME
                  business-bing-com.b-0005.b-msedge.net
                • flag-us
                  DNS
                  nav-edge.smartscreen.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  nav-edge.smartscreen.microsoft.com
                  IN A
                  Response
                  nav-edge.smartscreen.microsoft.com
                  IN CNAME
                  tm-prod-wd-csp-edge.trafficmanager.net
                  tm-prod-wd-csp-edge.trafficmanager.net
                  IN CNAME
                  prod-agic-uw-2.ukwest.cloudapp.azure.com
                  prod-agic-uw-2.ukwest.cloudapp.azure.com
                  IN A
                  51.140.244.186
                • flag-us
                  DNS
                  nav-edge.smartscreen.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  nav-edge.smartscreen.microsoft.com
                  IN Unknown
                  Response
                  nav-edge.smartscreen.microsoft.com
                  IN CNAME
                  tm-prod-wd-csp-edge.trafficmanager.net
                  tm-prod-wd-csp-edge.trafficmanager.net
                  IN CNAME
                  prod-agic-us-2.uksouth.cloudapp.azure.com
                • flag-us
                  DNS
                  bzib.nelreports.net
                  Remote address:
                  8.8.8.8:53
                  Request
                  bzib.nelreports.net
                  IN A
                  Response
                  bzib.nelreports.net
                  IN CNAME
                  bzib.nelreports.net.akamaized.net
                  bzib.nelreports.net.akamaized.net
                  IN CNAME
                  a416.dscd.akamai.net
                  a416.dscd.akamai.net
                  IN A
                  184.31.15.40
                  a416.dscd.akamai.net
                  IN A
                  184.31.15.35
                • flag-us
                  DNS
                  bzib.nelreports.net
                  Remote address:
                  8.8.8.8:53
                  Request
                  bzib.nelreports.net
                  IN Unknown
                  Response
                  bzib.nelreports.net
                  IN CNAME
                  bzib.nelreports.net.akamaized.net
                  bzib.nelreports.net.akamaized.net
                  IN CNAME
                  a416.dscd.akamai.net
                • flag-us
                  DNS
                  www.wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  www.wintotal-forum.de
                  IN A
                  Response
                  www.wintotal-forum.de
                  IN A
                  195.15.233.57
                • flag-us
                  DNS
                  www.wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  www.wintotal-forum.de
                  IN Unknown
                  Response
                • flag-us
                  DNS
                  wintotal.de.intellitxt.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal.de.intellitxt.com
                  IN A
                  Response
                • flag-us
                  DNS
                  wintotal.de.intellitxt.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal.de.intellitxt.com
                  IN Unknown
                  Response
                • flag-us
                  DNS
                  www.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  www.microsoft.com
                  IN A
                  Response
                  www.microsoft.com
                  IN CNAME
                  www.microsoft.com-c-3.edgekey.net
                  www.microsoft.com-c-3.edgekey.net
                  IN CNAME
                  www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                  www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                  IN CNAME
                  e13678.dscb.akamaiedge.net
                  e13678.dscb.akamaiedge.net
                  IN A
                  104.90.25.175
                • flag-us
                  DNS
                  www.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  www.microsoft.com
                  IN A
                  Response
                  www.microsoft.com
                  IN CNAME
                  www.microsoft.com-c-3.edgekey.net
                  www.microsoft.com-c-3.edgekey.net
                  IN CNAME
                  www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                  www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                  IN CNAME
                  e13678.dscb.akamaiedge.net
                  e13678.dscb.akamaiedge.net
                  IN A
                  104.90.25.175
                • flag-us
                  DNS
                  www.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  www.microsoft.com
                  IN Unknown
                  Response
                  www.microsoft.com
                  IN CNAME
                  www.microsoft.com-c-3.edgekey.net
                  www.microsoft.com-c-3.edgekey.net
                  IN CNAME
                  www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                  www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                  IN CNAME
                  e13678.dscb.akamaiedge.net
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/style.css?fin11
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/style.css?fin11 HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: text/css,*/*;q=0.1
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:35 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/style.css?fin11
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/default/spellcheck.js
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/default/spellcheck.js HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: */*
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/default/spellcheck.js
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/default/script.js?fin11
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/default/script.js?fin11 HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: */*
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:35 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/default/script.js?fin11
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/topic/normal_post.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/topic/normal_post.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/topic/normal_post.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Glossar/glossar-js.php
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Glossar/glossar-js.php HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: */*
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:35 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Glossar/glossar-js.php
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/filter.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/filter.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/filter.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/WT/wt-logo.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/WT/wt-logo.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:35 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/WT/wt-logo.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/upshrink.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/upshrink.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:35 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/upshrink.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/default/sha1.js
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/default/sha1.js HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: */*
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:35 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/default/sha1.js
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/post/solved.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/post/solved.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/post/solved.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/post/xx.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/post/xx.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/post/xx.gif
                • flag-us
                  DNS
                  wintotal.de.intellitxt.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal.de.intellitxt.com
                  IN Unknown
                  Response
                • flag-us
                  DNS
                  76.234.34.23.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  76.234.34.23.in-addr.arpa
                  IN PTR
                  Response
                  76.234.34.23.in-addr.arpa
                  IN PTR
                  a23-34-234-76deploystaticakamaitechnologiescom
                • flag-us
                  DNS
                  186.244.140.51.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  186.244.140.51.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  wintotal.de.intellitxt.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal.de.intellitxt.com
                  IN A
                  Response
                • flag-us
                  DNS
                  www.wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  www.wintotal-forum.de
                  IN A
                  Response
                  www.wintotal-forum.de
                  IN A
                  195.15.233.57
                • flag-us
                  DNS
                  www.wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  www.wintotal-forum.de
                  IN Unknown
                  Response
                • flag-us
                  DNS
                  wintotal.de.intellitxt.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal.de.intellitxt.com
                  IN A
                  Response
                • flag-us
                  DNS
                  wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal-forum.de
                  IN A
                  Response
                  wintotal-forum.de
                  IN A
                  195.15.233.57
                • flag-us
                  DNS
                  wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal-forum.de
                  IN Unknown
                  Response
                • flag-us
                  DNS
                  www.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  www.microsoft.com
                  IN A
                  Response
                  www.microsoft.com
                  IN CNAME
                  www.microsoft.com-c-3.edgekey.net
                  www.microsoft.com-c-3.edgekey.net
                  IN CNAME
                  www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                  www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net
                  IN CNAME
                  e13678.dscb.akamaiedge.net
                  e13678.dscb.akamaiedge.net
                  IN A
                  104.90.25.175
                • flag-us
                  DNS
                  adsrv.wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  adsrv.wintotal-forum.de
                  IN A
                  Response
                • flag-us
                  DNS
                  adsrv.wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  adsrv.wintotal-forum.de
                  IN Unknown
                  Response
                • flag-us
                  DNS
                  adsrv.wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  adsrv.wintotal-forum.de
                  IN A
                  Response
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/default/xml_topic.js
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/default/xml_topic.js HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: */*
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/default/xml_topic.js
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/star.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/star.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/star.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/stargmod.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/stargmod.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/stargmod.gif
                • flag-us
                  DNS
                  wintotal.de.intellitxt.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal.de.intellitxt.com
                  IN A
                  Response
                • flag-us
                  DNS
                  wintotal.de.intellitxt.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal.de.intellitxt.com
                  IN Unknown
                  Response
                • flag-us
                  DNS
                  adsrv.wintotal-forum.de
                  Remote address:
                  8.8.8.8:53
                  Request
                  adsrv.wintotal-forum.de
                  IN A
                  Response
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/topic_starter.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/topic_starter.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/topic_starter.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/useroff.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/useroff.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/useroff.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Smileys/smilies_smf/shocked.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Smileys/smilies_smf/shocked.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:36 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Smileys/smilies_smf/shocked.gif
                • flag-us
                  DNS
                  wintotal.de.intellitxt.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal.de.intellitxt.com
                  IN A
                  Response
                • flag-us
                  DNS
                  wintotal.de.intellitxt.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wintotal.de.intellitxt.com
                  IN Unknown
                  Response
                • flag-us
                  DNS
                  57.233.15.195.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  57.233.15.195.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  175.25.90.104.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  175.25.90.104.in-addr.arpa
                  IN PTR
                  Response
                  175.25.90.104.in-addr.arpa
                  IN PTR
                  a104-90-25-175deploystaticakamaitechnologiescom
                • flag-us
                  DNS
                  40.15.31.184.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  40.15.31.184.in-addr.arpa
                  IN PTR
                  Response
                  40.15.31.184.in-addr.arpa
                  IN PTR
                  a184-31-15-40deploystaticakamaitechnologiescom
                • flag-us
                  DNS
                  c.s-microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  c.s-microsoft.com
                  IN A
                  Response
                  c.s-microsoft.com
                  IN CNAME
                  c-s.cms.ms.akadns.net
                  c-s.cms.ms.akadns.net
                  IN CNAME
                  c.s-microsoft.com-c.edgekey.net
                  c.s-microsoft.com-c.edgekey.net
                  IN CNAME
                  e13678.dscg.akamaiedge.net
                  e13678.dscg.akamaiedge.net
                  IN A
                  23.34.233.128
                • flag-us
                  DNS
                  c.s-microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  c.s-microsoft.com
                  IN Unknown
                  Response
                  c.s-microsoft.com
                  IN CNAME
                  c-s.cms.ms.akadns.net
                  c-s.cms.ms.akadns.net
                  IN CNAME
                  c.s-microsoft.com-c.edgekey.net
                  c.s-microsoft.com-c.edgekey.net
                  IN CNAME
                  e13678.dscg.akamaiedge.net
                • flag-us
                  DNS
                  edgestatic.azureedge.net
                  Remote address:
                  8.8.8.8:53
                  Request
                  edgestatic.azureedge.net
                  IN A
                  Response
                  edgestatic.azureedge.net
                  IN CNAME
                  edgestatic.afd.azureedge.net
                  edgestatic.afd.azureedge.net
                  IN CNAME
                  azureedge-t-prod.trafficmanager.net
                  azureedge-t-prod.trafficmanager.net
                  IN CNAME
                  shed.dual-low.s-part-0036.t-0009.t-msedge.net
                  shed.dual-low.s-part-0036.t-0009.t-msedge.net
                  IN CNAME
                  azurefd-t-fb-prod.trafficmanager.net
                  azurefd-t-fb-prod.trafficmanager.net
                  IN CNAME
                  dual.s-part-0036.t-0009.fb-t-msedge.net
                  dual.s-part-0036.t-0009.fb-t-msedge.net
                  IN CNAME
                  s-part-0036.t-0009.fb-t-msedge.net
                  s-part-0036.t-0009.fb-t-msedge.net
                  IN A
                  13.107.253.64
                • flag-us
                  DNS
                  edgestatic.azureedge.net
                  Remote address:
                  8.8.8.8:53
                  Request
                  edgestatic.azureedge.net
                  IN Unknown
                  Response
                  edgestatic.azureedge.net
                  IN CNAME
                  edgestatic.afd.azureedge.net
                  edgestatic.afd.azureedge.net
                  IN CNAME
                  azureedge-t-prod.trafficmanager.net
                  azureedge-t-prod.trafficmanager.net
                  IN CNAME
                  shed.dual-low.s-part-0036.t-0009.t-msedge.net
                  shed.dual-low.s-part-0036.t-0009.t-msedge.net
                  IN CNAME
                  azurefd-t-fb-prod.trafficmanager.net
                  azurefd-t-fb-prod.trafficmanager.net
                  IN CNAME
                  dual.s-part-0036.t-0009.fb-t-msedge.net
                  dual.s-part-0036.t-0009.fb-t-msedge.net
                  IN CNAME
                  s-part-0036.t-0009.fb-t-msedge.net
                • flag-us
                  DNS
                  183.142.211.20.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  183.142.211.20.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  249.197.17.2.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  249.197.17.2.in-addr.arpa
                  IN PTR
                  Response
                  249.197.17.2.in-addr.arpa
                  IN PTR
                  a2-17-197-249deploystaticakamaitechnologiescom
                • flag-us
                  DNS
                  4.159.190.20.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  4.159.190.20.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  95.221.229.192.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  95.221.229.192.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  73.31.126.40.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  73.31.126.40.in-addr.arpa
                  IN PTR
                  Response
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/Female.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/Female.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:51 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/Female.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/Male.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/Male.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:56 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/Male.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/www_sm.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/www_sm.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:51 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/www_sm.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Smileys/smilies_smf/cry.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Smileys/smilies_smf/cry.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:56 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Smileys/smilies_smf/cry.gif
                • flag-us
                  DNS
                  nw-umwatson.events.data.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  nw-umwatson.events.data.microsoft.com
                  IN A
                  Response
                  nw-umwatson.events.data.microsoft.com
                  IN CNAME
                  blobcollector.events.data.trafficmanager.net
                  blobcollector.events.data.trafficmanager.net
                  IN CNAME
                  onedsblobprdcus16.centralus.cloudapp.azure.com
                  onedsblobprdcus16.centralus.cloudapp.azure.com
                  IN A
                  104.208.16.94
                • flag-us
                  POST
                  https://nw-umwatson.events.data.microsoft.com/Telemetry.Request
                  Remote address:
                  104.208.16.94:443
                  Request
                  POST /Telemetry.Request HTTP/1.1
                  Connection: Keep-Alive
                  Content-Type: application/xml
                  User-Agent: Crashpad/0.8.0 WinHTTP/10.0.19041.1151 Windows_NT/10.0.19041.1202 (x64)
                  MSA_DeviceTicket: t=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&p=
                  Content-Length: 3685
                  Host: nw-umwatson.events.data.microsoft.com
                  Response
                  HTTP/1.1 200 200 OK
                  Content-Length: 634
                  Content-Type: text/xml
                  Server: Microsoft-HTTPAPI/2.0
                  Strict-Transport-Security: max-age=31536000
                  Date: Fri, 28 Jun 2024 08:55:54 GMT
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Smileys/smilies_smf/cool.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Smileys/smilies_smf/cool.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:56 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Smileys/smilies_smf/cool.gif
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/default/print.css?fin11
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/default/print.css?fin11 HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: text/css,*/*;q=0.1
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:56 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/default/print.css?fin11
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/Themes/WT2/images/WT/nav_unten.gif
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /Themes/WT2/images/WT/nav_unten.gif HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:55:56 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/Themes/WT2/images/WT/nav_unten.gif
                • flag-us
                  DNS
                  94.16.208.104.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  94.16.208.104.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  228.249.119.40.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  228.249.119.40.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  241.150.49.20.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  241.150.49.20.in-addr.arpa
                  IN PTR
                  Response
                • flag-ch
                  GET
                  http://www.wintotal-forum.de/favicon.ico
                  Remote address:
                  195.15.233.57:80
                  Request
                  GET /favicon.ico HTTP/1.1
                  Host: www.wintotal-forum.de
                  Connection: keep-alive
                  User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0
                  DNT: 1
                  Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                  Accept-Encoding: gzip, deflate
                  Accept-Language: en-US,en;q=0.9
                  Response
                  HTTP/1.1 301 Moved Permanently
                  Connection: Keep-Alive
                  Content-Type: text/html
                  Content-Length: 706
                  Date: Fri, 28 Jun 2024 08:56:03 GMT
                  Server: LiteSpeed
                  Location: https://www.wintotal-forum.de/favicon.ico
                • flag-us
                  DNS
                  wcpstatic.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wcpstatic.microsoft.com
                  IN A
                • flag-us
                  DNS
                  wcpstatic.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wcpstatic.microsoft.com
                  IN Unknown
                • flag-us
                  DNS
                  86.23.85.13.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  86.23.85.13.in-addr.arpa
                  IN PTR
                • flag-us
                  DNS
                  86.23.85.13.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  86.23.85.13.in-addr.arpa
                  IN PTR
                • flag-us
                  DNS
                  86.23.85.13.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  86.23.85.13.in-addr.arpa
                  IN PTR
                • flag-us
                  DNS
                  86.23.85.13.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  86.23.85.13.in-addr.arpa
                  IN PTR
                • flag-us
                  DNS
                  86.23.85.13.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  86.23.85.13.in-addr.arpa
                  IN PTR
                • flag-us
                  DNS
                  wcpstatic.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wcpstatic.microsoft.com
                  IN A
                • flag-us
                  DNS
                  wcpstatic.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wcpstatic.microsoft.com
                  IN Unknown
                • flag-us
                  DNS
                  wcpstatic.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wcpstatic.microsoft.com
                  IN A
                  Response
                  wcpstatic.microsoft.com
                  IN CNAME
                  consentdeliveryfd.azurefd.net
                  consentdeliveryfd.azurefd.net
                  IN CNAME
                  firstparty-azurefd-prod.trafficmanager.net
                  firstparty-azurefd-prod.trafficmanager.net
                  IN CNAME
                  shed.dual-low.s-part-0036.t-0009.t-msedge.net
                  shed.dual-low.s-part-0036.t-0009.t-msedge.net
                  IN CNAME
                  s-part-0036.t-0009.t-msedge.net
                  s-part-0036.t-0009.t-msedge.net
                  IN A
                  13.107.246.64
                • flag-us
                  DNS
                  wcpstatic.microsoft.com
                  Remote address:
                  8.8.8.8:53
                  Request
                  wcpstatic.microsoft.com
                  IN A
                • flag-us
                  DNS
                  56.126.166.20.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  56.126.166.20.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  56.126.166.20.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  56.126.166.20.in-addr.arpa
                  IN PTR
                • flag-us
                  DNS
                  56.126.166.20.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  56.126.166.20.in-addr.arpa
                  IN PTR
                • flag-us
                  DNS
                  172.214.232.199.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  172.214.232.199.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  172.214.232.199.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  172.214.232.199.in-addr.arpa
                  IN PTR
                • flag-us
                  DNS
                  218.83.221.88.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  218.83.221.88.in-addr.arpa
                  IN PTR
                  Response
                  218.83.221.88.in-addr.arpa
                  IN PTR
                  a88-221-83-218deploystaticakamaitechnologiescom
                • flag-us
                  DNS
                  240.197.17.2.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  240.197.17.2.in-addr.arpa
                  IN PTR
                  Response
                  240.197.17.2.in-addr.arpa
                  IN PTR
                  a2-17-197-240deploystaticakamaitechnologiescom
                • flag-us
                  DNS
                  11.227.111.52.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  11.227.111.52.in-addr.arpa
                  IN PTR
                  Response
                • flag-us
                  DNS
                  202.83.221.88.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  202.83.221.88.in-addr.arpa
                  IN PTR
                  Response
                  202.83.221.88.in-addr.arpa
                  IN PTR
                  a88-221-83-202deploystaticakamaitechnologiescom
                • flag-us
                  DNS
                  9.173.189.20.in-addr.arpa
                  Remote address:
                  8.8.8.8:53
                  Request
                  9.173.189.20.in-addr.arpa
                  IN PTR
                  Response
                • 13.107.6.158:443
                  business.bing.com
                  tls
                  2.5kB
                   10.2kB
                   19
                  24
                • 51.140.244.186:443
                  nav-edge.smartscreen.microsoft.com
                  tls
                  12.6kB
                   14.1kB
                   34
                  37
                • 13.107.6.158:443
                  business.bing.com
                  tls
                  1.9kB
                   8.5kB
                   12
                  15
                • 184.31.15.40:443
                  bzib.nelreports.net
                  tls
                  1.1kB
                   4.9kB
                   10
                  12
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Themes/default/spellcheck.js
                  http
                  1.0kB
                   2.1kB
                   8
                  6

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/style.css?fin11

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/default/spellcheck.js

                  HTTP Response

                  301
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Themes/WT2/images/topic/normal_post.gif
                  http
                  1.1kB
                   2.1kB
                   8
                  6

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/default/script.js?fin11

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/topic/normal_post.gif

                  HTTP Response

                  301
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Themes/WT2/images/filter.gif
                  http
                  1.1kB
                   2.1kB
                   8
                  6

                  HTTP Request

                  GET http://www.wintotal-forum.de/Glossar/glossar-js.php

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/filter.gif

                  HTTP Response

                  301
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Themes/WT2/images/post/xx.gif
                  http
                  2.4kB
                   5.1kB
                   13
                  9

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/WT/wt-logo.gif

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/upshrink.gif

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/default/sha1.js

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/post/solved.gif

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/post/xx.gif

                  HTTP Response

                  301
                • 104.90.25.175:443
                  www.microsoft.com
                  tls
                  2.8kB
                   22.9kB
                   26
                  37
                • 142.250.178.10:443
                  46 B
                   40 B
                   1
                  1
                • 195.15.233.57:443
                  www.wintotal-forum.de
                  tls
                  1.0kB
                   3.6kB
                   9
                  11
                • 195.15.233.57:443
                  www.wintotal-forum.de
                  tls
                  999 B
                   3.4kB
                   8
                  7
                • 195.15.233.57:443
                  www.wintotal-forum.de
                  tls
                  967 B
                   3.4kB
                   8
                  7
                • 195.15.233.57:443
                  www.wintotal-forum.de
                  tls
                  16.6kB
                   276.7kB
                   262
                  250
                • 184.31.15.40:443
                  bzib.nelreports.net
                  tls
                  2.5kB
                   6.0kB
                   12
                  15
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Themes/WT2/images/stargmod.gif
                  http
                  1.6kB
                   3.1kB
                   11
                  8

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/default/xml_topic.js

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/star.gif

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/stargmod.gif

                  HTTP Response

                  301
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Smileys/smilies_smf/shocked.gif
                  http
                  1.6kB
                   3.2kB
                   10
                  8

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/topic_starter.gif

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/useroff.gif

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Smileys/smilies_smf/shocked.gif

                  HTTP Response

                  301
                • 13.107.253.64:443
                  edgestatic.azureedge.net
                  tls
                  1.8kB
                   7.9kB
                   13
                  14
                • 13.107.253.64:443
                  edgestatic.azureedge.net
                  tls
                  94.7kB
                   4.7MB
                   1944
                  3409
                • 13.107.253.64:443
                  edgestatic.azureedge.net
                  tls
                  1.8kB
                   7.9kB
                   13
                  14
                • 23.44.234.16:80
                  260 B
                   5
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Themes/WT2/images/Male.gif
                  http
                  1.2kB
                   2.1kB
                   9
                  6

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/Female.gif

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/Male.gif

                  HTTP Response

                  301
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Smileys/smilies_smf/cry.gif
                  http
                  1.2kB
                   2.1kB
                   9
                  6

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/www_sm.gif

                  HTTP Response

                  301

                  HTTP Request

                  GET http://www.wintotal-forum.de/Smileys/smilies_smf/cry.gif

                  HTTP Response

                  301
                • 104.208.16.94:443
                  https://nw-umwatson.events.data.microsoft.com/Telemetry.Request
                  tls, http
                  5.9kB
                   7.6kB
                   13
                  11

                  HTTP Request

                  POST https://nw-umwatson.events.data.microsoft.com/Telemetry.Request

                  HTTP Response

                  200
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Smileys/smilies_smf/cool.gif
                  http
                  707 B
                   1.1kB
                   7
                  5

                  HTTP Request

                  GET http://www.wintotal-forum.de/Smileys/smilies_smf/cool.gif

                  HTTP Response

                  301
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Themes/default/print.css?fin11
                  http
                  663 B
                   1.1kB
                   7
                  5

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/default/print.css?fin11

                  HTTP Response

                  301
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/Themes/WT2/images/WT/nav_unten.gif
                  http
                  713 B
                   1.2kB
                   7
                  5

                  HTTP Request

                  GET http://www.wintotal-forum.de/Themes/WT2/images/WT/nav_unten.gif

                  HTTP Response

                  301
                • 195.15.233.57:80
                  http://www.wintotal-forum.de/favicon.ico
                  http
                  644 B
                   1.1kB
                   6
                  5

                  HTTP Request

                  GET http://www.wintotal-forum.de/favicon.ico

                  HTTP Response

                  301
                • 195.15.233.57:80
                  wintotal-forum.de
                  496 B
                   144 B
                   10
                  3
                • 13.107.253.64:443
                  edgestatic.azureedge.net
                  52 B
                   1
                • 13.107.253.64:443
                  edgestatic.azureedge.net
                  tls
                  7.8kB
                   272.3kB
                   123
                  210
                • 13.107.253.64:443
                  edgestatic.azureedge.net
                  tls
                  2.0kB
                   8.1kB
                   16
                  18
                • 13.107.253.64:443
                  edgestatic.azureedge.net
                  46 B
                   40 B
                   1
                  1
                • 13.107.246.64:443
                  wcpstatic.microsoft.com
                  tls
                  5.4kB
                   91.1kB
                   73
                  78
                • 88.221.83.218:443
                  www.bing.com
                  tls
                  1.0kB
                   5.1kB
                   9
                  12
                • 88.221.83.202:443
                  www.bing.com
                  tls
                  1.3kB
                   946 B
                   7
                  8
                • 8.8.8.8:53
                  business.bing.com
                  dns
                  63 B
                   144 B
                   1
                  1

                  DNS Request

                  business.bing.com

                  DNS Response

                  13.107.6.158

                • 8.8.8.8:53
                  business.bing.com
                  dns
                  63 B
                   171 B
                   1
                  1

                  DNS Request

                  business.bing.com

                • 8.8.8.8:53
                  nav-edge.smartscreen.microsoft.com
                  dns
                  80 B
                   199 B
                   1
                  1

                  DNS Request

                  nav-edge.smartscreen.microsoft.com

                  DNS Response

                  51.140.244.186

                • 8.8.8.8:53
                  nav-edge.smartscreen.microsoft.com
                  dns
                  80 B
                   244 B
                   1
                  1

                  DNS Request

                  nav-edge.smartscreen.microsoft.com

                • 8.8.8.8:53
                  bzib.nelreports.net
                  dns
                  65 B
                   172 B
                   1
                  1

                  DNS Request

                  bzib.nelreports.net

                  DNS Response

                  184.31.15.40
                  184.31.15.35

                • 8.8.8.8:53
                  bzib.nelreports.net
                  dns
                  65 B
                   204 B
                   1
                  1

                  DNS Request

                  bzib.nelreports.net

                • 8.8.8.8:53
                  www.wintotal-forum.de
                  dns
                  67 B
                   83 B
                   1
                  1

                  DNS Request

                  www.wintotal-forum.de

                  DNS Response

                  195.15.233.57

                • 8.8.8.8:53
                  www.wintotal-forum.de
                  dns
                  67 B
                   130 B
                   1
                  1

                  DNS Request

                  www.wintotal-forum.de

                • 8.8.8.8:53
                  wintotal.de.intellitxt.com
                  dns
                  72 B
                   72 B
                   1
                  1

                  DNS Request

                  wintotal.de.intellitxt.com

                • 8.8.8.8:53
                  wintotal.de.intellitxt.com
                  dns
                  72 B
                   72 B
                   1
                  1

                  DNS Request

                  wintotal.de.intellitxt.com

                • 8.8.8.8:53
                  www.microsoft.com
                  dns
                  63 B
                   230 B
                   1
                  1

                  DNS Request

                  www.microsoft.com

                  DNS Response

                  104.90.25.175

                • 8.8.8.8:53
                  www.microsoft.com
                  dns
                  63 B
                   230 B
                   1
                  1

                  DNS Request

                  www.microsoft.com

                  DNS Response

                  104.90.25.175

                • 8.8.8.8:53
                  www.microsoft.com
                  dns
                  63 B
                   275 B
                   1
                  1

                  DNS Request

                  www.microsoft.com

                • 8.8.8.8:53
                  wintotal.de.intellitxt.com
                  dns
                  72 B
                   72 B
                   1
                  1

                  DNS Request

                  wintotal.de.intellitxt.com

                • 8.8.8.8:53
                  76.234.34.23.in-addr.arpa
                  dns
                  71 B
                   135 B
                   1
                  1

                  DNS Request

                  76.234.34.23.in-addr.arpa

                • 8.8.8.8:53
                  186.244.140.51.in-addr.arpa
                  dns
                  73 B
                   147 B
                   1
                  1

                  DNS Request

                  186.244.140.51.in-addr.arpa

                • 8.8.8.8:53
                  wintotal.de.intellitxt.com
                  dns
                  72 B
                   72 B
                   1
                  1

                  DNS Request

                  wintotal.de.intellitxt.com

                • 8.8.8.8:53
                  www.wintotal-forum.de
                  dns
                  67 B
                   83 B
                   1
                  1

                  DNS Request

                  www.wintotal-forum.de

                  DNS Response

                  195.15.233.57

                • 8.8.8.8:53
                  www.wintotal-forum.de
                  dns
                  67 B
                   130 B
                   1
                  1

                  DNS Request

                  www.wintotal-forum.de

                • 8.8.8.8:53
                  wintotal.de.intellitxt.com
                  dns
                  72 B
                   72 B
                   1
                  1

                  DNS Request

                  wintotal.de.intellitxt.com

                • 8.8.8.8:53
                  wintotal-forum.de
                  dns
                  63 B
                   79 B
                   1
                  1

                  DNS Request

                  wintotal-forum.de

                  DNS Response

                  195.15.233.57

                • 8.8.8.8:53
                  wintotal-forum.de
                  dns
                  63 B
                   126 B
                   1
                  1

                  DNS Request

                  wintotal-forum.de

                • 8.8.8.8:53
                  www.microsoft.com
                  dns
                  63 B
                   230 B
                   1
                  1

                  DNS Request

                  www.microsoft.com

                  DNS Response

                  104.90.25.175

                • 8.8.8.8:53
                  adsrv.wintotal-forum.de
                  dns
                  69 B
                   132 B
                   1
                  1

                  DNS Request

                  adsrv.wintotal-forum.de

                • 8.8.8.8:53
                  adsrv.wintotal-forum.de
                  dns
                  69 B
                   132 B
                   1
                  1

                  DNS Request

                  adsrv.wintotal-forum.de

                • 8.8.8.8:53
                  adsrv.wintotal-forum.de
                  dns
                  69 B
                   132 B
                   1
                  1

                  DNS Request

                  adsrv.wintotal-forum.de

                • 8.8.8.8:53
                  wintotal.de.intellitxt.com
                  dns
                  72 B
                   72 B
                   1
                  1

                  DNS Request

                  wintotal.de.intellitxt.com

                • 8.8.8.8:53
                  wintotal.de.intellitxt.com
                  dns
                  72 B
                   72 B
                   1
                  1

                  DNS Request

                  wintotal.de.intellitxt.com

                • 8.8.8.8:53
                  adsrv.wintotal-forum.de
                  dns
                  69 B
                   132 B
                   1
                  1

                  DNS Request

                  adsrv.wintotal-forum.de

                • 8.8.8.8:53
                  wintotal.de.intellitxt.com
                  dns
                  72 B
                   72 B
                   1
                  1

                  DNS Request

                  wintotal.de.intellitxt.com

                • 8.8.8.8:53
                  wintotal.de.intellitxt.com
                  dns
                  72 B
                   72 B
                   1
                  1

                  DNS Request

                  wintotal.de.intellitxt.com

                • 8.8.8.8:53
                  175.25.90.104.in-addr.arpa
                  dns
                  72 B
                   137 B
                   1
                  1

                  DNS Request

                  175.25.90.104.in-addr.arpa

                • 8.8.8.8:53
                  57.233.15.195.in-addr.arpa
                  dns
                  72 B
                   136 B
                   1
                  1

                  DNS Request

                  57.233.15.195.in-addr.arpa

                • 8.8.8.8:53
                  40.15.31.184.in-addr.arpa
                  dns
                  71 B
                   135 B
                   1
                  1

                  DNS Request

                  40.15.31.184.in-addr.arpa

                • 8.8.8.8:53
                  c.s-microsoft.com
                  dns
                  63 B
                   193 B
                   1
                  1

                  DNS Request

                  c.s-microsoft.com

                  DNS Response

                  23.34.233.128

                • 8.8.8.8:53
                  c.s-microsoft.com
                  dns
                  63 B
                   238 B
                   1
                  1

                  DNS Request

                  c.s-microsoft.com

                • 8.8.8.8:53
                  edgestatic.azureedge.net
                  dns
                  70 B
                   313 B
                   1
                  1

                  DNS Request

                  edgestatic.azureedge.net

                  DNS Response

                  13.107.253.64

                • 8.8.8.8:53
                  edgestatic.azureedge.net
                  dns
                  70 B
                   357 B
                   1
                  1

                  DNS Request

                  edgestatic.azureedge.net

                • 8.8.8.8:53
                  183.142.211.20.in-addr.arpa
                  dns
                  73 B
                   159 B
                   1
                  1

                  DNS Request

                  183.142.211.20.in-addr.arpa

                • 8.8.8.8:53
                  249.197.17.2.in-addr.arpa
                  dns
                  71 B
                   135 B
                   1
                  1

                  DNS Request

                  249.197.17.2.in-addr.arpa

                • 8.8.8.8:53
                  4.159.190.20.in-addr.arpa
                  dns
                  71 B
                   157 B
                   1
                  1

                  DNS Request

                  4.159.190.20.in-addr.arpa

                • 8.8.8.8:53
                  95.221.229.192.in-addr.arpa
                  dns
                  73 B
                   144 B
                   1
                  1

                  DNS Request

                  95.221.229.192.in-addr.arpa

                • 8.8.8.8:53
                  73.31.126.40.in-addr.arpa
                  dns
                  71 B
                   157 B
                   1
                  1

                  DNS Request

                  73.31.126.40.in-addr.arpa

                • 8.8.8.8:53
                  nw-umwatson.events.data.microsoft.com
                  dns
                  83 B
                   214 B
                   1
                  1

                  DNS Request

                  nw-umwatson.events.data.microsoft.com

                  DNS Response

                  104.208.16.94

                • 8.8.8.8:53
                  228.249.119.40.in-addr.arpa
                  dns
                  73 B
                   159 B
                   1
                  1

                  DNS Request

                  228.249.119.40.in-addr.arpa

                • 8.8.8.8:53
                  94.16.208.104.in-addr.arpa
                  dns
                  72 B
                   146 B
                   1
                  1

                  DNS Request

                  94.16.208.104.in-addr.arpa

                • 8.8.8.8:53
                  241.150.49.20.in-addr.arpa
                  dns
                  72 B
                   158 B
                   1
                  1

                  DNS Request

                  241.150.49.20.in-addr.arpa

                • 8.8.8.8:53
                  wcpstatic.microsoft.com
                  dns
                  69 B
                   1

                  DNS Request

                  wcpstatic.microsoft.com

                • 8.8.8.8:53
                  wcpstatic.microsoft.com
                  dns
                  69 B
                   1

                  DNS Request

                  wcpstatic.microsoft.com

                • 8.8.8.8:53
                  86.23.85.13.in-addr.arpa
                  dns
                  350 B
                   5

                  DNS Request

                  86.23.85.13.in-addr.arpa

                  DNS Request

                  86.23.85.13.in-addr.arpa

                  DNS Request

                  86.23.85.13.in-addr.arpa

                  DNS Request

                  86.23.85.13.in-addr.arpa

                  DNS Request

                  86.23.85.13.in-addr.arpa

                • 8.8.8.8:53
                  wcpstatic.microsoft.com
                  dns
                  69 B
                   1

                  DNS Request

                  wcpstatic.microsoft.com

                • 8.8.8.8:53
                  wcpstatic.microsoft.com
                  dns
                  69 B
                   1

                  DNS Request

                  wcpstatic.microsoft.com

                • 224.0.0.251:5353
                  204 B
                   3
                • 8.8.8.8:53
                  wcpstatic.microsoft.com
                  dns
                  138 B
                   251 B
                   2
                  1

                  DNS Request

                  wcpstatic.microsoft.com

                  DNS Request

                  wcpstatic.microsoft.com

                  DNS Response

                  13.107.246.64

                • 8.8.8.8:53
                  56.126.166.20.in-addr.arpa
                  dns
                  216 B
                   158 B
                   3
                  1

                  DNS Request

                  56.126.166.20.in-addr.arpa

                  DNS Request

                  56.126.166.20.in-addr.arpa

                  DNS Request

                  56.126.166.20.in-addr.arpa

                • 8.8.8.8:53
                  172.214.232.199.in-addr.arpa
                  dns
                  148 B
                   128 B
                   2
                  1

                  DNS Request

                  172.214.232.199.in-addr.arpa

                  DNS Request

                  172.214.232.199.in-addr.arpa

                • 8.8.8.8:53
                  218.83.221.88.in-addr.arpa
                  dns
                  72 B
                   137 B
                   1
                  1

                  DNS Request

                  218.83.221.88.in-addr.arpa

                • 8.8.8.8:53
                  240.197.17.2.in-addr.arpa
                  dns
                  71 B
                   135 B
                   1
                  1

                  DNS Request

                  240.197.17.2.in-addr.arpa

                • 8.8.8.8:53
                  11.227.111.52.in-addr.arpa
                  dns
                  72 B
                   158 B
                   1
                  1

                  DNS Request

                  11.227.111.52.in-addr.arpa

                • 8.8.8.8:53
                  202.83.221.88.in-addr.arpa
                  dns
                  72 B
                   137 B
                   1
                  1

                  DNS Request

                  202.83.221.88.in-addr.arpa

                • 8.8.8.8:53
                  9.173.189.20.in-addr.arpa
                  dns
                  71 B
                   157 B
                   1
                  1

                  DNS Request

                  9.173.189.20.in-addr.arpa

                MITRE ATT&CK Matrix

                Replay Monitor

                Loading Replay Monitor...

                Downloads

                We care about your privacy.

                This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.