Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| app.fortect.com | 104.26.2.16 | |
| service.fortect.com | 104.26.3.16 | |
| cloud.fortect.com | 172.67.75.40 |
- TCP Requests
-
-
192.168.56.102:49163 104.26.2.16:443cloud.fortect.com
-
192.168.56.102:49164 104.26.2.16:443cloud.fortect.com
-
192.168.56.102:49167 104.26.2.16:443cloud.fortect.com
-
192.168.56.102:49169 104.26.2.16:443cloud.fortect.com
-
192.168.56.102:49171 104.26.2.16:443cloud.fortect.com
-
192.168.56.102:49369 104.26.2.16:443cloud.fortect.com
-
192.168.56.102:49374 104.26.2.16:443cloud.fortect.com
-
192.168.56.102:49380 104.26.2.16:443cloud.fortect.com
-
192.168.56.102:49383 104.26.2.16:443cloud.fortect.com
-
192.168.56.102:49365 104.26.3.16:443cloud.fortect.com
-
192.168.56.102:49366 104.26.3.16:443cloud.fortect.com
-
192.168.56.102:49367 104.26.3.16:443cloud.fortect.com
-
192.168.56.102:49368 104.26.3.16:443cloud.fortect.com
-
192.168.56.102:49370 104.26.3.16:443cloud.fortect.com
-
192.168.56.102:49373 104.26.3.16:443cloud.fortect.com
-
192.168.56.102:49377 104.26.3.16:443cloud.fortect.com
-
172.67.75.40:443 192.168.56.102:49172
-
192.168.56.102:49357 172.67.75.40:443cloud.fortect.com
-
- UDP Requests
-
-
192.168.56.102:56630 164.124.101.2:53
-
192.168.56.102:62846 164.124.101.2:53
-
192.168.56.102:63709 164.124.101.2:53
-
192.168.56.102:64513 164.124.101.2:53
-
192.168.56.102:137 192.168.56.255:137
-
192.168.56.102:138 192.168.56.255:138
-
192.168.56.102:49152 239.255.255.250:3702
-
192.168.56.102:62849 239.255.255.250:1900
-
52.231.114.183:123 192.168.56.102:123
-
GET
200
https://app.fortect.com/events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=INSST¶m=Downloader%20Started<*>
REQUEST
RESPONSE
BODY
GET /events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=INSST¶m=Downloader%20Started<*> HTTP/1.1
User-Agent: Fortect
Host: app.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:27:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b9ueaWXsrX4gWZBvWLcV2mu9g22l5iqvKURuC9nHv7UH0CbdgROxgNJPsZMmXbJPLwPFGeIoW76UDFv2j56jFVMr2pvjycj1oRNZDxDMIR10IzWuhqEX63y2OVyhAh%2BZtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2bfeb2e2b29da-FUK
GET
200
https://app.fortect.com/ev-install-start/ev-install-start.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502
REQUEST
RESPONSE
BODY
GET /ev-install-start/ev-install-start.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502 HTTP/1.1
User-Agent: Fortect
Host: app.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:27:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
accept-ch: Sec-Ch-Ua,Sec-Ch-Ua-Full-Version,Sec-Ch-Ua-Platform,Sec-Ch-Ua-Platform-Version
Set-Cookie: PHPSESSID=4jt9opspvntbn500lrm1b5insb; path=/
Set-Cookie: _refcook=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _source=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _trackid=14717793; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _trackid_14717793=14717793; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _tracking=direct; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _tracking_direct=direct; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _campaign=referrer-with-no-se; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _campaign_referrer-with-no-se=referrer-with-no-se; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _adgroup=shuki-insert-cdb-event; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _keyword=direct; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _keyword_direct=direct; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _ads=direct; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _ads_direct=direct; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _browser=Default%20Browser; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _browser_Default%20Browser=Default%20Browser; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _country=South%20Korea; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _country_South_Korea=South_Korea; expires=Sun, 01-Sep-2024 00:27:26 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LPTfVuQ%2BzdYnqPxrjSN%2FZJH4BJ0TFoqpK8Iaul%2FegZKzeQG9JiEsJQgQDqJf2o6Q4b%2F0sX5RmE%2F2zsh4nZQeQMo1j08pVtzhKDUlA7POygOuwBozlZS5kuL7un1m5rjSLg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2bfef5e1329d4-FUK
GET
200
https://app.fortect.com/events/version.php?data=json&sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&installed=
REQUEST
RESPONSE
BODY
GET /events/version.php?data=json&sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&installed= HTTP/1.1
User-Agent: Fortect
Host: app.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: PHPSESSID=4jt9opspvntbn500lrm1b5insb; _trackid=14717793; _trackid_14717793=14717793; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=shuki-insert-cdb-event; _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=Default%20Browser; _browser_Default%20Browser=Default%20Browser; _country=South%20Korea; _country_South_Korea=South_Korea
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:27:47 GMT
Content-Type: application/json
Content-Length: 924
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Expires: Sat, 26 Jul 1997 05:00:00 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vnonEnnygmDv6jDrs4SEFXh0Dz8rXzbTNp4bVJYkIuTs7%2FI65pHRe7qy%2B5Z2fiXxbjpEXET2Nbf17NNk0%2B5nNbIzQ89NJAZ9weKJ9hjWI2%2FxSlIXFpLH6ED%2F%2B6NHECSyhw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2c072884729dd-FUK
GET
200
https://app.fortect.com/events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=LANG¶m=1042<*>ko<*>
REQUEST
RESPONSE
BODY
GET /events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=LANG¶m=1042<*>ko<*> HTTP/1.1
User-Agent: Fortect
Host: app.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: PHPSESSID=4jt9opspvntbn500lrm1b5insb; _trackid=14717793; _trackid_14717793=14717793; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=shuki-insert-cdb-event; _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=Default%20Browser; _browser_Default%20Browser=Default%20Browser; _country=South%20Korea; _country_South_Korea=South_Korea
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:27:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nLEtNowf3dHf8muhZSZaiQKAIJA5xti%2Bh0B%2FpKysiMELl1X0T5Ww1zl2t%2FahA%2BL9H3d174MC%2BUd26PsyS%2FibUS85I0JbnvqwmkZ86EKrHspiI7x4DM9wv%2Fe967sTc8KF%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2c0762d6c29e0-FUK
GET
200
https://app.fortect.com/events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=INSVR¶m=6.5.0.2<*>
REQUEST
RESPONSE
BODY
GET /events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=INSVR¶m=6.5.0.2<*> HTTP/1.1
User-Agent: Fortect
Host: app.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: PHPSESSID=4jt9opspvntbn500lrm1b5insb; _trackid=14717793; _trackid_14717793=14717793; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=shuki-insert-cdb-event; _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=Default%20Browser; _browser_Default%20Browser=Default%20Browser; _country=South%20Korea; _country_South_Korea=South_Korea
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:27:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f32q3Dr4vV2CRoRcLfyGlF14912E6mEUo3RraNCdtwxyrkPadMtlIQjjH%2BKr7xgGKpOmh4thIFHQOAdfWWeduSIgEgS4D%2BX6sRjtM9OIP2qfzsCmjcddX%2BQPmXw1aC8Jyw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2c07a088629d4-FUK
GET
200
https://cloud.fortect.com/app/installation/engine/6502/FortectSetup64.7z
REQUEST
RESPONSE
BODY
GET /app/installation/engine/6502/FortectSetup64.7z HTTP/1.1
User-Agent: Fortect
Host: cloud.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: _trackid=14717793; _trackid_14717793=14717793; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=shuki-insert-cdb-event; _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=Default%20Browser; _browser_Default%20Browser=Default%20Browser; _country=South%20Korea; _country_South_Korea=South_Korea
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:27:49 GMT
Content-Type: application/x-compressed
Content-Length: 85247839
Connection: keep-alive
x-amz-id-2: B21f9lPsZQjt3sLr0wUEzd/uC1kDVTSC604NANhMwt/FQ6KUVz6f5w2nDloKckxAkZvcr6N4ljM=
x-amz-request-id: M3SAZA37YGM14GGN
Last-Modified: Mon, 20 May 2024 09:49:15 GMT
ETag: "a849319398500bc072125a6d7dd4a497-17"
Cache-Control: max-age=345600
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IM%2BRIpXV%2BMDOWA%2FacmEubWhOfEWQAYP4JrhfQeC8deSIvwyp2VEOD5LMjnKXjixLOk4hGKVNmsZTZWjqKNf7Lf1BBO4PPRU2wyXFOmKqLYq72POfswFc%2BK4WL5rCXW94Czql"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2c07d182129dd-FUK
GET
200
https://cloud.fortect.com/app/installation/service/6502/FortectProtection64.7z
REQUEST
RESPONSE
BODY
GET /app/installation/service/6502/FortectProtection64.7z HTTP/1.1
User-Agent: Fortect
Host: cloud.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: _trackid=14717793; _trackid_14717793=14717793; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=shuki-insert-cdb-event; _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=Default%20Browser; _browser_Default%20Browser=Default%20Browser; _country=South%20Korea; _country_South_Korea=South_Korea
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:28:17 GMT
Content-Type: application/x-compressed
Content-Length: 1947300
Connection: keep-alive
x-amz-id-2: aq+P0jRF0rFtOWLQ2sysUoiJUkVtVCfzipaZaR4WOZik4INiwZtJsZd84YQWO40T7DO0bGDJCl4=
x-amz-request-id: A55H9YG5BN7DKMYK
Last-Modified: Sun, 19 May 2024 12:38:50 GMT
ETag: "7ce3632b4d8c658b8dd5a70719436388"
Cache-Control: max-age=345600
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SKlcqmMSfYy3%2BRiQG9PPkuanZTCRbD9wNML380eoFqn5rZckBwbXZioMW305BanrWErgL4wYgNooobohqATfEAYwHWx5tpU0q6YYe6YioWYDJ93lWoYk6qO4AScHi3C03tzI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2c12e4ee629db-FUK
GET
200
https://app.fortect.com/events/evt_scan.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=AUINS¶m=service%20installed<*>0<*>6.5.0.2<*>
REQUEST
RESPONSE
BODY
GET /events/evt_scan.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=AUINS¶m=service%20installed<*>0<*>6.5.0.2<*> HTTP/1.1
User-Agent: Fortect
Host: app.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: PHPSESSID=4jt9opspvntbn500lrm1b5insb; _trackid=14717793; _trackid_14717793=14717793; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=shuki-insert-cdb-event; _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=Default%20Browser; _browser_Default%20Browser=Default%20Browser; _country=South%20Korea; _country_South_Korea=South_Korea
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:28:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jbn81p1gupxlrrPMxaKrJigkr1RxOdK41icWAbg0xTzu9jsEtfO2w%2B1UuafqtX4amvUQnPmc1NxqtxISP8bDcyvmox%2FOqK6hLYuWStLJ%2FT3iY%2BTV%2F7mUcdlskYsetPb67w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2c1917bef29d1-FUK
GET
200
https://app.fortect.com/events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=PKAOK¶m=ServiceRunning<*>
REQUEST
RESPONSE
BODY
GET /events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=PKAOK¶m=ServiceRunning<*> HTTP/1.1
User-Agent: Fortect
Host: app.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: PHPSESSID=4jt9opspvntbn500lrm1b5insb; _trackid=14717793; _trackid_14717793=14717793; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=shuki-insert-cdb-event; _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=Default%20Browser; _browser_Default%20Browser=Default%20Browser; _country=South%20Korea; _country_South_Korea=South_Korea
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:28:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fPVKfFwfdwwtsOjEZ3LD4fSbqlIv%2BPEpPTiVPRhtd7CtpqxTNiksHuQlzZdBYVWyMIuAsNPAglmYXyO9h28wmbPgnyZIXuVt7gwui0h7YjTW43jhknVM9RJW96H1wfugJg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2c19abfae29d9-FUK
GET
200
https://app.fortect.com/ev-install-end/ev-install-end.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502
REQUEST
RESPONSE
BODY
GET /ev-install-end/ev-install-end.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502 HTTP/1.1
User-Agent: Fortect
Host: app.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: PHPSESSID=4jt9opspvntbn500lrm1b5insb; _trackid=14717793; _trackid_14717793=14717793; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=shuki-insert-cdb-event; _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=Default%20Browser; _browser_Default%20Browser=Default%20Browser; _country=South%20Korea; _country_South_Korea=South_Korea
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:28:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
accept-ch: Sec-Ch-Ua,Sec-Ch-Ua-Full-Version,Sec-Ch-Ua-Platform,Sec-Ch-Ua-Platform-Version
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: _refcook=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _source=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _refcook=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _source=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _trackid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _trackid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _trackid_14717793=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _trackid_14717793=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _trackid=14717793; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _trackid_14717793=14717793; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _tracking=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _tracking=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _tracking_direct=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _tracking_direct=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _tracking=direct; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _tracking_direct=direct; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _campaign=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _campaign=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _campaign_referrer-with-no-se=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _campaign_referrer-with-no-se=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _campaign=referrer-with-no-se; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _campaign_referrer-with-no-se=referrer-with-no-se; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _adgroup=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _adgroup=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _adgroup_shuki-insert-cdb-event=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _adgroup_shuki-insert-cdb-event=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _adgroup=shuki-insert-cdb-event; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _keyword=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _keyword=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _keyword_direct=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _keyword_direct=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _keyword=direct; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _keyword_direct=direct; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _ads=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _ads=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _ads_direct=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _ads_direct=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _ads=direct; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _ads_direct=direct; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _browser=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _browser=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _browser_Default%20Browser=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _browser_Default%20Browser=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _browser=Default%20Browser; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _browser_Default%20Browser=Default%20Browser; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _country=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _country=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _country_South_Korea=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _country_South_Korea=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _country=South%20Korea; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
Set-Cookie: _country_South_Korea=South_Korea; expires=Sun, 01-Sep-2024 00:28:41 GMT; Max-Age=5184000; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f2UPfF%2BOLWI9mwt6TT40V2gDXCpvoJ5lHi%2By8TOSSRyDCLV9%2BwWkq9B1KZTzOfXozn6sUn2tFCn7bVNpA4juZTzGMubWFmkQWHOFMwadMSF5eIhz8RBvVMAWiZ4nyb1%2BiA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2c1c9ba1c29cf-FUK
GET
200
https://app.fortect.com/events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=INSRN¶m=6.5.0.2<*>
REQUEST
RESPONSE
BODY
GET /events/events.php?sessionid=f1b9f267bedbe168cfcb3bfb1c77135727786305941307e07605b667634ea6d5&minorsessionid=1a01b5d2-41ab-4436-85e7-b2c4a1bb783c&os=7&build=7601&architecture=64&version=6502&id=INSRN¶m=6.5.0.2<*> HTTP/1.1
User-Agent: Fortect
Host: app.fortect.com
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: PHPSESSID=4jt9opspvntbn500lrm1b5insb; _trackid=14717793; _trackid_14717793=14717793; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=shuki-insert-cdb-event; _adgroup_shuki-insert-cdb-event=shuki-insert-cdb-event; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=Default%20Browser; _browser_Default%20Browser=Default%20Browser; _country=South%20Korea; _country_South_Korea=South_Korea
HTTP/1.1 200 OK
Date: Wed, 03 Jul 2024 00:28:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UNwdVamJMf%2FvNG804ee7iKb%2BKpIBswK2AJKw8zs8g8Fy6W0rhfNkh6fh9KFh%2BCa4tJLFRfNqIvd1RZMS6w7RG5KTTkYue9s4PnHyxKO%2BnNUGRh8WpDqBF5PZzAvx96xmBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 89d2c1cd98b929e6-FUK
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
| Flow | Issuer | Subject | Fingerprint |
|---|---|---|---|
|
TLSv1 192.168.56.102:49167 104.26.2.16:443 |
None | None | None |
|
TLSv1 192.168.56.102:49169 104.26.2.16:443 |
None | None | None |
|
TLSv1 192.168.56.102:49171 104.26.2.16:443 |
None | None | None |
|
TLSv1 192.168.56.102:49164 104.26.2.16:443 |
None | None | None |
|
TLSv1 192.168.56.102:49163 104.26.2.16:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1P5 | CN=fortect.com | e1:5a:ec:76:ca:40:34:3d:d4:20:e8:4f:e7:70:c6:f4:db:f9:92:2e |
|
TLSv1 192.168.56.102:49172 172.67.75.40:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1P5 | CN=fortect.com | e1:5a:ec:76:ca:40:34:3d:d4:20:e8:4f:e7:70:c6:f4:db:f9:92:2e |
|
TLSv1 192.168.56.102:49357 172.67.75.40:443 |
None | None | None |
|
TLS 1.3 192.168.56.102:49366 104.26.3.16:443 |
None | None | None |
|
TLS 1.3 192.168.56.102:49368 104.26.3.16:443 |
None | None | None |
|
TLS 1.3 192.168.56.102:49367 104.26.3.16:443 |
None | None | None |
|
TLS 1.3 192.168.56.102:49377 104.26.3.16:443 |
None | None | None |
|
TLSv1 192.168.56.102:49383 104.26.2.16:443 |
None | None | None |
|
TLSv1 192.168.56.102:49374 104.26.2.16:443 |
None | None | None |
|
TLS 1.3 192.168.56.102:49365 104.26.3.16:443 |
None | None | None |
|
TLSv1 192.168.56.102:49369 104.26.2.16:443 |
None | None | None |
|
TLS 1.3 192.168.56.102:49370 104.26.3.16:443 |
None | None | None |
|
TLS 1.3 192.168.56.102:49373 104.26.3.16:443 |
None | None | None |
|
TLSv1 192.168.56.102:49380 104.26.2.16:443 |
None | None | None |
Snort Alerts
No Snort Alerts