Windows Analysis Report https://www.stopcovid19.jp/

Phishing:

Suspicious form URL found

Source: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=0

HTTP Parser: Form action: /login/device-based/regular/login/?login_attempt=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&popup=1&lwv=100

Source: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=0

HTTP Parser: Form action: /login/device-based/regular/login/?login_attempt=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&popup=1&lwv=100

META author tag missing

Source: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=0

HTTP Parser: No <meta name="author".. found

Source: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=0

HTTP Parser: No <meta name="author".. found

META copyright tag missing

Source: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=0

HTTP Parser: No <meta name="copyright".. found

Source: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=0

HTTP Parser: No <meta name="copyright".. found

Compliance:

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 104.244.42.200:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.109.153:443 -> 192.168.2.4:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.109.153:443 -> 192.168.2.4:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.196.15:443 -> 192.168.2.4:49809 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.232.136.157:443 -> 192.168.2.4:49847 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49840 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49843 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49842 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49841 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49846 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 37.252.172.249:443 -> 192.168.2.4:49852 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.112:443 -> 192.168.2.4:49869 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.244.42.5:443 -> 192.168.2.4:49891 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.124.170:443 -> 192.168.2.4:49896 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49858 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49856 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49857 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49872 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49873 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49871 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49875 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49868 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49865 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49866 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49864 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49867 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49874 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49889 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49890 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49894 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49911 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49912 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49910 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49917 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49919 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 143.204.98.89:443 -> 192.168.2.4:49927 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 143.204.98.89:443 -> 192.168.2.4:49928 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49924 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49925 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49923 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49922 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49929 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.115:443 -> 192.168.2.4:49969 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49958 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49966 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.242.197:443 -> 192.168.2.4:49980 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.29.132.144:443 -> 192.168.2.4:50031 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.124.143.99:443 -> 192.168.2.4:50028 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.93.69.146:443 -> 192.168.2.4:50029 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 91.228.74.134:443 -> 192.168.2.4:50034 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.214.249:443 -> 192.168.2.4:50033 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.127.51.194:443 -> 192.168.2.4:50050 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 169.50.137.190:443 -> 192.168.2.4:50062 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 212.82.100.176:443 -> 192.168.2.4:50060 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.110:443 -> 192.168.2.4:50065 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.236.227.29:443 -> 192.168.2.4:50064 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.214.249:443 -> 192.168.2.4:50076 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 66.155.71.25:443 -> 192.168.2.4:50079 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.232.92.67:443 -> 192.168.2.4:50077 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.114:443 -> 192.168.2.4:50084 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50085 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50086 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50087 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.17.35.107:443 -> 192.168.2.4:50088 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 213.19.147.44:443 -> 192.168.2.4:50092 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.2.255.233:443 -> 192.168.2.4:50090 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 213.19.147.44:443 -> 192.168.2.4:50096 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 38.27.122.158:443 -> 192.168.2.4:50105 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.29.225.117:443 -> 192.168.2.4:50109 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.212.225.58:443 -> 192.168.2.4:50108 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.18.52.16:443 -> 192.168.2.4:50110 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.4:50119 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.226:443 -> 192.168.2.4:50118 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.226:443 -> 192.168.2.4:50120 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.242.197:443 -> 192.168.2.4:50122 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.156.0.31:443 -> 192.168.2.4:50128 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 212.82.100.176:443 -> 192.168.2.4:50127 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 169.50.137.190:443 -> 192.168.2.4:50130 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50135 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.114:443 -> 192.168.2.4:50140 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 66.155.71.25:443 -> 192.168.2.4:50137 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50141 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50144 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50143 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.236.227.29:443 -> 192.168.2.4:50134 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.2.255.233:443 -> 192.168.2.4:50139 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.124.143.99:443 -> 192.168.2.4:50155 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.98.64.218:443 -> 192.168.2.4:50165 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.98.64.218:443 -> 192.168.2.4:50164 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.242.197:443 -> 192.168.2.4:50163 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 198.148.27.140:443 -> 192.168.2.4:50179 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.201.96.126:443 -> 192.168.2.4:50189 version: TLS 1.2

Networking:

Connects to several IPs in different countries

Source: unknown

Network traffic detected: IP country count 10

Downloads files from webservers via HTTP

Source: global traffic

HTTP traffic detected: GET /SC-Root2/SCRoot2ca.cer HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Microsoft-CryptoAPI/10.0Host: repository.secomtrust.net

Found strings which match to known social media urls

Source: Reporting and NEL.3.dr	String found in binary or memory: #httpswww.facebook.com equals www.facebook.com (Facebook)
Source: Reporting and NEL.3.dr	String found in binary or memory: #chttpswww.facebook.com equals www.facebook.com (Facebook)
Source: Reporting and NEL.3.dr	String found in binary or memory: #chttpswww.facebook.com equals www.facebook.com (Facebook)
Source: Current Session.1.dr	String found in binary or memory: Lhttps://www.facebook.com/login/device-based/regular/login/ [jazoest lsd ] #0 equals www.facebook.com (Facebook)
Source: 2d25afbbb58fae73_0.1.dr	String found in binary or memory: _keyhttps://www.facebook.com/rsrc.php/v3irB34/y7/l/ja_JP/bIuqT9-AQr-.js?_nc_x=Ij3Wp8lg5Kz equals www.facebook.com (Facebook)
Source: f5f2a49254671b73_0.1.dr	String found in binary or memory: _keyhttps://yads.yjtag.yahoo.co.jp/tag?s=67018_295415&fr_id=yads_564321-0&sb_support=1&enc=UTF-8&u=https%3A%2F%2Fb.hatena.ne.jp%2Fentry%2Fs%2Fwww.stopcovid19.jp%2F&async=0&mb=1&kwe=u&kwm=1&pv_ts=1626333667497 equals www.yahoo.com (Yahoo)
Source: f5f2a49254671b73_0.1.dr	String found in binary or memory: b_keyhttps://yads.yjtag.yahoo.co.jp/tag?s=67018_295415&fr_id=yads_564321-0&sb_support=1&enc=UTF-8&u=https%3A%2F%2Fb.hatena.ne.jp%2Fentry%2Fs%2Fwww.stopcovid19.jp%2F&async=0&mb=1&kwe=u&kwm=1&pv_ts=1626333667497 equals www.yahoo.com (Yahoo)
Source: Reporting and NEL.3.dr	String found in binary or memory: coop_reporthttps://www.facebook.com/browser_reporting/ equals www.facebook.com (Facebook)
Source: Current Session.1.dr	String found in binary or memory: https://platform.twitter.com/widgets/tweet_button.06c6ee58c3810956b7509218508c7b56.ja.html#dnt=false&id=twitter-widget-0&lang=ja&original_referer=https%3A%2F%2Fwww.stopcovid19.jp%2F&size=m&text=COVID-19%20Japan%20-%20Anti-Coronavirus%20Dashboard%20%23StopCOVID19JP&time=1626333646850&type=share&url=https%3A%2F%2Fwww.stopcovid19.jp%2F equals www.twitter.com (Twitter)
Source: Current Session.1.dr	String found in binary or memory: https://platform.twitter.com/widgets/widget_iframe.06c6ee58c3810956b7509218508c7b56.html?origin=https%3A%2F%2Fwww.stopcovid19.jp equals www.twitter.com (Twitter)
Source: Current Session.1.dr	String found in binary or memory: https://www.facebook.com equals www.facebook.com (Facebook)
Source: Favicons.1.dr	String found in binary or memory: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=0 equals www.facebook.com (Facebook)
Source: History Provider Cache.1.dr	String found in binary or memory: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=02 equals www.facebook.com (Facebook)
Source: Current Session.1.dr	String found in binary or memory: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=08 equals www.facebook.com (Facebook)
Source: History.1.dr	String found in binary or memory: https://www.facebook.com/login.php?skip_api_login=1&api_key=966242223397117&signed_next=1&next=https%3A%2F%2Fwww.facebook.com%2Fsharer%2Fsharer.php%3Fkid_directed_site%3D0%26sdk%3Djoey%26u%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252F%26display%3Dpopup%26ref%3Dplugin%26src%3Dshare_button&cancel_url=https%3A%2F%2Fwww.facebook.com%2Fdialog%2Fclose_window%2F%3Fapp_id%3D966242223397117%26connect%3D0%23_%3D_&display=popup&locale=de_DE&kid_directed_site=0Facebook equals www.facebook.com (Facebook)
Source: Favicons.1.dr	String found in binary or memory: https://www.facebook.com/sharer/sharer.php?kid_directed_site=0&sdk=joey&u=https%3A%2F%2Fwww.stopcovid19.jp%2F&display=popup&ref=plugin&src=share_button equals www.facebook.com (Facebook)
Source: History Provider Cache.1.dr	String found in binary or memory: https://www.facebook.com/sharer/sharer.php?kid_directed_site=0&sdk=joey&u=https%3A%2F%2Fwww.stopcovid19.jp%2F&display=popup&ref=plugin&src=share_button2 equals www.facebook.com (Facebook)
Source: History.1.dr	String found in binary or memory: https://www.facebook.com/sharer/sharer.php?kid_directed_site=0&sdk=joey&u=https%3A%2F%2Fwww.stopcovid19.jp%2F&display=popup&ref=plugin&src=share_buttonFacebook equals www.facebook.com (Facebook)
Source: History.1.dr	String found in binary or memory: https://www.facebook.com/sharer/sharer.php?kid_directed_site=0&sdk=joey&u=https%3A%2F%2Fwww.stopcovid19.jp%2F&display=popup&ref=plugin&src=share_buttonFacebook/% equals www.facebook.com (Facebook)
Source: Current Session.1.dr	String found in binary or memory: https://www.facebook.com/v6.0/plugins/share_button.php?app_id=214172318638956&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3b52d37088878%26domain%3Dwww.stopcovid19.jp%26origin%3Dhttps%253A%252F%252Fwww.stopcovid19.jp%252Ff1629894ef8dcc4%26relation%3Dparent.parent&container_width=1263&href=https%3A%2F%2Fwww.stopcovid19.jp%2F&layout=button_count&locale=ja_JP&sdk=joey&size=small equals www.facebook.com (Facebook)
Source: Reporting and NEL-journal.3.dr	String found in binary or memory: httpswww.facebook.com equals www.facebook.com (Facebook)
Source: 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: {"net":{"http_server_properties":{"servers":[{"isolation":[],"server":"https://dns.google","supports_spdy":true},{"isolation":[],"server":"https://redirector.gvt1.com","supports_spdy":true},{"isolation":[],"server":"https://ogs.google.com","supports_spdy":true},{"isolation":[],"server":"https://play.google.com","supports_spdy":true},{"isolation":[],"server":"https://apis.google.com","supports_spdy":true},{"isolation":[],"server":"https://ssl.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://www.gstatic.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399243603995","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://accounts.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399243927051","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://fonts.googleapis.com","supports_spdy":true},{"isolation":[],"server":"https://fonts.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://connect.facebook.net","supports_spdy":true},{"isolation":[],"server":"https://code4sabae.github.io","supports_spdy":true},{"isolation":[],"server":"https://taisukef.github.io","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399246227540","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://www.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399246229489","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://www.google.ch","supports_spdy":true},{"isolation":[],"server":"https://syndication.twitter.com","supports_spdy":true},{"isolation":[],"server":"https://www.stopcovid19.jp","supports_spdy":true},{"isolation":[],"server":"https://static.xx.fbcdn.net","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399284271231","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://clients2.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399285000314","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://clients2.googleusercontent.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399287232604","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://www.googleapis.com","supports_spdy":true},{"isolation":[],"server":"https://www.facebook.com","supports_spdy":true},{"isolation":[],"server":"https://cdn.profile-image.st-hatena.com","supports_spdy":true},{"isolation":[],"server":"https://static.ads-twitter.com","supports_spdy":true},{"isolation":[],"server":"https://cdn.jsdelivr.net","supports_spdy":true},{"isolation":[],"server":"https://b.hatena.ne.jp","supports_spdy":true},{"isolation":[],"server":"https://hatena-d.openx.net","supports_spdy":true},{"isolation":[],"server":"https://ad.as.amanad.adtdp.com","supports_
Source: 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: {"net":{"http_server_properties":{"servers":[{"isolation":[],"server":"https://dns.google","supports_spdy":true},{"isolation":[],"server":"https://redirector.gvt1.com","supports_spdy":true},{"isolation":[],"server":"https://ogs.google.com","supports_spdy":true},{"isolation":[],"server":"https://play.google.com","supports_spdy":true},{"isolation":[],"server":"https://apis.google.com","supports_spdy":true},{"isolation":[],"server":"https://ssl.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://www.gstatic.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399243603995","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://accounts.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399243927051","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://fonts.googleapis.com","supports_spdy":true},{"isolation":[],"server":"https://fonts.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://connect.facebook.net","supports_spdy":true},{"isolation":[],"server":"https://code4sabae.github.io","supports_spdy":true},{"isolation":[],"server":"https://taisukef.github.io","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399246227540","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://www.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399246229489","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://www.google.ch","supports_spdy":true},{"isolation":[],"server":"https://syndication.twitter.com","supports_spdy":true},{"isolation":[],"server":"https://www.stopcovid19.jp","supports_spdy":true},{"isolation":[],"server":"https://static.xx.fbcdn.net","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399284271231","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://clients2.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399285000314","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://clients2.googleusercontent.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13273399287232604","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://www.googleapis.com","supports_spdy":true},{"isolation":[],"server":"https://www.facebook.com","supports_spdy":true},{"isolation":[],"server":"https://cdn.profile-image.st-hatena.com","supports_spdy":true},{"isolation":[],"server":"https://static.ads-twitter.com","supports_spdy":true},{"isolation":[],"server":"https://cdn.jsdelivr.net","supports_spdy":true},{"isolation":[],"server":"https://b.hatena.ne.jp","supports_spdy":true},{"isolation":[],"server":"https://hatena-d.openx.net","supports_spdy":true},{"isolation":[],"server":"https://ad.as.amanad.adtdp.com","supports_
Source: Current Session.1.dr	String found in binary or memory: ~https://platform.twitter.com/widgets/widget_iframe.06c6ee58c3810956b7509218508c7b56.html?origin=https%3A%2F%2Fwww.ja-ces.or.jp equals www.twitter.com (Twitter)

Performs DNS lookups

Source: unknown

DNS traffic detected: queries for: www.stopcovid19.jp

URLs found in memory or binary data

Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://a.tribalfusion.com/i.match?p=b10&u=
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://adadvisor.net/adscores/g.pixel?sid=9212270498
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://api.primecaster.net/adlogue/api/sync/rubicon
Source: C8408FE5CA4467EE4DA84A76EF238FE30.3.dr	String found in binary or memory: http://apps.identrust.com/roots/dstrootcax3.p7c0
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://b1sync.zemanta.com/usersync/rubicon/
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://bh.contextweb.com/bh/rtset?pid=560687&ev=1&rurl=http%3A%2F%2Fpixel.rubiconproject.com%2Ftap.p
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://bttrack.com/pixel/cookiesync?source=c91bfcce-bb43-46f7-b14e-567c0a4332b3
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://cm.adgrx.com/bridge?AG_SETCOOKIE&AG_PID=rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://cm.ctnsnet.com/int/cm?exc=2&redir=http%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D14965
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://cm.eyereturn.com/rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm&google_sc
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://cms.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif?idmatch=0
Source: C8408FE5CA4467EE4DA84A76EF238FE30.3.dr	String found in binary or memory: http://cps.root-x1.letsencrypt.org0
Source: C8408FE5CA4467EE4DA84A76EF238FE30.3.dr	String found in binary or memory: http://crl.identrust.com/DSTROOTCAX3CRL.crl0
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://cti.w55c.net/ct/cms-2c-rubicon.html
Source: 77EC63BDA74BD0D0E0426DC8F8008506.3.dr	String found in binary or memory: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://d5p.de17a.com/cookies/rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://dsp.adfarm1.adition.com/cookie/?ssp=7
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://i.w55c.net/ping_match.gif?ei=RUBICON&rurl=http%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://ib.adnxs.com/getuidnb?http%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4894%26nid%3D1986
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://match.adsby.bidtheatre.com/rubiconmatch
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://match.adsrvr.org/track/cmf/rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://match.prod.bidr.io/cookie-sync/rp?bee_sync_partners=rp
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://onetag-sys.com/bridge/e
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://p.rfihub.com/cm?in=1&pub=64
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://pixel.mathtag.com/sync/img?redir=http%3A%2F%2Ftoken.rubiconproject.com%2Ftoken%3Fpid%3D35912%
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://pixel.rubiconproject.com/exchange/sync.php?p=a9eu
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://pixel.rubiconproject.com/exchange/sync.php?p=a9us
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://px.owneriq.net/erb
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://px.owneriq.net/eucm/p/rc?redir=http%3A%2F%2Ftoken.rubiconproject.com%2Ftoken%3Fpid%3D3353%26p
Source: C8408FE5CA4467EE4DA84A76EF238FE3.3.dr	String found in binary or memory: http://r3.i.lencr.org/
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://rbp.mxptint.net/sn.ashx
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://rcp.c.appier.net/rbcm
Source: 9096A354A7A3E42F3F619F51DB75C6B9.3.dr	String found in binary or memory: http://repository.secomtrust.net/SC-Root2/SCRoot2ca.cer
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://rubicon.digitru.st/digitrust-sync
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://sync.1rx.io/usersync2/rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&mi=10&dpi=54
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://sync.ipredictive.com/d/sync/cookie/generic?http://pixel.rubiconproject.com/tap.php?v=17149&ni
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://sync.mathtag.com/sync/img?mt_exid=9
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://sync.tidaltv.com/GenericUserSync.ashx?dpid=695
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://sync.tidaltv.com/genericusersync.ashx?dpid=rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://tap.rubiconproject.com/stats/rtbsync
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://token.rubiconproject.com/token?pid=2046&pt=n&a=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://token.rubiconproject.com/token?pid=2249&pt=n
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://token.rubiconproject.com/token?pid=27&a=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://token.rubiconproject.com/token?pid=2974&pt=n&a=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://token.rubiconproject.com/token?pid=37556&a=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://um.simpli.fi/rb_match
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://um2.eqads.com/um/rc
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: http://x.bidswitch.net/sync?ssp=rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://a.tribalfusion.com/i.match?p=b10&u=
Source: Current Session.1.dr	String found in binary or memory: https://aax-eu.amazon-adsystem.com
Source: Current Session.1.dr	String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/ecm3?id=F76BE1DA-9244-4697-BA45-0BAAC7575976&ex=pubmatic.com
Source: Current Session.1.dr	String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=pm-db5_rbd&dcc=t
Source: Current Session.1.dr	String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/v3/pr?exlist=rbd_pm-db5&fv=1.0&a=cm&cm3ppd=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/x/1c2fd14bf310b6aff649
Source: Current Session.1.dr	String found in binary or memory: https://aax-eu.amazon-adsystem.comh
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, manifest.json0.1.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://accounts.google.com
Source: Current Session.1.dr	String found in binary or memory: https://acdn.adnxs.com/dmp/async_usersync.html
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://ad.mrtnsvr.com/sync/magnite
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://ad.turn.com/r/cs?pid=6
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://adadvisor.net/adscores/g.pixel?sid=9212270498
Source: Current Session.1.dr	String found in binary or memory: https://adc.auone.jp/api/v1/sync/web?u=YO-h4MCo5sEAALQoIuEAAAAA&ut=1&st=2&ref=https%3A%2F%2Fb.hatena
Source: Current Session.1.dr	String found in binary or memory: https://ads.pubmatic.com
Source: Current Session.1.dr	String found in binary or memory: https://ads.pubmatic.com/AdServer/js/showad.js
Source: Current Session.1.dr	String found in binary or memory: https://ads.pubmatic.com/AdServer/js/showad.js#PIX&kdntuid=1&p=157377
Source: Current Session.1.dr	String found in binary or memory: https://ads.pubmatic.com/AdServer/js/user_sync.html?p=156657&predirect=https%3A%2F%2Faax-eu.amazon-a
Source: Current Session.1.dr	String found in binary or memory: https://ads.pubmatic.comh
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://api.primecaster.net/adlogue/api/sync/rubicon
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, manifest.json0.1.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://apis.google.com
Source: 000003.log5.1.dr, 000005.ldb.1.dr	String found in binary or memory: https://b.hatena.ne.jp
Source: Network Action Predictor.1.dr, 000003.log0.1.dr	String found in binary or memory: https://b.hatena.ne.jp/
Source: Current Session.1.dr	String found in binary or memory: https://b.hatena.ne.jp/entry/button/?url=https%3A%2F%2Fwww.stopcovid19.jp%2F&layout=basic-label-coun
Source: Current Session.1.dr	String found in binary or memory: https://b.hatena.ne.jp/entry/s/www.stopcovid19.jp/
Source: Favicons.1.dr	String found in binary or memory: https://b.hatena.ne.jp/favicon.ico
Source: Favicons.1.dr	String found in binary or memory: https://b.hatena.ne.jp/favicon.ico=
Source: Current Session.1.dr	String found in binary or memory: https://b.hatena.ne.jp/my/bookmark
Source: Current Session.1.dr	String found in binary or memory: https://b.hatena.ne.jp/search_dwim
Source: Current Session.1.dr	String found in binary or memory: https://b.hatena.ne.jph
Source: Network Action Predictor.1.dr	String found in binary or memory: https://b.st-hatena.com/
Source: f5fbeb72598a2f4e_0.1.dr	String found in binary or memory: https://b.st-hatena.com/js/bookmark_button.js
Source: 777a7fe0d0f666fc_0.1.dr	String found in binary or memory: https://b.st-hatena.com/js/v4/bookmark.js?version=b28e833a092c996f374596d23318dea9e3c5a9c8
Source: a5e7cb262c05eea2_0.1.dr	String found in binary or memory: https://b.st-hatena.com/js/v4/bookmark.star.js?version=b28e833a092c996f374596d23318dea9e3c5a9c8
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://b1sync.zemanta.com/usersync/rubicon/
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://beacon.lynx.cognitivlabs.com/rb.gif
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://bh.contextweb.com/bh/rtset?pid=560687&ev=1&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://bttrack.com/pixel/cookiesync?source=c91bfcce-bb43-46f7-b14e-567c0a4332b3
Source: Network Action Predictor.1.dr	String found in binary or memory: https://c.amazon-adsystem.com/
Source: a11713cbf11dbe8c_0.1.dr	String found in binary or memory: https://c.amazon-adsystem.com/aax2/apstag.js
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://c1.adform.net/serving/cookie/match?party=1164
Source: Current Session.1.dr	String found in binary or memory: https://c1.adform.net/serving/cookie/match?party=14&cid=F76BE1DA-9244-4697-BA45-0BAAC7575976
Source: Network Action Predictor-journal.1.dr	String found in binary or memory: https://cdn.jsdelivr.net/
Source: d3c9fc52e9fb9c54_0.1.dr	String found in binary or memory: https://cdn.pool.st-hatena.com/valve/dmp.js
Source: ad93ac35a63b43df_0.1.dr	String found in binary or memory: https://cdn.pool.st-hatena.com/valve/valve.js
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://clients2.google.com
Source: manifest.json0.1.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: Current Session.1.dr	String found in binary or memory: https://cm.adgrx.com/bridge?AG_PID=pubmatic&AG_SETCOOKIE&gdpr=0&gdpr_consent=
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://cm.adgrx.com/bridge?AG_SETCOOKIE&AG_PID=rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://cm.ctnsnet.com/int/cm?exc=2&redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D149
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://cm.eyereturn.com/rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm&google_sc
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://cm.smadex.com/sync?sm_p=rbc&sm_r=rbc
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://cms.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif?idmatch=0
Source: 04b54609843d02e7_0.1.dr	String found in binary or memory: https://code.jquery.com/jquery-3.2.1.min.js
Source: 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://code4sabae.github.io
Source: 802e1bfb59a9db13_0.1.dr	String found in binary or memory: https://code4sabae.github.io/kafumon/lib/Chart.mjs
Source: 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://connect.facebook.net
Source: b848f038f264e3cc_0.1.dr	String found in binary or memory: https://connect.facebook.net/ja_JP/sdk.js
Source: 7c21be5089b61970_0.1.dr	String found in binary or memory: https://connect.facebook.net/ja_JP/sdk.js?hash=717430068f18341031a2bf06d6ad5a88
Source: manifest.json0.1.dr	String found in binary or memory: https://content.googleapis.com
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://cr-p16.ladsp.jp/cookiesender/16
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://cs.adnear.net/v2/cookiesync/rubicon
Source: db9563a95e9f0af3_0.1.dr	String found in binary or memory: https://cse.google.com/adsense/search/async-ads.js
Source: d00f5f3aa71c8776_0.1.dr	String found in binary or memory: https://cse.google.com/cse/cse.js?cx=005876357619168369638:ydrbkuj3fss
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://cti.w55c.net/ct/cms-2c-rubicon.html
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://d5p.de17a.com/cookies/rubicon
Source: Current Session.1.dr	String found in binary or memory: https://dis.criteo.com/dis/usersync.aspx?r=3&p=4&cp=pubmaticUS&cu=1&&gdpr=0&gdpr_consent=&url=https:
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://dis.criteo.com/dis/usersync.aspx?r=6&p=70&cp=Rubicon&cu=1&url=https%3A%2F%2Fpixel.rubiconpro
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://dmp.brand-display.com/cm/api/rubicon
Source: fea82623cf4dc9bf_0.1.dr	String found in binary or memory: https://dmp.im-apps.net/js/6604/0001/itm.js
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr, 6d8e6aea-8d64-4cda-8d35-7929bcf7a5f1.tmp.3.dr, 1aa88f00-7872-472c-930f-ea3c117ab97f.tmp.3.dr	String found in binary or memory: https://dns.google
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://ds.uncn.jp/rp/0/sync
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://dsp.adfarm1.adition.com/cookie/?ssp=7
Source: Current Session.1.dr	String found in binary or memory: https://eu-u.openx.net/w/1.0/pd?plm=10&ph=df544eff-6086-432f-957e-aa9175d18515&gdpr=0
Source: 000004.log.1.dr	String found in binary or memory: https://eus.rubiconproject.com
Source: Network Action Predictor.1.dr, 000003.log0.1.dr	String found in binary or memory: https://eus.rubiconproject.com/
Source: Current Session.1.dr	String found in binary or memory: https://eus.rubiconproject.com/usync.html
Source: Current Session.1.dr	String found in binary or memory: https://eus.rubiconproject.com/usync.html?p=a9eu&endpoint=eu
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://eus.rubiconproject.com/usync.js
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://eus.rubiconproject.com/usync.jsaD
Source: Network Action Predictor-journal.1.dr	String found in binary or memory: https://ewb-c.infocreate.co.jp/
Source: 254c5407071bb61d_0.1.dr	String found in binary or memory: https://ewb-c.infocreate.co.jp/ewbc/ptspk_loader.js?siteId=031_mhlw
Source: manifest.json0.1.dr	String found in binary or memory: https://feedback.googleusercontent.com
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://fonts.googleapis.com
Source: manifest.json0.1.dr	String found in binary or memory: https://fonts.googleapis.com;
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://fonts.gstatic.com
Source: manifest.json0.1.dr	String found in binary or memory: https://fonts.gstatic.com;
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://gu.dyntrk.com/adx/rbcn/us.php?dynk=r1b32c0n
Source: Current Session.1.dr	String found in binary or memory: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=b.hatena.ne.jp#
Source: manifest.json0.1.dr	String found in binary or memory: https://hangouts.google.com/
Source: 509232bb9ca12ba0_0.1.dr, a5e7cb262c05eea2_0.1.dr	String found in binary or memory: https://hatena.ne.jp/
Source: fea82623cf4dc9bf_0.1.dr	String found in binary or memory: https://hatena.ne.jp/#
Source: de127990e43d2e44_0.1.dr	String found in binary or memory: https://hatena.ne.jp/:xY
Source: c871ee38a4562d6a_0.1.dr	String found in binary or memory: https://hatena.ne.jp/A
Source: dae94e10ef035149_0.1.dr	String found in binary or memory: https://hatena.ne.jp/H
Source: cfbdcba4d4494926_0.1.dr	String found in binary or memory: https://hatena.ne.jp/HF
Source: 1fe1ce509956500f_0.1.dr	String found in binary or memory: https://hatena.ne.jp/U
Source: f5f2a49254671b73_0.1.dr	String found in binary or memory: https://hatena.ne.jp/Zh=
Source: 501b480118794d26_0.1.dr	String found in binary or memory: https://hatena.ne.jp/q
Source: a562e271c28ce1cb_0.1.dr	String found in binary or memory: https://hatena.ne.jp/u
Source: 4f99f75766b6b7fe_0.1.dr	String found in binary or memory: https://hatena.ne.jp/y
Source: bd7958f6689f890b_0.1.dr	String found in binary or memory: https://hatena.ne.jp/z
Source: Current Session.1.dr	String found in binary or memory: https://i.socdm.com
Source: Current Session.1.dr	String found in binary or memory: https://i.socdm.com/sdk/html/adg-azs-container.html
Source: d28853861de1103c_0.1.dr	String found in binary or memory: https://i.socdm.com/sdk/js/adg-azs-container.js
Source: a562e271c28ce1cb_0.1.dr, 4f99f75766b6b7fe_0.1.dr, 2e945b9f3fee2c50_0.1.dr, 41e713294820c411_0.1.dr, dae94e10ef035149_0.1.dr	String found in binary or memory: https://i.socdm.com/sdk/js/adg-script-loader.js?displayid=1&async=true&flexibleOL=true&autoPadding=t
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://i.w55c.net/ping_match.gif?ei=RUBICON&rurl=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://ib.adnxs.com/getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://id.knsso.com/usync
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://id.rlcdn.com/709414.gif
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://id.sharedid.org/usync?redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D624210%26
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://id5-sync.com/i/175/9.gif
Source: Current Session.1.dr	String found in binary or memory: https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMyOTcmdGw9MTI5NjAw&piggybackCoo
Source: 417d44c966162bbf_0.1.dr	String found in binary or memory: https://image6.pubmatic.com/AdServer/PugMaster?sec=1&async=1&kdntuid=1&rnd=25560792&p=157377&s=0&a=0
Source: bd7958f6689f890b_0.1.dr	String found in binary or memory: https://imp-adedge.i-mobile.co.jp/script/v1/spot.js?20181121
Source: 693b0dfadae079cc_0.1.dr, a782bc86a3b81da4_0.1.dr	String found in binary or memory: https://ja-ces.or.jp/
Source: cb2151828fe86510_0.1.dr	String found in binary or memory: https://ja-ces.or.jp/(
Source: ea481fc6e74d044f_0.1.dr	String found in binary or memory: https://ja-ces.or.jp/D
Source: 6198a102811c2f6d_0.1.dr	String found in binary or memory: https://ja-ces.or.jp/VO
Source: 7df5b6e20f2af607_0.1.dr	String found in binary or memory: https://ja-ces.or.jp/V_
Source: 0de576a9af9c678f_0.1.dr	String found in binary or memory: https://ja-ces.or.jp/X
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://match.adsby.bidtheatre.com/rubiconmatch
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://match.adsrvr.org/track/cmf/rubicon
Source: Current Session.1.dr	String found in binary or memory: https://match.bnmla.com/usersync?sspid=10738&redir=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvco
Source: Current Session.1.dr	String found in binary or memory: https://match.deepintent.com/usersync/141?redir=https%3A%2F%2Fimage2.pubmatic.com%2FAdServer%2FPug%3
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://match.deepintent.com/usersync/143
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://match.prod.bidr.io/cookie-sync/rp?bee_sync_partners=rp
Source: 97b834ef0803d9e7_0.1.dr, fcf2c74c021f7c56_0.1.dr	String found in binary or memory: https://mhlw.go.jp/
Source: 254c5407071bb61d_0.1.dr	String found in binary or memory: https://mhlw.go.jp/(
Source: 9b2160d82b9e4faa_0.1.dr	String found in binary or memory: https://mhlw.go.jp/A.B
Source: 04b54609843d02e7_0.1.dr	String found in binary or memory: https://mhlw.go.jp/H9
Source: 6115739dd1388ec4_0.1.dr	String found in binary or memory: https://mhlw.go.jp/I
Source: 374f2986eab128df_0.1.dr	String found in binary or memory: https://mhlw.go.jp/J
Source: 71ff639c7a25c6fb_0.1.dr	String found in binary or memory: https://mhlw.go.jp/fm:
Source: 025f1edcacd2ee39_0.1.dr	String found in binary or memory: https://mhlw.go.jp/g
Source: ba7e703f02f92686_0.1.dr	String found in binary or memory: https://mhlw.go.jp/i(=
Source: 8478470334b58522_0.1.dr	String found in binary or memory: https://mhlw.go.jp/vPT
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://ogs.google.com
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://onetag-sys.com/bridge/e
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://p.rfihub.com/cm?in=1&pub=64
Source: manifest.json.1.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: Current Session.1.dr	String found in binary or memory: https://penta.a.one.impact-ad.jp/psm/1.0/actualizar
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://pixel-a.sitescout.com/dmp/pixelSync?nid=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://pixel.mathtag.com/sync/img?redir=https%3A%2F%2Ftoken.rubiconproject.com%2Ftoken%3Fpid%3D3591
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://pixel.rubiconproject.com/exchange/sync.php?p=a9eu
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://pixel.rubiconproject.com/exchange/sync.php?p=a9us
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://pixel.rubiconproject.com/token?pid=27384
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://pixel.rubiconproject.com/token?pid=34458
Source: d19d6471338d3ff1_0.1.dr	String found in binary or memory: https://platform.twitter.com/js/button.5573c974dc31bbdab5ea7923a0bd5cf3.js
Source: b1ace53f1483ebae_0.1.dr, 0de576a9af9c678f_0.1.dr	String found in binary or memory: https://platform.twitter.com/widgets.js
Source: Current Session.1.dr	String found in binary or memory: https://platform.twitter.com/widgets/tweet_button.06c6ee58c3810956b7509218508c7b56.ja.html#dnt=false
Source: Current Session.1.dr	String found in binary or memory: https://platform.twitter.com/widgets/widget_iframe.06c6ee58c3810956b7509218508c7b56.html?origin=http
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://play.google.com
Source: 417d44c966162bbf_0.1.dr	String found in binary or memory: https://pubmatic.com/
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://px.owneriq.net/erb
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://px.owneriq.net/eucm/p/rc?redir=https%3A%2F%2Ftoken.rubiconproject.com%2Ftoken%3Fpid%3D3353%2
Source: Current Session.1.dr	String found in binary or memory: https://px.owneriq.net/noop?ct=image%2Fgif
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr	String found in binary or memory: https://r5---sn-h0jeln7l.gvt1.com
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://rbp.mxptint.net/sn.ashx
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://rcp.c.appier.net/rbcm
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://redirector.gvt1.com
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://rtb.adentifi.com/CookieSyncRubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://rubicon.digitru.st/digitrust-sync
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://rubiconcm.digitaleast.mobi/usersync/rubicon.gif
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://rubiconproject.com/
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://s.amazon-adsystem.com/x/1c2fd14bf310b6aff649
Source: Current Session.1.dr	String found in binary or memory: https://s.tribalfusion.com/z/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvc
Source: b513e1192537baeb_0.1.dr	String found in binary or memory: https://s.yimg.jp/images/advertising/common/js/iicon.min.js
Source: Current Session.1.dr	String found in binary or memory: https://s.yimg.jp/images/listing/tool/yads/yads-iframe.html?start_prod_num=0&s=67018_295415&fr_id=ya
Source: manifest.json.1.dr	String found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://secure.adnxs.com/getuidnb?https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D4894%26nid%
Source: Current Session.1.dr	String found in binary or memory: https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMyMDMmdGw9NDMyMDA=&piggybackCo
Source: d28853861de1103c_0.1.dr	String found in binary or memory: https://socdm.com/Z
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://ssl.gstatic.com
Source: 1fe1ce509956500f_0.1.dr	String found in binary or memory: https://static.ads-twitter.com/uwt.js
Source: Network Action Predictor.1.dr	String found in binary or memory: https://static.criteo.net/
Source: 3a2bde8044c36811_0.1.dr	String found in binary or memory: https://static.criteo.net/js/ld/publishertag.js
Source: de127990e43d2e44_0.1.dr	String found in binary or memory: https://static.criteo.net/js/ld/publishertag.prebid.js
Source: 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://static.xx.fbcdn.net
Source: adf7722569fd0bc6_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/y3/r/CrII4R3C1FT.js?_nc_x=Ij3Wp8lg5Kz
Source: 3f06794e593404b1_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/y5/r/MDvm8UUNBBw.js?_nc_x=Ij3Wp8lg5Kz
Source: 185f65919f8657a6_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/y9/r/ugD21mPGNBo.js?_nc_x=Ij3Wp8lg5Kz
Source: e17efa549f5b4d3b_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/yT/r/CiZTi5pjDe1.js?_nc_x=Ij3Wp8lg5Kz
Source: 6386862eb4b2bb21_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/y_/r/JopZtdti8dq.js?_nc_x=Ij3Wp8lg5Kz
Source: b2c8341815361ffa_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/yb/r/UHlXKQHdl3t.js?_nc_x=Ij3Wp8lg5Kz
Source: 6214889f7c2e82fe_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/yd/r/Nk-rM4iWJZl.js?_nc_x=Ij3Wp8lg5Kz
Source: ef103027ee3b845d_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/yf/r/xn-3wPDECjN.js?_nc_x=Ij3Wp8lg5Kz
Source: 0da2f868400f82ef_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/yj/r/IUy0P1uEqH3.js?_nc_x=Ij3Wp8lg5Kz
Source: c4c7f1bec05b0c69_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/yj/r/_7Fp1_8TZ3D.js?_nc_x=Ij3Wp8lg5Kz
Source: 3478c12dca436e2d_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/ys/r/YL6q3hajciu.js?_nc_x=Ij3Wp8lg5Kz
Source: c573b2ce1a7b4785_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/yt/r/7x71UTSzUeX.js?_nc_x=Ij3Wp8lg5Kz
Source: 1ada5ae8963a52d7_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
Source: 89a981ce4d0a0464_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/yv/r/eRfcZJxUwCV.js?_nc_x=Ij3Wp8lg5Kz
Source: 3bb10d6b1efce9fd_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3i2UN4/yt/l/de_DE/tpIQPRjSdgv.js?_nc_x=Ij3Wp8lg5Kz
Source: 8cfa1199efdab160_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3i5ED4/yz/l/de_DE/63GuVXEYA0F.js?_nc_x=Ij3Wp8lg5Kz
Source: 42fa32866eba36b2_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3iMoJ4/yX/l/de_DE/a-2elIqyU3L.js?_nc_x=Ij3Wp8lg5Kz
Source: b33e1f449eb327db_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3iN_84/y6/l/de_DE/6d1QoB2_uVs.js?_nc_x=Ij3Wp8lg5Kz
Source: e76d480e5ffe042e_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3iNtm4/yP/l/de_DE/xqdIHa8I6D_.js?_nc_x=Ij3Wp8lg5Kz
Source: b343428e4e214036_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3iOTn4/yF/l/de_DE/AghE3rjighB.js?_nc_x=Ij3Wp8lg5Kz
Source: d8e4fe21d12de66f_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3iOTn4/yi/l/de_DE/1yn8K1CVZ6m.js?_nc_x=Ij3Wp8lg5Kz
Source: 76015e3a4b6224a2_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3iVab4/y2/l/de_DE/RTkqPFbXKo8.js?_nc_x=Ij3Wp8lg5Kz
Source: 446f107d2b69240e_0.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3ibyi4/y1/l/de_DE/bt7u4jh_X13.js?_nc_x=Ij3Wp8lg5Kz
Source: Favicons.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/yb/r/hLRJ1GG_y0J.ico
Source: Favicons.1.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/yb/r/hLRJ1GG_y0J.ico4
Source: d7c2dacb15547355_0.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/dc.js
Source: b1ce1a24dbd33c5b_0.1.dr	String found in binary or memory: https://stopcovid19.jp/
Source: b1ace53f1483ebae_0.1.dr	String found in binary or memory: https://stopcovid19.jp/X
Source: 0b91c0c5c27d6e45_0.1.dr	String found in binary or memory: https://stopcovid19.jp/Y
Source: 802e1bfb59a9db13_0.1.dr	String found in binary or memory: https://stopcovid19.jp/e
Source: d830ce70b8d08e98_0.1.dr	String found in binary or memory: https://stopcovid19.jp/f
Source: 9e285134dde499bf_0.1.dr	String found in binary or memory: https://stopcovid19.jp/q
Source: d19d6471338d3ff1_0.1.dr	String found in binary or memory: https://stopcovid19.jp/r
Source: 7b2a5235503b4b88_0.1.dr	String found in binary or memory: https://stopcovid19.jp/y3
Source: messages.json83.1.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json83.1.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync-dsp.ad-m.asia/dsp/api/sync/send?s=rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync-tm.everesttech.net/upi/pid/btu4jd3a?redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync.1rx.io/usersync2/rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync.adotmob.com/cookie/rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync.extend.tv/r.gif?exchange=rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&mi=10&dpi=54
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync.ipredictive.com/d/sync/cookie/generic?https://pixel.rubiconproject.com/tap.php?v=17149&
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync.mathtag.com/sync/img?mt_exid=9&redir=https%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync.srv.stackadapt.com/sync?nid=14
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync.tidaltv.com/GenericUserSync.ashx?dpid=695
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://sync.tidaltv.com/genericusersync.ashx?dpid=rubicon
Source: 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://syndication.twitter.com
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://tags.bluekai.com/site/6123?redir=https%3A%2F%2Ftoken.rubiconproject.com%2Ftoken%3Fpid%3D3%26
Source: 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://taisukef.github.io
Source: ee3f7893eb7fc0fa_0.1.dr	String found in binary or memory: https://taisukef.github.io/util/util.mjs
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://tg.socdm.com/rtb/sync?proto=rubicon
Source: Current Session.1.dr	String found in binary or memory: https://tk3-805-12365.vw.sakura.ne.jp:3443/mini
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/khaos.jpg?
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=10362
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=2046&pt=n&a=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=2249&pt=n
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=25470
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=26594
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=27&a=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=28752
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=2974&pt=n&a=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=36584
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=37556&a=1
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://token.rubiconproject.com/token?pid=6404
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://tr.blismedia.com/v1/api/sync/rubicon
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://um.simpli.fi/rb_match
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://um2.eqads.com:443/um/rc
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://ums.acuityplatform.com/tum?umid=2
Source: cfbdcba4d4494926_0.1.dr	String found in binary or memory: https://www.clarity.ms/tag/4vukw9o1x4
Source: 9e285134dde499bf_0.1.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: 665a8aa81f8330ba_0.1.dr	String found in binary or memory: https://www.google-analytics.com/analytics.jsaD
Source: 665a8aa81f8330ba_0.1.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: 02889551788d14d1_0.1.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=GTM-57M9G3G&cid=1860853571.1626333663
Source: 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://www.google.ch
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, manifest.json0.1.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://www.google.com
Source: manifest.json.1.dr, Network Action Predictor-journal.1.dr	String found in binary or memory: https://www.google.com/
Source: 8478470334b58522_0.1.dr	String found in binary or memory: https://www.google.com/cse/static/element/b54a745638da8bbb/cse_element__ja.js?usqp=CAI%3D
Source: manifest.json0.1.dr	String found in binary or memory: https://www.google.com;
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://www.googleapis.com
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json.1.dr	String found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json0.1.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: 665a8aa81f8330ba_0.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: 7aee37dd622a4e46_0.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=G-LZZ5Y9M58K&l=dataLayer&cx=c
Source: c871ee38a4562d6a_0.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=G-LZZ5Y9M58Kd
Source: f4eb7bba90bf5a5c_0.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-162141832-1
Source: 509232bb9ca12ba0_0.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=GTM-5TDHQX
Source: 62d29eba-b592-409f-9efa-bab7873c3b4a.tmp.3.dr, 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr	String found in binary or memory: https://www.gstatic.com
Source: 97b834ef0803d9e7_0.1.dr	String found in binary or memory: https://www.gstatic.com/prose/brandjs.js
Source: manifest.json0.1.dr	String found in binary or memory: https://www.gstatic.com;
Source: Current Session.1.dr	String found in binary or memory: https://www.ja-ces.or.jp
Source: Network Action Predictor-journal.1.dr, Current Session.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/
Source: Favicons.1.dr, Current Session.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/info-ce/%e4%ba%ba%e5%b7%a5%e5%91%bc%e5%90%b8%e5%99%a8%e3%81%8a%e3%82%88%e3%
Source: ad1ee8a46673fd3d_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/plugins/contact-form-7-add-confirm/includes/js/scripts
Source: 6c328409abe273f8_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.
Source: db8d81a1b1fffaa9_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/plugins/lightning-advanced-unit/inc/navigation/js/navi
Source: 22af22b9e46fc343_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/plugins/lightning-advanced-unit/js/lightning-adv.min.j
Source: 7df5b6e20f2af607_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.5
Source: c83d6da5b16bd5fb_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/plugins/svg-support/js/min/svgs-inline-min.js?ver=1.0.
Source: 9ef6dd16e6c04320_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/plugins/vk-all-in-one-expansion-unit/js/all.min.js?ver
Source: ea481fc6e74d044f_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/plugins/wp-jquery-lightbox/jquery.lightbox.min.js?ver=
Source: cb2151828fe86510_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/plugins/wp-jquery-lightbox/jquery.touchwipe.min.js?ver
Source: 6198a102811c2f6d_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/themes/lightning/js/lightning.min.js?ver=5.1.2
Source: Favicons.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/uploads/2018/04/cropped-mark512-32x32.png
Source: Favicons.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-content/uploads/2018/04/cropped-mark512-32x32.png&
Source: 6be9779e925d9085_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
Source: 3e325b24ae8e7fc3_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-includes/js/jquery/jquery.form.min.js?ver=4.2.1
Source: a782bc86a3b81da4_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
Source: 693b0dfadae079cc_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-includes/js/wp-embed.min.js?ver=5.2.11
Source: 1ed688489afa22d3_0.1.dr	String found in binary or memory: https://www.ja-ces.or.jp/wordpress/wp-includes/js/wp-emoji-release.min.js?ver=5.2.11
Source: Current Session.1.dr	String found in binary or memory: https://www.ja-ces.or.jph
Source: 000003.log0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/
Source: Favicons.1.dr, Current Session.1.dr	String found in binary or memory: https://www.mhlw.go.jp/bunya/kenkou/kekkaku-kansenshou15/02-02.html
Source: Current Session.1.dr	String found in binary or memory: https://www.mhlw.go.jp/bunya/kenkou/kekkaku-kansenshou15/02-02.htmlW
Source: c211b3c7fa1797c6_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/js/app.js
Source: 374f2986eab128df_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/js/bundle.js
Source: 1eec102889a7d5de_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/DD_belatedPNG.js
Source: 71ff639c7a25c6fb_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/_scriptLoader.js
Source: 9b2160d82b9e4faa_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/flatHeights.paddingbugfix-ver.js
Source: b03c983cdd03da8d_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/jquery.closeUp.js
Source: 6115739dd1388ec4_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/jquery.js
Source: fff68a289301b614_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/jquery.mk_changeFontSize.js
Source: a8021a103cac1926_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/jquery.mk_cookie.js
Source: 1ceb78fd7b4f42b9_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/jquery.mk_inputFucus.js
Source: 025f1edcacd2ee39_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/jquery.mk_location.js
Source: 73ccb4559ad00796_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/jquery.mk_megaDropdown.js
Source: f84915395d85abfe_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/jquery.mk_smoothScroll.js
Source: 2010a3486f72e241_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/jquery.mk_styleAdjust_icon.js
Source: ba7e703f02f92686_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/my.util.js
Source: fcf2c74c021f7c56_0.1.dr	String found in binary or memory: https://www.mhlw.go.jp/common/scripts/newDate.js
Source: Favicons.1.dr	String found in binary or memory: https://www.mhlw.go.jp/favicon.ico
Source: Current Session.1.dr	String found in binary or memory: https://www.mhlw.go.jp/search.html
Source: Current Session.1.dr	String found in binary or memory: https://www.mhlw.go.jp/stf/seisakunitsuite/newpage_00023.html
Source: 82c086a3-9b05-4929-971a-eb41cb71f415.tmp.3.dr, Current Session.1.dr	String found in binary or memory: https://www.stopcovid19.jp
Source: Favicons.1.dr, Current Session.1.dr	String found in binary or memory: https://www.stopcovid19.jp/
Source: Favicons-journal.1.dr	String found in binary or memory: https://www.stopcovid19.jp/#
Source: History Provider Cache.1.dr	String found in binary or memory: https://www.stopcovid19.jp/2:COVID-19
Source: Current Session.1.dr	String found in binary or memory: https://www.stopcovid19.jp/:COVID-19
Source: History.1.dr	String found in binary or memory: https://www.stopcovid19.jp/COVID-19
Source: 7b2a5235503b4b88_0.1.dr	String found in binary or memory: https://www.stopcovid19.jp/Chart.bundle.min.js
Source: History-journal.1.dr	String found in binary or memory: https://www.stopcovid19.jp/E:x
Source: Current Session.1.dr	String found in binary or memory: https://www.stopcovid19.jp/KH
Source: Favicons.1.dr	String found in binary or memory: https://www.stopcovid19.jp/covid19japan-icon.png
Source: Favicons-journal.1.dr	String found in binary or memory: https://www.stopcovid19.jp/covid19japan-icon.png#
Source: 0b91c0c5c27d6e45_0.1.dr	String found in binary or memory: https://www.stopcovid19.jp/fukuno.js
Source: b1ce1a24dbd33c5b_0.1.dr	String found in binary or memory: https://www.stopcovid19.jp/mhlw-graph.mjs
Source: d830ce70b8d08e98_0.1.dr	String found in binary or memory: https://www.stopcovid19.jp/translation.js
Source: Current Session.1.dr	String found in binary or memory: https://www.stopcovid19.jph
Source: 135a9e73b7a29232_0.1.dr	String found in binary or memory: https://x.bidswitch.net/sync?ssp=rubicon
Source: 5d9be227865dff27_0.1.dr	String found in binary or memory: https://yads.c.yimg.jp/js/yads-async.js
Source: 51196661b8f777b5_0.1.dr	String found in binary or memory: https://yads.c.yimg.jp/js/yads.js
Source: 7052c509a8f8b1f1_0.1.dr, 7c6c430c5b32df45_0.1.dr	String found in binary or memory: https://yads.c.yimg.jp/uadf/yads_vimps.js
Source: f5f2a49254671b73_0.1.dr	String found in binary or memory: https://yads.yjtag.yahoo.co.jp/tag?s=67018_295415&fr_id=yads_564321-0&sb_support=1&enc=UTF-8&u=https
Source: 5d9be227865dff27_0.1.dr	String found in binary or memory: https://yimg.jp/
Source: d9024b17b2399765_0.1.dr	String found in binary or memory: https://yimg.jp/#Xu

Uses HTTPS

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50179
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50189
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50147 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50092
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50130
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50135
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50134
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown	Network traffic detected: HTTP traffic on port 49939 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50140
Source: unknown	Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50141
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50144
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50143
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50147
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50155
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 50050 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50137 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50164
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50163
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50165
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50169
Source: unknown	Network traffic detected: HTTP traffic on port 50109 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50173
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50122 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49970 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50094 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 50060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 50077 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 50134 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50053 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50088 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 50076 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50031 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 49969 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50054 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown	Network traffic detected: HTTP traffic on port 50164 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50129 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50052 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50135 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49934
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 50087 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 50169 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50064 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 50029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 50086 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50092 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50179 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 50140 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49993 -> 443

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 104.244.42.200:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.109.153:443 -> 192.168.2.4:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.199.109.153:443 -> 192.168.2.4:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.196.15:443 -> 192.168.2.4:49809 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 199.232.136.157:443 -> 192.168.2.4:49847 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49840 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49843 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49842 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49841 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.182.163.232:443 -> 192.168.2.4:49846 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 37.252.172.249:443 -> 192.168.2.4:49852 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.112:443 -> 192.168.2.4:49869 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.244.42.5:443 -> 192.168.2.4:49891 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.124.170:443 -> 192.168.2.4:49896 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49858 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49856 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49857 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49872 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49873 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49871 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49875 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49868 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49865 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49866 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49864 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49867 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49874 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.95.166.26:443 -> 192.168.2.4:49889 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 202.241.208.56:443 -> 192.168.2.4:49890 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49894 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49911 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49912 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49910 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49917 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 124.146.215.52:443 -> 192.168.2.4:49919 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 143.204.98.89:443 -> 192.168.2.4:49927 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 143.204.98.89:443 -> 192.168.2.4:49928 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49924 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49925 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49923 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49922 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.230.7.5:443 -> 192.168.2.4:49929 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.115:443 -> 192.168.2.4:49969 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49958 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.213.109.249:443 -> 192.168.2.4:49966 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.242.197:443 -> 192.168.2.4:49980 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.29.132.144:443 -> 192.168.2.4:50031 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.124.143.99:443 -> 192.168.2.4:50028 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.93.69.146:443 -> 192.168.2.4:50029 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 91.228.74.134:443 -> 192.168.2.4:50034 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.214.249:443 -> 192.168.2.4:50033 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.127.51.194:443 -> 192.168.2.4:50050 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 169.50.137.190:443 -> 192.168.2.4:50062 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 212.82.100.176:443 -> 192.168.2.4:50060 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.110:443 -> 192.168.2.4:50065 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.236.227.29:443 -> 192.168.2.4:50064 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.214.249:443 -> 192.168.2.4:50076 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 66.155.71.25:443 -> 192.168.2.4:50079 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.232.92.67:443 -> 192.168.2.4:50077 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.114:443 -> 192.168.2.4:50084 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50085 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50086 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50087 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.17.35.107:443 -> 192.168.2.4:50088 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 213.19.147.44:443 -> 192.168.2.4:50092 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.2.255.233:443 -> 192.168.2.4:50090 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 213.19.147.44:443 -> 192.168.2.4:50096 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 38.27.122.158:443 -> 192.168.2.4:50105 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.29.225.117:443 -> 192.168.2.4:50109 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.212.225.58:443 -> 192.168.2.4:50108 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.18.52.16:443 -> 192.168.2.4:50110 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.4:50119 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.226:443 -> 192.168.2.4:50118 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.226:443 -> 192.168.2.4:50120 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.242.197:443 -> 192.168.2.4:50122 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.156.0.31:443 -> 192.168.2.4:50128 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 212.82.100.176:443 -> 192.168.2.4:50127 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 169.50.137.190:443 -> 192.168.2.4:50130 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50135 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.189.114:443 -> 192.168.2.4:50140 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 66.155.71.25:443 -> 192.168.2.4:50137 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50141 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50144 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.64.190.80:443 -> 192.168.2.4:50143 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.236.227.29:443 -> 192.168.2.4:50134 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 204.2.255.233:443 -> 192.168.2.4:50139 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.124.143.99:443 -> 192.168.2.4:50155 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.98.64.218:443 -> 192.168.2.4:50165 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.98.64.218:443 -> 192.168.2.4:50164 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.242.197:443 -> 192.168.2.4:50163 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 198.148.27.140:443 -> 192.168.2.4:50179 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.201.96.126:443 -> 192.168.2.4:50189 version: TLS 1.2

System Summary:

Classification label

Source: classification engine

Classification label: clean1.win@67/299@181/78

Creates files inside the user directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-60EFE1C5-B78.pma

Jump to behavior

Creates temporary files

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Temp\616366a9-3ae6-4667-b54a-0755d9d681e0.tmp

Jump to behavior

Spawns processes

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://www.stopcovid19.jp/'
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1532,11141525606934232942,4789934611024801501,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1756 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1532,11141525606934232942,4789934611024801501,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1756 /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Found graphical window changes (likely an installer)

Source: Window Recorder

Window detected: More than 3 window changes detected