Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| ddos.dnsnb8.net | 3.229.117.57 | |
| www.dropbox.com |
CNAME
www-env.dropbox-dns.com
|
162.125.84.18 |
| 2000.ink | ||
| docs.google.com | 142.250.206.206 | |
| freedns.afraid.org | 69.42.215.252 | |
| drive.usercontent.google.com | 142.250.207.97 | |
| xred.mooo.com |
- TCP Requests
-
-
192.168.56.103:49176 142.250.198.46:443docs.google.com
-
192.168.56.103:49177 142.250.71.129:443drive.usercontent.google.com
-
192.168.56.103:49178 162.125.84.18:443www.dropbox.com
-
192.168.56.103:49179 162.125.84.18:443www.dropbox.com
-
192.168.56.103:49180 162.125.84.18:443www.dropbox.com
-
192.168.56.103:49165 3.229.117.57:799ddos.dnsnb8.net
-
192.168.56.103:49167 3.229.117.57:799ddos.dnsnb8.net
-
192.168.56.103:49168 3.229.117.57:799ddos.dnsnb8.net
-
192.168.56.103:49169 3.229.117.57:799ddos.dnsnb8.net
-
192.168.56.103:49171 3.229.117.57:799ddos.dnsnb8.net
-
192.168.56.103:49164 45.152.67.113:6100
-
192.168.56.103:49191 45.152.67.113:6100
-
192.168.56.103:49172 69.42.215.252:80freedns.afraid.org
-
- UDP Requests
-
-
192.168.56.103:50800 164.124.101.2:53
-
192.168.56.103:52760 164.124.101.2:53
-
192.168.56.103:53673 164.124.101.2:53
-
192.168.56.103:56613 164.124.101.2:53
-
192.168.56.103:62576 164.124.101.2:53
-
192.168.56.103:64178 164.124.101.2:53
-
192.168.56.103:64894 164.124.101.2:53
-
192.168.56.103:137 192.168.56.101:137
-
192.168.56.103:137 192.168.56.255:137
-
192.168.56.103:138 192.168.56.255:138
-
192.168.56.103:53676 239.255.255.250:1900
-
GET
303
https://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download
REQUEST
RESPONSE
BODY
GET /uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download HTTP/1.1
User-Agent: Synaptics.exe
Host: docs.google.com
Cache-Control: no-cache
HTTP/1.1 303 See Other
Content-Type: application/binary
Vary: Origin
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 30 Apr 2025 23:29:32 GMT
Location: https://drive.usercontent.google.com/download?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download
Strict-Transport-Security: max-age=31536000
Cross-Origin-Opener-Policy: same-origin
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport
Content-Security-Policy: script-src 'report-sample' 'nonce-PGOXccDuFDBHqewUuw3vXw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self'
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
404
https://drive.usercontent.google.com/download?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download
REQUEST
RESPONSE
BODY
GET /download?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&export=download HTTP/1.1
User-Agent: Synaptics.exe
Connection: Keep-Alive
Cache-Control: no-cache
Host: drive.usercontent.google.com
HTTP/1.1 404 Not Found
X-GUploader-UploadID: AAO2VwozbU9BNnPtKCTwtfwNlx7_BYx5mC_LxsWwtW2-aVxLexzgNTmdQNaAFTYy2wFWbRYI
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 30 Apr 2025 23:29:32 GMT
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Opener-Policy: same-origin
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport
Content-Security-Policy: script-src 'report-sample' 'nonce-Ayozt7KCaD4Sd2_7-ub-qg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self'
Content-Length: 1652
Server: UploadServer
Set-Cookie: NID=523=jbqK6d8wCZns4bdbxW7NX5Q-_05QynoPH5mEMhgmu-gm_PrAsPaMCjwJKNU2_VsQCi2MsqWFxf1Oo1Pa5RDT8f0ZdQfT8G26Vbi3dNIIbi-JocjNWQpvHK_3EIaJMa4KZzBRDbNOMP69XvRQVI2F1lJL1lmQ4yySUb_8G5t684ngCrJ6qigHKKc4HaBJVuVfnw; expires=Thu, 30-Oct-2025 23:29:32 GMT; path=/; domain=.google.com; HttpOnly
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Content-Security-Policy: sandbox allow-scripts
GET
303
https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
REQUEST
RESPONSE
BODY
GET /uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download HTTP/1.1
User-Agent: Synaptics.exe
Host: docs.google.com
Cache-Control: no-cache
Cookie: NID=523=jbqK6d8wCZns4bdbxW7NX5Q-_05QynoPH5mEMhgmu-gm_PrAsPaMCjwJKNU2_VsQCi2MsqWFxf1Oo1Pa5RDT8f0ZdQfT8G26Vbi3dNIIbi-JocjNWQpvHK_3EIaJMa4KZzBRDbNOMP69XvRQVI2F1lJL1lmQ4yySUb_8G5t684ngCrJ6qigHKKc4HaBJVuVfnw
HTTP/1.1 303 See Other
Content-Type: application/binary
Vary: Origin
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 30 Apr 2025 23:30:17 GMT
Location: https://drive.usercontent.google.com/download?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
Strict-Transport-Security: max-age=31536000
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport
Content-Security-Policy: script-src 'report-sample' 'nonce-yGg3zPZEhhiUkO3tfNBDdw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self'
Cross-Origin-Opener-Policy: same-origin
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
404
https://drive.usercontent.google.com/download?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
REQUEST
RESPONSE
BODY
GET /download?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download HTTP/1.1
User-Agent: Synaptics.exe
Host: drive.usercontent.google.com
Cache-Control: no-cache
Connection: Keep-Alive
Cookie: NID=523=jbqK6d8wCZns4bdbxW7NX5Q-_05QynoPH5mEMhgmu-gm_PrAsPaMCjwJKNU2_VsQCi2MsqWFxf1Oo1Pa5RDT8f0ZdQfT8G26Vbi3dNIIbi-JocjNWQpvHK_3EIaJMa4KZzBRDbNOMP69XvRQVI2F1lJL1lmQ4yySUb_8G5t684ngCrJ6qigHKKc4HaBJVuVfnw
HTTP/1.1 404 Not Found
X-GUploader-UploadID: AAO2VwrbA1_loak-DXnLAJoBn_GetYEypA4wZnEEW94bsKwNTY1AewyN2VUtqw9gafeQ_KCH
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 30 Apr 2025 23:30:18 GMT
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Opener-Policy: same-origin
Content-Security-Policy: script-src 'report-sample' 'nonce-mThme1Zay398a4nX2Z_qWQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self'
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport
Content-Length: 1652
Server: UploadServer
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Content-Security-Policy: sandbox allow-scripts
GET
303
https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
REQUEST
RESPONSE
BODY
GET /uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download HTTP/1.1
User-Agent: Synaptics.exe
Host: docs.google.com
Cache-Control: no-cache
Cookie: NID=523=jbqK6d8wCZns4bdbxW7NX5Q-_05QynoPH5mEMhgmu-gm_PrAsPaMCjwJKNU2_VsQCi2MsqWFxf1Oo1Pa5RDT8f0ZdQfT8G26Vbi3dNIIbi-JocjNWQpvHK_3EIaJMa4KZzBRDbNOMP69XvRQVI2F1lJL1lmQ4yySUb_8G5t684ngCrJ6qigHKKc4HaBJVuVfnw
HTTP/1.1 303 See Other
Content-Type: application/binary
Vary: Origin
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 30 Apr 2025 23:30:18 GMT
Location: https://drive.usercontent.google.com/download?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
Strict-Transport-Security: max-age=31536000
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Content-Security-Policy: script-src 'report-sample' 'nonce-_fTRVWwuelNobn_Es2rwjw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self'
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Opener-Policy: same-origin
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
404
https://drive.usercontent.google.com/download?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
REQUEST
RESPONSE
BODY
GET /download?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download HTTP/1.1
User-Agent: Synaptics.exe
Host: drive.usercontent.google.com
Cache-Control: no-cache
Connection: Keep-Alive
Cookie: NID=523=jbqK6d8wCZns4bdbxW7NX5Q-_05QynoPH5mEMhgmu-gm_PrAsPaMCjwJKNU2_VsQCi2MsqWFxf1Oo1Pa5RDT8f0ZdQfT8G26Vbi3dNIIbi-JocjNWQpvHK_3EIaJMa4KZzBRDbNOMP69XvRQVI2F1lJL1lmQ4yySUb_8G5t684ngCrJ6qigHKKc4HaBJVuVfnw
HTTP/1.1 404 Not Found
X-GUploader-UploadID: AAO2VwoenWIsslu1VF_68NxH_LnIcE2k2gl7QSMNqiwpphlZmuiKlLFWCE1BPOvkt9IGxqg
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 30 Apr 2025 23:30:19 GMT
Cross-Origin-Opener-Policy: same-origin
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport
Content-Security-Policy: script-src 'report-sample' 'nonce-5FyTg927X3yLWJFmAhV3sw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self'
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Content-Length: 1652
Server: UploadServer
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Content-Security-Policy: sandbox allow-scripts
GET
303
https://docs.google.com/uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
REQUEST
RESPONSE
BODY
GET /uc?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download HTTP/1.1
User-Agent: Synaptics.exe
Host: docs.google.com
Cache-Control: no-cache
Cookie: NID=523=jbqK6d8wCZns4bdbxW7NX5Q-_05QynoPH5mEMhgmu-gm_PrAsPaMCjwJKNU2_VsQCi2MsqWFxf1Oo1Pa5RDT8f0ZdQfT8G26Vbi3dNIIbi-JocjNWQpvHK_3EIaJMa4KZzBRDbNOMP69XvRQVI2F1lJL1lmQ4yySUb_8G5t684ngCrJ6qigHKKc4HaBJVuVfnw
HTTP/1.1 303 See Other
Content-Type: application/binary
Vary: Origin
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 30 Apr 2025 23:30:19 GMT
Location: https://drive.usercontent.google.com/download?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
Strict-Transport-Security: max-age=31536000
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Content-Security-Policy: script-src 'report-sample' 'nonce-sVC6l54XRHdnKSHzL3fyhA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self'
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Opener-Policy: same-origin
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET
404
https://drive.usercontent.google.com/download?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download
REQUEST
RESPONSE
BODY
GET /download?id=0BxsMXGfPIZfSVlVsOGlEVGxuZVk&export=download HTTP/1.1
User-Agent: Synaptics.exe
Host: drive.usercontent.google.com
Cache-Control: no-cache
Connection: Keep-Alive
Cookie: NID=523=jbqK6d8wCZns4bdbxW7NX5Q-_05QynoPH5mEMhgmu-gm_PrAsPaMCjwJKNU2_VsQCi2MsqWFxf1Oo1Pa5RDT8f0ZdQfT8G26Vbi3dNIIbi-JocjNWQpvHK_3EIaJMa4KZzBRDbNOMP69XvRQVI2F1lJL1lmQ4yySUb_8G5t684ngCrJ6qigHKKc4HaBJVuVfnw
HTTP/1.1 404 Not Found
X-GUploader-UploadID: AAO2VwqlnsfmT9ypBnp6ABU3qNavjV_Kuv5X4m3rY5ALIYsazJ7Y-uws08Tk64X0Md9yMuLA
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 30 Apr 2025 23:30:20 GMT
Cross-Origin-Opener-Policy: same-origin
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Content-Security-Policy: script-src 'report-sample' 'nonce-PtnqB9XKrim-obantTcM0Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentHttp/cspreport;worker-src 'self'
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/DriveUntrustedContentHttp/cspreport
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Content-Length: 1652
Server: UploadServer
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Content-Security-Policy: sandbox allow-scripts
GET
200
http://freedns.afraid.org/api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978
REQUEST
RESPONSE
BODY
GET /api/?action=getdyndns&sha=a30fa98efc092684e8d1c5cff797bcc613562978 HTTP/1.1
User-Agent: MyApp
Host: freedns.afraid.org
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Apr 2025 23:29:20 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Cache: MISS
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
| Flow | Issuer | Subject | Fingerprint |
|---|---|---|---|
|
TLSv1 192.168.56.103:49177 142.250.71.129:443 |
C=US, O=Google Trust Services, CN=WE2 | CN=*.usercontent.google.com | e2:75:33:38:ea:c5:6b:07:01:99:0c:e5:64:b0:63:79:cc:b5:d4:83 |
|
TLSv1 192.168.56.103:49176 142.250.198.46:443 |
C=US, O=Google Trust Services, CN=WE2 | CN=*.google.com | 67:52:2f:ab:93:de:39:da:94:50:11:ae:8b:37:cb:88:8f:dc:56:7d |
Snort Alerts
No Snort Alerts