Windows
Analysis Report
https://pp.45-61-132-44.cprapid.com/pp/
Overview
Detection
Score: | 68 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 5672 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 5608 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2336 --fi eld-trial- handle=227 2,i,165709 0296017480 3713,12754 6530168505 7893,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6508 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://pp.45 -61-132-44 .cprapid.c om/pp/" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_PayPalPhisher | Yara detected PayPal Phisher | Joe Security |
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: | ||
Source: | SlashNext: |
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: |
Phishing |
---|
Source: | File source: |
Source: | Matcher: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Obfuscated Files or Information | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing | ||
100% | SlashNext | Credential Stealing type: Phishing & Social Engineering |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing | ||
100% | Avira URL Cloud | phishing | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
pp.45-61-132-44.cprapid.com | 45.61.132.44 | true | false | unknown | |
www.google.com | 142.251.16.103 | true | false | high | |
www.reckon.com | 162.159.135.42 | true | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
| unknown | |
false |
| unknown | |
true | unknown | ||
false | high | ||
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
162.159.135.42 | www.reckon.com | United States | 13335 | CLOUDFLARENETUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
45.61.132.44 | pp.45-61-132-44.cprapid.com | United States | 9009 | M247GB | false | |
142.251.16.103 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.4 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1417320 |
Start date and time: | 2024-03-29 00:05:11 +01:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 10s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://pp.45-61-132-44.cprapid.com/pp/ |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 7 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal68.phis.win@16/13@8/5 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 172.253.115.94, 172.253.115.139, 172.253.115.113, 172.253.115.138, 172.253.115.101, 172.253.115.100, 172.253.115.102, 172.253.122.84, 34.104.35.123, 172.253.122.95, 172.253.115.95, 172.253.62.95, 142.251.163.95, 172.253.63.95, 142.251.179.95, 142.250.31.95, 142.251.111.95, 142.251.167.95, 142.251.16.95, 72.21.81.240, 192.229.211.108, 20.242.39.171, 20.166.126.56, 172.253.62.94
- Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, slscr.update.microsoft.com, ctldl.windowsupdate.com, clientservices.googleapis.com, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, clients2.google.com, ocsp.digicert.com, edgedl.me.gvt1.com, glb.cws.prod.dcat.dsp.trafficmanager.net, update.googleapis.com, clients.l.google.com
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
- VT rate limit hit for: https://pp.45-61-132-44.cprapid.com/pp/
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3033 |
Entropy (8bit): | 4.7662907527146485 |
Encrypted: | false |
SSDEEP: | 48:Y6woueEAwrCwXpqaQSIifSwbzEwrFjTyJwlqtdI5cxM9w4OJwR9y5A9Wlqw:jpEvrl5591XbrFjTygquV6b+gA9WT |
MD5: | 9AE160FD09548A2F7C29F0C2D7709F63 |
SHA1: | F108F0A9C57A26B4F2210DBA8CAE1B63E0BB236D |
SHA-256: | D615741288BBACEBFEA51C23120A651F05C6753DCCEE0C67235397FA06E1BC70 |
SHA-512: | 2BDF851E26247C31FF17D1452811D4F913EE295CB041FC9D5ADAB52C3A30944D1338A78C73206AC20EDEFCDD9590C04C477B433A1AC820B30739B64763C38F9C |
Malicious: | false |
Reputation: | low |
URL: | https://pp.45-61-132-44.cprapid.com/pp/static/main.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 31099 |
Entropy (8bit): | 7.514332214762588 |
Encrypted: | false |
SSDEEP: | 768:i7u0uGsSYypLBH8Ak9hvn3Gjk45UPOZtlpZdV2Pvs:gsS9LBHi9hvIk45fvlXdV2PU |
MD5: | 7CD7CFEA57EB89B505830EF934C7F9D3 |
SHA1: | B5693F04893010991415571B5770EFEA525DC936 |
SHA-256: | 2D42EC6C494035D09AD30D72F04AA33523652E9B4269E9DBBA62674AFD075958 |
SHA-512: | 1E4142C4FE6E21FFF750011356856B60E49EECF31016607DEE5B142E907D885C7A07ADE4C2245F793F1C9E0CB1309CE9C0059F1E7669D2C494C11B4FB671BD93 |
Malicious: | false |
Reputation: | low |
URL: | https://www.reckon.com/marketplace/wp-content/uploads/2020/07/PayPal-Logo.jpg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 10224 |
Entropy (8bit): | 4.787588876409812 |
Encrypted: | false |
SSDEEP: | 192:qpJUeqLre79rRPAxhvIAymBDNFIILNlASj46nCmWFdDSwvR0v08MP:sJrUFldj4XFZ+s |
MD5: | 6DFF29308F4EB6F3FC6BF621EAE54094 |
SHA1: | C64EA98D4CD7F87086D28EA472CEC1231771669E |
SHA-256: | 7C1B7C407689C13716EC116EFA64A2944F3113A99A9E1FEB82245BE0BFE6FB66 |
SHA-512: | 016FC332D6BFADDC866CFEA478450CC1F2599E80EBAF64186A3F80F0B45C2BEAF7E5E14C23911C3C2737163945BF743640A01D6B53A44B989BB64B7FBFCB404C |
Malicious: | false |
Reputation: | low |
URL: | https://pp.45-61-132-44.cprapid.com/pp/static/style.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 28 |
Entropy (8bit): | 4.280394654123194 |
Encrypted: | false |
SSDEEP: | 3:PnyPt:PnyPt |
MD5: | 38864E9A1AC46011210717E8B2EB399D |
SHA1: | 3F4425DE5C571029F15642946D81B47CFA1295A0 |
SHA-256: | 8077CD474BF346718C76BD9BB00A731EFB4AFAFD38633807E4ADEB7D623909FC |
SHA-512: | 820B46EF925576ACA2F15FA1C1110E90CCE4DA5628CB2002BDDB927E9CB446D7C4AC7C46FBFC63E7C9EA950807B5EE5D751AE796193B8C45D86A75D76A86764C |
Malicious: | false |
Reputation: | low |
URL: | https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISFwlNMptWtucJRRIFDaqYN6ASBQ3OQUx6?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 31099 |
Entropy (8bit): | 7.514332214762588 |
Encrypted: | false |
SSDEEP: | 768:i7u0uGsSYypLBH8Ak9hvn3Gjk45UPOZtlpZdV2Pvs:gsS9LBHi9hvIk45fvlXdV2PU |
MD5: | 7CD7CFEA57EB89B505830EF934C7F9D3 |
SHA1: | B5693F04893010991415571B5770EFEA525DC936 |
SHA-256: | 2D42EC6C494035D09AD30D72F04AA33523652E9B4269E9DBBA62674AFD075958 |
SHA-512: | 1E4142C4FE6E21FFF750011356856B60E49EECF31016607DEE5B142E907D885C7A07ADE4C2245F793F1C9E0CB1309CE9C0059F1E7669D2C494C11B4FB671BD93 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3297 |
Entropy (8bit): | 3.657549914713756 |
Encrypted: | false |
SSDEEP: | 48:4WupT4i/NWMIUvkfTMfNalPiEkafOff8ts:Xuui1HkfTMfaPiiWfKs |
MD5: | 073C971D13A75B752B8ACC5C46AFC348 |
SHA1: | 35507E5CC3A438569623C2CCD555D6A356F8174A |
SHA-256: | DBBE8BCED0A9119EC5385FCE8E30F72E39FC7705D79521D11DFC647299D755B0 |
SHA-512: | 283CCC2E65D21B47464C0775BE93AE688DA82EB1C050535A3F347BCF0E3F3EE3D015B14A1568E9F7DA3D39B630DAC2E27923B35E504CB6064D931A8F984A83CC |
Malicious: | false |
Reputation: | low |
URL: | https://pp.45-61-132-44.cprapid.com/pp/ |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 315 |
Entropy (8bit): | 5.0572271090563765 |
Encrypted: | false |
SSDEEP: | 6:pn0+Dy9xwGObRmEr6VnetdzRx3G0CezoFEHcLgabzjsKtgsg93wzRbKqD:J0+oxBeRmR9etdzRxGezZfCzjsKtgizR |
MD5: | A34AC19F4AFAE63ADC5D2F7BC970C07F |
SHA1: | A82190FC530C265AA40A045C21770D967F4767B8 |
SHA-256: | D5A89E26BEAE0BC03AD18A0B0D1D3D75F87C32047879D25DA11970CB5C4662A3 |
SHA-512: | 42E53D96E5961E95B7A984D9C9778A1D3BD8EE0C87B8B3B515FA31F67C2D073C8565AFC2F4B962C43668C4EFA1E478DA9BB0ECFFA79479C7E880731BC4C55765 |
Malicious: | false |
Reputation: | low |
URL: | https://pp.45-61-132-44.cprapid.com/favicon.ico |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 29, 2024 00:05:52.875019073 CET | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Mar 29, 2024 00:05:53.453340054 CET | 49678 | 443 | 192.168.2.4 | 104.46.162.224 |
Mar 29, 2024 00:06:01.303389072 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.303423882 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.303492069 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.303740978 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.303781986 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.303919077 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.303931952 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.303955078 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.304157019 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.304168940 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.643321037 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.643414021 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.643646955 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.643671036 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.643785954 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.643815041 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.644730091 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.644807100 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.644895077 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.644951105 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.646079063 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.646142006 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.647054911 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.647063971 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.647243023 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.647305965 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.691535950 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.691553116 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.691557884 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.737875938 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.921554089 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:01.921581984 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:01.921644926 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:01.921895981 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:01.921905041 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:01.965085983 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.965132952 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.965200901 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.965225935 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.965264082 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.968739033 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.968938112 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.969011068 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.971185923 CET | 49736 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.971196890 CET | 443 | 49736 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.987677097 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.992705107 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.992732048 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:01.992791891 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.993396997 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:01.993413925 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.032228947 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.138490915 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:02.138778925 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:02.138793945 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:02.139755011 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:02.139834881 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:02.140846968 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:02.140908003 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:02.152913094 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.152934074 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.152944088 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.152966022 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.152993917 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.153017044 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.153031111 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.153032064 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.153078079 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.153084040 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.153237104 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.153278112 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.157790899 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.157804966 CET | 443 | 49735 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.157814980 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.157859087 CET | 49735 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.188306093 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:02.188314915 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:02.234579086 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:02.295380116 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:02.295398951 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:02.295468092 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:02.295649052 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:02.295660973 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:02.312289000 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.312649012 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.312664986 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.313023090 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.313323975 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.313391924 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.313430071 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.360235929 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.361728907 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.488272905 CET | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Mar 29, 2024 00:06:02.500792980 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:02.501260996 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:02.501271963 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:02.502300978 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:02.502371073 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:02.503341913 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:02.503401995 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:02.503555059 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:02.503562927 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:02.546818972 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:02.622673988 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.622695923 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.622759104 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:02.622765064 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.622807980 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.625833988 CET | 49740 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:02.625854015 CET | 443 | 49740 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:03.620563984 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.620625019 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.620667934 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.620709896 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.620732069 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.620747089 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.620770931 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.620784044 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.620826006 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.620835066 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.623831034 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.623855114 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.623877048 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.623891115 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.623940945 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.623950958 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.624186993 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.624254942 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.624262094 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.624510050 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.624536037 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.624557972 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.624600887 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.624610901 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.624639988 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.625050068 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.625101089 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.625107050 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.625160933 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.625194073 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.625231028 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.625242949 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.625252008 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.625276089 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.626009941 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.626080990 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.626087904 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.626115084 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.626214027 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.631972075 CET | 49742 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:03.631980896 CET | 443 | 49742 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:03.649082899 CET | 49743 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:03.649118900 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:03.649185896 CET | 49743 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:03.649739027 CET | 49743 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:03.649754047 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:03.968175888 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:03.968431950 CET | 49743 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:03.968453884 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:03.969082117 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:03.969506025 CET | 49743 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:03.969561100 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:03.969825983 CET | 49743 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:03.975647926 CET | 49744 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:03.975667000 CET | 443 | 49744 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:03.975831985 CET | 49744 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:03.977654934 CET | 49744 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:03.977667093 CET | 443 | 49744 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:04.016244888 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:04.195242882 CET | 443 | 49744 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:04.195668936 CET | 49744 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:04.205152988 CET | 49744 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:04.205158949 CET | 443 | 49744 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:04.205364943 CET | 443 | 49744 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:04.249054909 CET | 49744 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:04.279396057 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:04.279572964 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:04.279622078 CET | 49743 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:04.316838980 CET | 49743 | 443 | 192.168.2.4 | 45.61.132.44 |
Mar 29, 2024 00:06:04.316857100 CET | 443 | 49743 | 45.61.132.44 | 192.168.2.4 |
Mar 29, 2024 00:06:04.321824074 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:04.321856022 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:04.322001934 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:04.322485924 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:04.322500944 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:04.367978096 CET | 49744 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:04.408235073 CET | 443 | 49744 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:04.526439905 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:04.538928032 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:04.538945913 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:04.540115118 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:04.540196896 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:04.542170048 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:04.542293072 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:04.542316914 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:04.584266901 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:04.592814922 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:04.592861891 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:04.639684916 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:04.717334032 CET | 443 | 49744 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:04.717444897 CET | 443 | 49744 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:04.717514038 CET | 49744 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:04.717663050 CET | 49744 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:04.717675924 CET | 443 | 49744 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:04.841058969 CET | 49746 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:04.841089964 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:04.841233015 CET | 49746 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:04.841604948 CET | 49746 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:04.841619015 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:05.052647114 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:05.052726030 CET | 49746 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:05.054579020 CET | 49746 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:05.054588079 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:05.054847002 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:05.056695938 CET | 49746 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:05.100234985 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:05.260226011 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:05.260294914 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:05.260354996 CET | 49746 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:05.261112928 CET | 49746 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:05.261128902 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:05.261138916 CET | 49746 | 443 | 192.168.2.4 | 23.41.168.93 |
Mar 29, 2024 00:06:05.261143923 CET | 443 | 49746 | 23.41.168.93 | 192.168.2.4 |
Mar 29, 2024 00:06:05.605923891 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.605987072 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.606040001 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.606056929 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.606118917 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.606157064 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.606163025 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.606290102 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.606420994 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.606426001 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.606652975 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.606729031 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.606753111 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.606760025 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.606805086 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.606821060 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.607392073 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.607428074 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.607474089 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.607480049 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.607528925 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.607543945 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.607646942 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.607713938 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.607718945 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.608292103 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.608335018 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.608340025 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.608464003 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.608510971 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.608515024 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.609076023 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.609102964 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.609127998 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.609134912 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.609170914 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.609178066 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:05.609242916 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.609409094 CET | 49745 | 443 | 192.168.2.4 | 162.159.135.42 |
Mar 29, 2024 00:06:05.609419107 CET | 443 | 49745 | 162.159.135.42 | 192.168.2.4 |
Mar 29, 2024 00:06:12.138813972 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:12.138880014 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:12.138926983 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:13.676731110 CET | 49739 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:06:13.676755905 CET | 443 | 49739 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:06:14.988562107 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:14.988594055 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:14.988756895 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:14.989849091 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:14.989862919 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:15.414012909 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:15.414100885 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:15.416801929 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:15.416810036 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:15.417027950 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:15.470406055 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:15.817531109 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:15.860238075 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.093846083 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.093863964 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.093869925 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.093900919 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.093919039 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.093928099 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.093955994 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:16.093977928 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.093988895 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.093997955 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:16.094033003 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:16.094038010 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.094048023 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.094086885 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:16.689117908 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:16.689143896 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:16.689158916 CET | 49747 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:16.689165115 CET | 443 | 49747 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:22.811847925 CET | 80 | 49723 | 69.164.0.128 | 192.168.2.4 |
Mar 29, 2024 00:06:22.812014103 CET | 49723 | 80 | 192.168.2.4 | 69.164.0.128 |
Mar 29, 2024 00:06:22.812014103 CET | 49723 | 80 | 192.168.2.4 | 69.164.0.128 |
Mar 29, 2024 00:06:22.907416105 CET | 80 | 49723 | 69.164.0.128 | 192.168.2.4 |
Mar 29, 2024 00:06:37.110214949 CET | 80 | 49724 | 69.164.0.128 | 192.168.2.4 |
Mar 29, 2024 00:06:37.110301971 CET | 49724 | 80 | 192.168.2.4 | 69.164.0.128 |
Mar 29, 2024 00:06:37.110341072 CET | 49724 | 80 | 192.168.2.4 | 69.164.0.128 |
Mar 29, 2024 00:06:37.205415964 CET | 80 | 49724 | 69.164.0.128 | 192.168.2.4 |
Mar 29, 2024 00:06:53.240591049 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:53.240628958 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:53.240691900 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:53.241535902 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:53.241550922 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:53.647272110 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:53.647387028 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:53.656409979 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:53.656419039 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:53.656670094 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:53.672581911 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:53.716233015 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036052942 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036073923 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036088943 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036180973 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:54.036180973 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:54.036191940 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036427021 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:54.036436081 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036447048 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036473989 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036493063 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:54.036497116 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036514044 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.036557913 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:54.040488958 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:54.040488958 CET | 49753 | 443 | 192.168.2.4 | 52.165.165.26 |
Mar 29, 2024 00:06:54.040499926 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:06:54.040508986 CET | 443 | 49753 | 52.165.165.26 | 192.168.2.4 |
Mar 29, 2024 00:07:02.216438055 CET | 49755 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:07:02.216463089 CET | 443 | 49755 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:07:02.216547966 CET | 49755 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:07:02.220509052 CET | 49755 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:07:02.220520020 CET | 443 | 49755 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:07:02.425575972 CET | 443 | 49755 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:07:02.425910950 CET | 49755 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:07:02.425921917 CET | 443 | 49755 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:07:02.426201105 CET | 443 | 49755 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:07:02.428812027 CET | 49755 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:07:02.428860903 CET | 443 | 49755 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:07:02.484468937 CET | 49755 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:07:12.428136110 CET | 443 | 49755 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:07:12.428200006 CET | 443 | 49755 | 142.251.16.103 | 192.168.2.4 |
Mar 29, 2024 00:07:12.428247929 CET | 49755 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:07:13.672128916 CET | 49755 | 443 | 192.168.2.4 | 142.251.16.103 |
Mar 29, 2024 00:07:13.672153950 CET | 443 | 49755 | 142.251.16.103 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 29, 2024 00:05:59.289866924 CET | 53 | 61668 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:05:59.614231110 CET | 53 | 60042 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:00.253412008 CET | 53 | 62822 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:01.011710882 CET | 57643 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 00:06:01.012757063 CET | 58592 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 00:06:01.299807072 CET | 53 | 57643 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:01.302808046 CET | 53 | 58592 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:01.823757887 CET | 50763 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 00:06:01.823901892 CET | 53910 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 00:06:01.920290947 CET | 53 | 53910 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:01.920615911 CET | 53 | 50763 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:02.089586973 CET | 53 | 59805 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:02.170878887 CET | 60985 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 00:06:02.171010017 CET | 59967 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 00:06:02.294565916 CET | 53 | 59967 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:02.294931889 CET | 53 | 60985 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:04.142194033 CET | 58976 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 00:06:04.142803907 CET | 61833 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 00:06:04.299819946 CET | 53 | 58976 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:04.320863008 CET | 53 | 61833 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:17.538671970 CET | 53 | 57851 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:23.973403931 CET | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Mar 29, 2024 00:06:36.613842964 CET | 53 | 59746 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:58.926534891 CET | 53 | 51479 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 00:06:59.589418888 CET | 53 | 56537 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Mar 29, 2024 00:06:01.011710882 CET | 192.168.2.4 | 1.1.1.1 | 0xa7e2 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 29, 2024 00:06:01.012757063 CET | 192.168.2.4 | 1.1.1.1 | 0x8c67 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 29, 2024 00:06:01.823757887 CET | 192.168.2.4 | 1.1.1.1 | 0x1e0e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 29, 2024 00:06:01.823901892 CET | 192.168.2.4 | 1.1.1.1 | 0xbaf5 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 29, 2024 00:06:02.170878887 CET | 192.168.2.4 | 1.1.1.1 | 0x3892 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 29, 2024 00:06:02.171010017 CET | 192.168.2.4 | 1.1.1.1 | 0x75fc | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 29, 2024 00:06:04.142194033 CET | 192.168.2.4 | 1.1.1.1 | 0xfe4a | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 29, 2024 00:06:04.142803907 CET | 192.168.2.4 | 1.1.1.1 | 0x4586 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Mar 29, 2024 00:06:01.299807072 CET | 1.1.1.1 | 192.168.2.4 | 0xa7e2 | No error (0) | 45.61.132.44 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 00:06:01.920290947 CET | 1.1.1.1 | 192.168.2.4 | 0xbaf5 | No error (0) | 65 | IN (0x0001) | false | |||
Mar 29, 2024 00:06:01.920615911 CET | 1.1.1.1 | 192.168.2.4 | 0x1e0e | No error (0) | 142.251.16.103 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 00:06:01.920615911 CET | 1.1.1.1 | 192.168.2.4 | 0x1e0e | No error (0) | 142.251.16.104 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 00:06:01.920615911 CET | 1.1.1.1 | 192.168.2.4 | 0x1e0e | No error (0) | 142.251.16.99 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 00:06:01.920615911 CET | 1.1.1.1 | 192.168.2.4 | 0x1e0e | No error (0) | 142.251.16.106 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 00:06:01.920615911 CET | 1.1.1.1 | 192.168.2.4 | 0x1e0e | No error (0) | 142.251.16.147 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 00:06:01.920615911 CET | 1.1.1.1 | 192.168.2.4 | 0x1e0e | No error (0) | 142.251.16.105 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 00:06:02.294931889 CET | 1.1.1.1 | 192.168.2.4 | 0x3892 | No error (0) | 162.159.135.42 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 00:06:04.299819946 CET | 1.1.1.1 | 192.168.2.4 | 0xfe4a | No error (0) | 162.159.135.42 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49736 | 45.61.132.44 | 443 | 5608 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:01 UTC | 673 | OUT | |
2024-03-28 23:06:01 UTC | 159 | IN | |
2024-03-28 23:06:01 UTC | 3304 | IN | |
2024-03-28 23:06:01 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49735 | 45.61.132.44 | 443 | 5608 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:01 UTC | 575 | OUT | |
2024-03-28 23:06:02 UTC | 206 | IN | |
2024-03-28 23:06:02 UTC | 7986 | IN | |
2024-03-28 23:06:02 UTC | 2238 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49740 | 45.61.132.44 | 443 | 5608 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:02 UTC | 559 | OUT | |
2024-03-28 23:06:02 UTC | 212 | IN | |
2024-03-28 23:06:02 UTC | 3033 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49742 | 162.159.135.42 | 443 | 5608 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:02 UTC | 639 | OUT | |
2024-03-28 23:06:03 UTC | 1043 | IN | |
2024-03-28 23:06:03 UTC | 326 | IN | |
2024-03-28 23:06:03 UTC | 1369 | IN | |
2024-03-28 23:06:03 UTC | 1369 | IN | |
2024-03-28 23:06:03 UTC | 1369 | IN | |
2024-03-28 23:06:03 UTC | 1369 | IN | |
2024-03-28 23:06:03 UTC | 1369 | IN | |
2024-03-28 23:06:03 UTC | 685 | IN | |
2024-03-28 23:06:03 UTC | 1369 | IN | |
2024-03-28 23:06:03 UTC | 1369 | IN | |
2024-03-28 23:06:03 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49743 | 45.61.132.44 | 443 | 5608 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:03 UTC | 613 | OUT | |
2024-03-28 23:06:04 UTC | 164 | IN | |
2024-03-28 23:06:04 UTC | 315 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49744 | 23.41.168.93 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:04 UTC | 161 | OUT | |
2024-03-28 23:06:04 UTC | 467 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49745 | 162.159.135.42 | 443 | 5608 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:04 UTC | 392 | OUT | |
2024-03-28 23:06:05 UTC | 1045 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN | |
2024-03-28 23:06:05 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49746 | 23.41.168.93 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:05 UTC | 239 | OUT | |
2024-03-28 23:06:05 UTC | 531 | IN | |
2024-03-28 23:06:05 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49747 | 52.165.165.26 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:15 UTC | 306 | OUT | |
2024-03-28 23:06:16 UTC | 560 | IN | |
2024-03-28 23:06:16 UTC | 15824 | IN | |
2024-03-28 23:06:16 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.4 | 49753 | 52.165.165.26 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-28 23:06:53 UTC | 306 | OUT | |
2024-03-28 23:06:54 UTC | 560 | IN | |
2024-03-28 23:06:54 UTC | 15824 | IN | |
2024-03-28 23:06:54 UTC | 9633 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 00:05:55 |
Start date: | 29/03/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 1 |
Start time: | 00:05:56 |
Start date: | 29/03/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 00:06:00 |
Start date: | 29/03/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |