Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://connect.jumpcelibateencounter.shop/monica.raw

Overview

General Information

Sample URL:https://connect.jumpcelibateencounter.shop/monica.raw
Analysis ID:1596697
Infos:

Detection

Score:48
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus / Scanner detection for submitted sample

Classification

  • System is w10x64
  • chrome.exe (PID: 3132 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 5720 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2044 --field-trial-handle=1984,i,3258549212968151003,16967086964516044852,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • chrome.exe (PID: 6552 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://connect.jumpcelibateencounter.shop/monica.raw" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup
No configs have been found
No yara matches
No Sigma rule has matched
No Suricata rule has matched

Click to jump to signature section

Show All Signature Results

AV Detection

barindex
Source: https://connect.jumpcelibateencounter.shop/monica.rawAvira URL Cloud: detection malicious, Label: malware
Source: https://connect.jumpcelibateencounter.shop/monica.rawHTTP Parser: No favicon
Source: unknownHTTPS traffic detected: 173.222.162.32:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknownTCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknownTCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global trafficHTTP traffic detected: GET /monica.raw HTTP/1.1Host: connect.jumpcelibateencounter.shopConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficDNS traffic detected: DNS query: www.google.com
Source: global trafficDNS traffic detected: DNS query: connect.jumpcelibateencounter.shop
Source: global trafficDNS traffic detected: DNS query: a.nel.cloudflare.com
Source: unknownHTTP traffic detected: POST /report/v4?s=f0udjwerN2axDwDqXHydZBBSB4xyQW21ZTFBBdsRyJq8ny8EjmsQQ8ouN9Vvlvf0bbq28nNy2s%2F9hE%2B2x4159P4bq8JkAJdpDX%2Fh8s3zLmHyELXpZCwK7ysGz4jUn5ap32wGE98NA%2Bw%2FCaOBcEPmaHa8WuZQ HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 416Content-Type: application/reports+jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Wed, 22 Jan 2025 10:22:05 GMTContent-Type: text/html; charset=utf-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: ExpressContent-Security-Policy: default-src 'none'X-Content-Type-Options: nosniffSet-Cookie: connect.sid=s%3AuJJEOqqg_Dsy4ylKbB7c6br68At97wjA.77gn4pz%2FCnCW5XhWrc7hPYiWWoa%2FJ%2FxOkZvJbw2bUMg; Path=/; HttpOnlycf-cache-status: DYNAMICServer-Timing: cfCacheStatus;desc="DYNAMIC"Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f0udjwerN2axDwDqXHydZBBSB4xyQW21ZTFBBdsRyJq8ny8EjmsQQ8ouN9Vvlvf0bbq28nNy2s%2F9hE%2B2x4159P4bq8JkAJdpDX%2Fh8s3zLmHyELXpZCwK7ysGz4jUn5ap32wGE98NA%2Bw%2FCaOBcEPmaHa8WuZQ"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 905ed2208db7757d-SEAalt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=65075&min_rtt=65065&rtt_var=24407&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2869&recv_bytes=1265&delivery_rate=44878&cwnd=32&unsent_bytes=0&cid=ff2e46c527021dbd&ts=609&x=0"
Source: chromecache_42.2.drString found in binary or memory: https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49744
Source: unknownNetwork traffic detected: HTTP traffic on port 49675 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49742
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49741
Source: unknownNetwork traffic detected: HTTP traffic on port 49672 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49672
Source: unknownNetwork traffic detected: HTTP traffic on port 49741 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49742 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49748 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49746 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49747 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49745 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49744 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49739
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49849
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49748
Source: unknownNetwork traffic detected: HTTP traffic on port 49849 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49747
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49746
Source: unknownNetwork traffic detected: HTTP traffic on port 49739 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49745
Source: unknownHTTPS traffic detected: 173.222.162.32:443 -> 192.168.2.4:49748 version: TLS 1.2
Source: classification engineClassification label: mal48.win@16/2@6/5
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2044 --field-trial-handle=1984,i,3258549212968151003,16967086964516044852,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://connect.jumpcelibateencounter.shop/monica.raw"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2044 --field-trial-handle=1984,i,3258549212968151003,16967086964516044852,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: Window RecorderWindow detected: More than 3 window changes detected
ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid AccountsWindows Management InstrumentationPath Interception1
Process Injection
1
Process Injection
OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local System1
Encrypted Channel
Exfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization ScriptsRootkitLSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable Media4
Non-Application Layer Protocol
Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive5
Application Layer Protocol
Automated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin HookBinary PaddingNTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput Capture3
Ingress Tool Transfer
Traffic DuplicationData Destruction
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand
SourceDetectionScannerLabelLink
https://connect.jumpcelibateencounter.shop/monica.raw100%Avira URL Cloudmalware
No Antivirus matches
No Antivirus matches
No Antivirus matches
No Antivirus matches
NameIPActiveMaliciousAntivirus DetectionReputation
a.nel.cloudflare.com
35.190.80.1
truefalse
    high
    www.google.com
    142.250.185.164
    truefalse
      high
      connect.jumpcelibateencounter.shop
      172.67.156.121
      truefalse
        high
        NameMaliciousAntivirus DetectionReputation
        https://connect.jumpcelibateencounter.shop/monica.rawtrue
          unknown
          NameSourceMaliciousAntivirus DetectionReputation
          https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015chromecache_42.2.drfalse
            high
            • No. of IPs < 25%
            • 25% < No. of IPs < 50%
            • 50% < No. of IPs < 75%
            • 75% < No. of IPs
            IPDomainCountryFlagASNASN NameMalicious
            239.255.255.250
            unknownReserved
            unknownunknownfalse
            142.250.185.164
            www.google.comUnited States
            15169GOOGLEUSfalse
            172.67.156.121
            connect.jumpcelibateencounter.shopUnited States
            13335CLOUDFLARENETUSfalse
            35.190.80.1
            a.nel.cloudflare.comUnited States
            15169GOOGLEUSfalse
            IP
            192.168.2.4
            Joe Sandbox version:42.0.0 Malachite
            Analysis ID:1596697
            Start date and time:2025-01-22 11:20:53 +01:00
            Joe Sandbox product:CloudBasic
            Overall analysis duration:0h 3m 6s
            Hypervisor based Inspection enabled:false
            Report type:full
            Cookbook file name:browseurl.jbs
            Sample URL:https://connect.jumpcelibateencounter.shop/monica.raw
            Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
            Number of analysed new started processes analysed:8
            Number of new started drivers analysed:0
            Number of existing processes analysed:0
            Number of existing drivers analysed:0
            Number of injected processes analysed:0
            Technologies:
            • EGA enabled
            • AMSI enabled
            Analysis Mode:default
            Analysis stop reason:Timeout
            Detection:MAL
            Classification:mal48.win@16/2@6/5
            • Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
            • Excluded IPs from analysis (whitelisted): 142.250.185.99, 142.250.186.110, 74.125.133.84, 142.250.186.46, 142.250.184.206, 172.217.18.14, 199.232.210.172, 2.17.190.73, 172.217.16.206, 216.58.206.46, 216.58.206.78, 142.250.185.78, 142.250.186.78, 142.250.185.238, 142.250.185.227, 2.23.242.162, 4.175.87.197, 13.107.253.61
            • Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, otelrules.azureedge.net, ctldl.windowsupdate.com, clientservices.googleapis.com, fe3cr.delivery.mp.microsoft.com, clients2.google.com, ocsp.digicert.com, edgedl.me.gvt1.com, redirector.gvt1.com, update.googleapis.com, clients.l.google.com
            • Not all processes where analyzed, report is missing behavior information
            • VT rate limit hit for: https://connect.jumpcelibateencounter.shop/monica.raw
            No simulations
            No context
            No context
            No context
            No context
            No context
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:HTML document, ASCII text, with very long lines (477)
            Category:downloaded
            Size (bytes):627
            Entropy (8bit):5.601890246404152
            Encrypted:false
            SSDEEP:12:hYXc4xXgqTFUSbgKL+hnNT3DUm/SKbohkdwI9QDDO2RaBeVWb14IQL:hYs2gqpHLSB3T1UhkdtQDDFaBTb14j
            MD5:4468EF030764C9BEB2FEDC920F41DB3F
            SHA1:475FA55C371344C6EB0A0EE7B70B3DE40474355B
            SHA-256:E34C46BB791CBC9F8A7FC167E267FC2CEF0922DDFD3E8933EBD55350A57BB6FD
            SHA-512:E872C79C44255AB6F1EEAC3C6D8D1A8BBB6ACAF4DEFABC495C27DAA37B49E74CDC1AE574DDC1840997F2FEC96E8C2DD63A8B640AC481A8689BBCE84EB40879A2
            Malicious:false
            Reputation:low
            URL:https://connect.jumpcelibateencounter.shop/monica.raw
            Preview:<!DOCTYPE html>.<html lang="en">.<head>.<meta charset="utf-8">.<title>Error</title>.</head>.<body>.<pre>Cannot GET /monica.raw</pre>.<script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"rayId":"905ed2208db7757d","version":"2025.1.0","r":1,"serverTiming":{"name":{"cfExtPri":true,"cfL4":true,"cfSpeedBrain":true,"cfCacheStatus":true}},"token":"6f5ae72448114891b50ca0cd2dc2e329","b":1}' crossorigin="anonymous"></script>.</body>.</html>.
            No static file info
            TimestampSource PortDest PortSource IPDest IP
            Jan 22, 2025 11:21:55.310445070 CET49675443192.168.2.4173.222.162.32
            Jan 22, 2025 11:22:02.301173925 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:02.301230907 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:02.301347971 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:02.301620960 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:02.301657915 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:02.972176075 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:02.972748041 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:02.972816944 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:02.973961115 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:02.974055052 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:02.975438118 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:02.975516081 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:03.025614977 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:03.025640011 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:03.072293997 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:03.495755911 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:03.495860100 CET44349741172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:03.495943069 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:03.496175051 CET49742443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:03.496270895 CET44349742172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:03.496340990 CET49742443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:03.496615887 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:03.496633053 CET44349741172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:03.496830940 CET49742443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:03.496867895 CET44349742172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:03.993887901 CET44349742172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.018878937 CET49742443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.018946886 CET44349742172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.022896051 CET44349742172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.023003101 CET49742443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.053884029 CET44349741172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.098138094 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.106323004 CET49742443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.106364012 CET49742443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.106421947 CET49742443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.106652021 CET44349742172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.106722116 CET49742443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.106982946 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.107033014 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.107090950 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.107203960 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.107237101 CET44349741172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.107402086 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.107414961 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.108370066 CET44349741172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.108436108 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.124942064 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.124982119 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.125001907 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.125091076 CET44349741172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.125153065 CET49741443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.125212908 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.125269890 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.125334024 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.125652075 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.125669956 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.702553988 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.702817917 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.702836990 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.704277992 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.704344988 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.705374956 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.705455065 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.705637932 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.705645084 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.760220051 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.785224915 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.785485029 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.785527945 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.787305117 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.787363052 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.787712097 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.787784100 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.838325024 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:04.838346958 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:04.884413958 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:05.298559904 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:05.339807034 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:05.339833021 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:05.352253914 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.352346897 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.352437973 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.352909088 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.352942944 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.386667013 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:05.454660892 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:05.454871893 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:05.454921007 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:05.455096006 CET49744443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:05.455116034 CET44349744172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:05.835824966 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.836205959 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.836271048 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.837939024 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.838022947 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.839349031 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.839441061 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.839517117 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.839534998 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.885859966 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.966855049 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.966933966 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.967104912 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.967195034 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.967236996 CET4434974635.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.967272997 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.967309952 CET49746443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.967823029 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.967874050 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:05.967942953 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.968157053 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:05.968175888 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:06.425858021 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:06.484370947 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:06.556631088 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:06.556653976 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:06.557202101 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:06.558897972 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:06.558995008 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:06.559082031 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:06.603336096 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:06.686297894 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:06.686395884 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:06.686686039 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:06.686713934 CET4434974735.190.80.1192.168.2.4
            Jan 22, 2025 11:22:06.686749935 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:06.686908007 CET49747443192.168.2.435.190.80.1
            Jan 22, 2025 11:22:07.033483982 CET49672443192.168.2.4173.222.162.32
            Jan 22, 2025 11:22:07.033529043 CET44349672173.222.162.32192.168.2.4
            Jan 22, 2025 11:22:07.033771992 CET49672443192.168.2.4173.222.162.32
            Jan 22, 2025 11:22:07.033772945 CET49672443192.168.2.4173.222.162.32
            Jan 22, 2025 11:22:07.033782959 CET44349672173.222.162.32192.168.2.4
            Jan 22, 2025 11:22:07.033792019 CET44349672173.222.162.32192.168.2.4
            Jan 22, 2025 11:22:07.035036087 CET49748443192.168.2.4173.222.162.32
            Jan 22, 2025 11:22:07.035067081 CET44349748173.222.162.32192.168.2.4
            Jan 22, 2025 11:22:07.035298109 CET49748443192.168.2.4173.222.162.32
            Jan 22, 2025 11:22:07.036192894 CET49748443192.168.2.4173.222.162.32
            Jan 22, 2025 11:22:07.036206007 CET44349748173.222.162.32192.168.2.4
            Jan 22, 2025 11:22:07.651350975 CET44349748173.222.162.32192.168.2.4
            Jan 22, 2025 11:22:07.651437044 CET49748443192.168.2.4173.222.162.32
            Jan 22, 2025 11:22:09.904557943 CET4972380192.168.2.4199.232.214.172
            Jan 22, 2025 11:22:09.909759045 CET8049723199.232.214.172192.168.2.4
            Jan 22, 2025 11:22:09.909837961 CET4972380192.168.2.4199.232.214.172
            Jan 22, 2025 11:22:12.873821974 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:12.873972893 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:12.874057055 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:14.183917999 CET49739443192.168.2.4142.250.185.164
            Jan 22, 2025 11:22:14.183995008 CET44349739142.250.185.164192.168.2.4
            Jan 22, 2025 11:22:19.687433958 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:19.687516928 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:19.687581062 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:20.183706045 CET49745443192.168.2.4172.67.156.121
            Jan 22, 2025 11:22:20.183743954 CET44349745172.67.156.121192.168.2.4
            Jan 22, 2025 11:22:27.341607094 CET44349748173.222.162.32192.168.2.4
            Jan 22, 2025 11:22:27.341881037 CET49748443192.168.2.4173.222.162.32
            Jan 22, 2025 11:22:59.134526014 CET4972480192.168.2.4199.232.214.172
            Jan 22, 2025 11:22:59.140366077 CET8049724199.232.214.172192.168.2.4
            Jan 22, 2025 11:22:59.140472889 CET4972480192.168.2.4199.232.214.172
            Jan 22, 2025 11:23:02.354549885 CET49849443192.168.2.4142.250.185.164
            Jan 22, 2025 11:23:02.354645967 CET44349849142.250.185.164192.168.2.4
            Jan 22, 2025 11:23:02.354752064 CET49849443192.168.2.4142.250.185.164
            Jan 22, 2025 11:23:02.355098009 CET49849443192.168.2.4142.250.185.164
            Jan 22, 2025 11:23:02.355135918 CET44349849142.250.185.164192.168.2.4
            Jan 22, 2025 11:23:02.988655090 CET44349849142.250.185.164192.168.2.4
            Jan 22, 2025 11:23:02.989146948 CET49849443192.168.2.4142.250.185.164
            Jan 22, 2025 11:23:02.989207029 CET44349849142.250.185.164192.168.2.4
            Jan 22, 2025 11:23:02.989593029 CET44349849142.250.185.164192.168.2.4
            Jan 22, 2025 11:23:02.990367889 CET49849443192.168.2.4142.250.185.164
            Jan 22, 2025 11:23:02.990478992 CET44349849142.250.185.164192.168.2.4
            Jan 22, 2025 11:23:03.040643930 CET49849443192.168.2.4142.250.185.164
            Jan 22, 2025 11:23:12.891415119 CET44349849142.250.185.164192.168.2.4
            Jan 22, 2025 11:23:12.891566038 CET44349849142.250.185.164192.168.2.4
            Jan 22, 2025 11:23:12.891625881 CET49849443192.168.2.4142.250.185.164
            Jan 22, 2025 11:23:14.183578968 CET49849443192.168.2.4142.250.185.164
            Jan 22, 2025 11:23:14.183609009 CET44349849142.250.185.164192.168.2.4
            TimestampSource PortDest PortSource IPDest IP
            Jan 22, 2025 11:21:57.694165945 CET53565411.1.1.1192.168.2.4
            Jan 22, 2025 11:21:57.716617107 CET53605481.1.1.1192.168.2.4
            Jan 22, 2025 11:21:58.739923954 CET53604881.1.1.1192.168.2.4
            Jan 22, 2025 11:22:02.292464972 CET6358553192.168.2.41.1.1.1
            Jan 22, 2025 11:22:02.292464972 CET5417053192.168.2.41.1.1.1
            Jan 22, 2025 11:22:02.299624920 CET53635851.1.1.1192.168.2.4
            Jan 22, 2025 11:22:02.300211906 CET53541701.1.1.1192.168.2.4
            Jan 22, 2025 11:22:03.475223064 CET5361453192.168.2.41.1.1.1
            Jan 22, 2025 11:22:03.475223064 CET5915153192.168.2.41.1.1.1
            Jan 22, 2025 11:22:03.488326073 CET53591511.1.1.1192.168.2.4
            Jan 22, 2025 11:22:03.489600897 CET53536141.1.1.1192.168.2.4
            Jan 22, 2025 11:22:05.343194008 CET5507253192.168.2.41.1.1.1
            Jan 22, 2025 11:22:05.343465090 CET5446453192.168.2.41.1.1.1
            Jan 22, 2025 11:22:05.351758003 CET53550721.1.1.1192.168.2.4
            Jan 22, 2025 11:22:05.351887941 CET53544641.1.1.1192.168.2.4
            Jan 22, 2025 11:22:10.719155073 CET138138192.168.2.4192.168.2.255
            Jan 22, 2025 11:22:15.689989090 CET53572941.1.1.1192.168.2.4
            Jan 22, 2025 11:22:34.549741030 CET53618321.1.1.1192.168.2.4
            Jan 22, 2025 11:22:57.486532927 CET53506111.1.1.1192.168.2.4
            Jan 22, 2025 11:22:57.598422050 CET53564771.1.1.1192.168.2.4
            TimestampSource IPDest IPTrans IDOP CodeNameTypeClassDNS over HTTPS
            Jan 22, 2025 11:22:02.292464972 CET192.168.2.41.1.1.10x8deaStandard query (0)www.google.comA (IP address)IN (0x0001)false
            Jan 22, 2025 11:22:02.292464972 CET192.168.2.41.1.1.10x1cdeStandard query (0)www.google.com65IN (0x0001)false
            Jan 22, 2025 11:22:03.475223064 CET192.168.2.41.1.1.10x7f3aStandard query (0)connect.jumpcelibateencounter.shopA (IP address)IN (0x0001)false
            Jan 22, 2025 11:22:03.475223064 CET192.168.2.41.1.1.10xceccStandard query (0)connect.jumpcelibateencounter.shop65IN (0x0001)false
            Jan 22, 2025 11:22:05.343194008 CET192.168.2.41.1.1.10x67c9Standard query (0)a.nel.cloudflare.comA (IP address)IN (0x0001)false
            Jan 22, 2025 11:22:05.343465090 CET192.168.2.41.1.1.10x17f1Standard query (0)a.nel.cloudflare.com65IN (0x0001)false
            TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClassDNS over HTTPS
            Jan 22, 2025 11:22:02.299624920 CET1.1.1.1192.168.2.40x8deaNo error (0)www.google.com142.250.185.164A (IP address)IN (0x0001)false
            Jan 22, 2025 11:22:02.300211906 CET1.1.1.1192.168.2.40x1cdeNo error (0)www.google.com65IN (0x0001)false
            Jan 22, 2025 11:22:03.488326073 CET1.1.1.1192.168.2.40xceccNo error (0)connect.jumpcelibateencounter.shop65IN (0x0001)false
            Jan 22, 2025 11:22:03.489600897 CET1.1.1.1192.168.2.40x7f3aNo error (0)connect.jumpcelibateencounter.shop172.67.156.121A (IP address)IN (0x0001)false
            Jan 22, 2025 11:22:03.489600897 CET1.1.1.1192.168.2.40x7f3aNo error (0)connect.jumpcelibateencounter.shop104.21.81.30A (IP address)IN (0x0001)false
            Jan 22, 2025 11:22:05.351758003 CET1.1.1.1192.168.2.40x67c9No error (0)a.nel.cloudflare.com35.190.80.1A (IP address)IN (0x0001)false
            • connect.jumpcelibateencounter.shop
            • a.nel.cloudflare.com
            Session IDSource IPSource PortDestination IPDestination PortPIDProcess
            0192.168.2.449744172.67.156.1214435720C:\Program Files\Google\Chrome\Application\chrome.exe
            TimestampBytes transferredDirectionData
            2025-01-22 10:22:04 UTC687OUTGET /monica.raw HTTP/1.1
            Host: connect.jumpcelibateencounter.shop
            Connection: keep-alive
            sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"
            sec-ch-ua-mobile: ?0
            sec-ch-ua-platform: "Windows"
            Upgrade-Insecure-Requests: 1
            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
            Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
            Sec-Fetch-Site: none
            Sec-Fetch-Mode: navigate
            Sec-Fetch-User: ?1
            Sec-Fetch-Dest: document
            Accept-Encoding: gzip, deflate, br
            Accept-Language: en-US,en;q=0.9
            2025-01-22 10:22:05 UTC1098INHTTP/1.1 404 Not Found
            Date: Wed, 22 Jan 2025 10:22:05 GMT
            Content-Type: text/html; charset=utf-8
            Transfer-Encoding: chunked
            Connection: close
            X-Powered-By: Express
            Content-Security-Policy: default-src 'none'
            X-Content-Type-Options: nosniff
            Set-Cookie: connect.sid=s%3AuJJEOqqg_Dsy4ylKbB7c6br68At97wjA.77gn4pz%2FCnCW5XhWrc7hPYiWWoa%2FJ%2FxOkZvJbw2bUMg; Path=/; HttpOnly
            cf-cache-status: DYNAMIC
            Server-Timing: cfCacheStatus;desc="DYNAMIC"
            Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f0udjwerN2axDwDqXHydZBBSB4xyQW21ZTFBBdsRyJq8ny8EjmsQQ8ouN9Vvlvf0bbq28nNy2s%2F9hE%2B2x4159P4bq8JkAJdpDX%2Fh8s3zLmHyELXpZCwK7ysGz4jUn5ap32wGE98NA%2Bw%2FCaOBcEPmaHa8WuZQ"}],"group":"cf-nel","max_age":604800}
            NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
            Server: cloudflare
            CF-RAY: 905ed2208db7757d-SEA
            alt-svc: h3=":443"; ma=86400
            server-timing: cfL4;desc="?proto=TCP&rtt=65075&min_rtt=65065&rtt_var=24407&sent=5&recv=6&lost=0&retrans=0&sent_bytes=2869&recv_bytes=1265&delivery_rate=44878&cwnd=32&unsent_bytes=0&cid=ff2e46c527021dbd&ts=609&x=0"
            2025-01-22 10:22:05 UTC633INData Raw: 32 37 32 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 3c 68 65 61 64 3e 0a 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 3c 74 69 74 6c 65 3e 45 72 72 6f 72 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 70 72 65 3e 43 61 6e 6e 6f 74 20 47 45 54 20 2f 6d 6f 6e 69 63 61 2e 72 61 77 3c 2f 70 72 65 3e 0a 3c 73 63 72 69 70 74 20 64 65 66 65 72 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 73 74 61 74 69 63 2e 63 6c 6f 75 64 66 6c 61 72 65 69 6e 73 69 67 68 74 73 2e 63 6f 6d 2f 62 65 61 63 6f 6e 2e 6d 69 6e 2e 6a 73 2f 76 63 64 31 35 63 62 65 37 37 37 32 66 34 39 63 33 39 39 63 36 61 35 62 61 62 66 32 32 63 31 32 34 31 37 31 37 36 38 39 31 37 36 30 31 35
            Data Ascii: 272<!DOCTYPE html><html lang="en"><head><meta charset="utf-8"><title>Error</title></head><body><pre>Cannot GET /monica.raw</pre><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
            2025-01-22 10:22:05 UTC6INData Raw: 31 0d 0a 0a 0d 0a
            Data Ascii: 1
            2025-01-22 10:22:05 UTC5INData Raw: 30 0d 0a 0d 0a
            Data Ascii: 0


            Session IDSource IPSource PortDestination IPDestination PortPIDProcess
            1192.168.2.44974635.190.80.14435720C:\Program Files\Google\Chrome\Application\chrome.exe
            TimestampBytes transferredDirectionData
            2025-01-22 10:22:05 UTC581OUTOPTIONS /report/v4?s=f0udjwerN2axDwDqXHydZBBSB4xyQW21ZTFBBdsRyJq8ny8EjmsQQ8ouN9Vvlvf0bbq28nNy2s%2F9hE%2B2x4159P4bq8JkAJdpDX%2Fh8s3zLmHyELXpZCwK7ysGz4jUn5ap32wGE98NA%2Bw%2FCaOBcEPmaHa8WuZQ HTTP/1.1
            Host: a.nel.cloudflare.com
            Connection: keep-alive
            Origin: https://connect.jumpcelibateencounter.shop
            Access-Control-Request-Method: POST
            Access-Control-Request-Headers: content-type
            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
            Accept-Encoding: gzip, deflate, br
            Accept-Language: en-US,en;q=0.9
            2025-01-22 10:22:05 UTC336INHTTP/1.1 200 OK
            Content-Length: 0
            access-control-max-age: 86400
            access-control-allow-methods: POST, OPTIONS
            access-control-allow-origin: *
            access-control-allow-headers: content-length, content-type
            date: Wed, 22 Jan 2025 10:22:05 GMT
            Via: 1.1 google
            Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
            Connection: close


            Session IDSource IPSource PortDestination IPDestination PortPIDProcess
            2192.168.2.44974735.190.80.14435720C:\Program Files\Google\Chrome\Application\chrome.exe
            TimestampBytes transferredDirectionData
            2025-01-22 10:22:06 UTC504OUTPOST /report/v4?s=f0udjwerN2axDwDqXHydZBBSB4xyQW21ZTFBBdsRyJq8ny8EjmsQQ8ouN9Vvlvf0bbq28nNy2s%2F9hE%2B2x4159P4bq8JkAJdpDX%2Fh8s3zLmHyELXpZCwK7ysGz4jUn5ap32wGE98NA%2Bw%2FCaOBcEPmaHa8WuZQ HTTP/1.1
            Host: a.nel.cloudflare.com
            Connection: keep-alive
            Content-Length: 416
            Content-Type: application/reports+json
            User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
            Accept-Encoding: gzip, deflate, br
            Accept-Language: en-US,en;q=0.9
            2025-01-22 10:22:06 UTC416OUTData Raw: 5b 7b 22 61 67 65 22 3a 31 2c 22 62 6f 64 79 22 3a 7b 22 65 6c 61 70 73 65 64 5f 74 69 6d 65 22 3a 31 38 33 34 2c 22 6d 65 74 68 6f 64 22 3a 22 47 45 54 22 2c 22 70 68 61 73 65 22 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 22 2c 22 70 72 6f 74 6f 63 6f 6c 22 3a 22 68 74 74 70 2f 31 2e 31 22 2c 22 72 65 66 65 72 72 65 72 22 3a 22 22 2c 22 73 61 6d 70 6c 69 6e 67 5f 66 72 61 63 74 69 6f 6e 22 3a 31 2e 30 2c 22 73 65 72 76 65 72 5f 69 70 22 3a 22 31 37 32 2e 36 37 2e 31 35 36 2e 31 32 31 22 2c 22 73 74 61 74 75 73 5f 63 6f 64 65 22 3a 34 30 34 2c 22 74 79 70 65 22 3a 22 68 74 74 70 2e 65 72 72 6f 72 22 7d 2c 22 74 79 70 65 22 3a 22 6e 65 74 77 6f 72 6b 2d 65 72 72 6f 72 22 2c 22 75 72 6c 22 3a 22 68 74 74 70 73 3a 2f 2f 63 6f 6e 6e 65 63 74 2e 6a 75 6d 70 63 65
            Data Ascii: [{"age":1,"body":{"elapsed_time":1834,"method":"GET","phase":"application","protocol":"http/1.1","referrer":"","sampling_fraction":1.0,"server_ip":"172.67.156.121","status_code":404,"type":"http.error"},"type":"network-error","url":"https://connect.jumpce
            2025-01-22 10:22:06 UTC168INHTTP/1.1 200 OK
            Content-Length: 0
            date: Wed, 22 Jan 2025 10:22:06 GMT
            Via: 1.1 google
            Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
            Connection: close


            Click to jump to process

            Click to jump to process

            Click to jump to process

            Target ID:0
            Start time:05:21:51
            Start date:22/01/2025
            Path:C:\Program Files\Google\Chrome\Application\chrome.exe
            Wow64 process (32bit):false
            Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
            Imagebase:0x7ff76e190000
            File size:3'242'272 bytes
            MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
            Has elevated privileges:true
            Has administrator privileges:true
            Programmed in:C, C++ or other language
            Reputation:low
            Has exited:false

            Target ID:2
            Start time:05:21:56
            Start date:22/01/2025
            Path:C:\Program Files\Google\Chrome\Application\chrome.exe
            Wow64 process (32bit):false
            Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2044 --field-trial-handle=1984,i,3258549212968151003,16967086964516044852,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
            Imagebase:0x7ff76e190000
            File size:3'242'272 bytes
            MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
            Has elevated privileges:true
            Has administrator privileges:true
            Programmed in:C, C++ or other language
            Reputation:low
            Has exited:false

            Target ID:3
            Start time:05:22:02
            Start date:22/01/2025
            Path:C:\Program Files\Google\Chrome\Application\chrome.exe
            Wow64 process (32bit):false
            Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://connect.jumpcelibateencounter.shop/monica.raw"
            Imagebase:0x7ff76e190000
            File size:3'242'272 bytes
            MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
            Has elevated privileges:true
            Has administrator privileges:true
            Programmed in:C, C++ or other language
            Reputation:low
            Has exited:true

            No disassembly