Edit tour
Windows
Analysis Report
http://siliconeer.com/current/wp-content/uploads/2020/07/harsh-chhaya-i-have-nothing-against-working-in-a-tv-show.jpg
Overview
General Information
Detection
Score: | 0 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
No high impact signatures.
Classification
- System is w10x64
- chrome.exe (PID: 4916 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 2128 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2056 --fi eld-trial- handle=193 6,i,102830 0964297506 8563,18317 1788962160 16107,2621 44 --disab le-feature s=Optimiza tionGuideM odelDownlo ading,Opti mizationHi nts,Optimi zationHint sFetching, Optimizati onTargetPr ediction / prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6464 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt p://silico neer.com/c urrent/wp- content/up loads/2020 /07/harsh- chhaya-i-h ave-nothin g-against- working-in -a-tv-show .jpg" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
⊘No configs have been found
⊘No yara matches
⊘No Sigma rule has matched
⊘No Snort rule has matched
Click to jump to signature section
Show All Signature Results
There are no malicious signatures, click here to show all signatures.
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
⊘No Antivirus matches
⊘No Antivirus matches
⊘No Antivirus matches
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
siliconeer.com | 162.241.248.14 | true | false | unknown | |
www.google.com | 172.253.62.105 | true | false | high | |
fp2e7a.wpc.phicdn.net | 192.229.211.108 | true | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | unknown | ||
false |
| unknown | |
false | unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
162.241.248.14 | siliconeer.com | United States | 46606 | UNIFIEDLAYER-AS-1US | false | |
172.253.62.105 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.4 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1417450 |
Start date and time: | 2024-03-29 10:24:57 +01:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 4s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | http://siliconeer.com/current/wp-content/uploads/2020/07/harsh-chhaya-i-have-nothing-against-working-in-a-tv-show.jpg |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 8 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | CLEAN |
Classification: | clean0.win@17/5@8/4 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 172.253.122.94, 142.251.167.101, 142.251.167.102, 142.251.167.138, 142.251.167.139, 142.251.167.100, 142.251.167.113, 142.251.163.84, 34.104.35.123, 20.114.59.183, 72.21.81.240, 192.229.211.108, 20.242.39.171, 20.3.187.198
- Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, wu.ec.azureedge.net, clientservices.googleapis.com, ctldl.windowsupdate.com, wu-bg-shim.trafficmanager.net, wu.azureedge.net, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, ocsp.digicert.com, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, clients.l.google.com, glb.sls.prod.dcat.dsp.trafficmanager.net
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
⊘No simulations
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 70075 |
Entropy (8bit): | 7.917366245670385 |
Encrypted: | false |
SSDEEP: | 1536:KQenmqrioNl5K81m8tFykTZLuX05whZPI0N9FftS9z4:xSuoN28w4ICZKX8wjXNLId4 |
MD5: | CA9D00D9FCD90EC59F1489F2140D6441 |
SHA1: | 2BD6F006BDC0920686EC4102D494EB922BCBA6B9 |
SHA-256: | 17BB1C9AABE71D47A1B25BE46F7E2565642E8B538830F6B3340BE7AB302C4F42 |
SHA-512: | 78B38B1F722A73E9A1841F5FB28BD5F77FA406ED1693660A79031F8804A492247C061A431EAD3489FC764D5BC9521906D655C903F77A1ABC838F07236DEF667B |
Malicious: | false |
Reputation: | low |
URL: | https://siliconeer.com/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 58819 |
Entropy (8bit): | 7.942409681103454 |
Encrypted: | false |
SSDEEP: | 1536:mhaLoz+vqpt+0yQ8rsmaES25p1pqgyFruS:mgLoz+vNQsN3qJuS |
MD5: | 4AE075B7907D4CF76A82EB3227F0B706 |
SHA1: | 8A17D26DEDFA731647607F7E46E04B3F30509EA2 |
SHA-256: | FAD4F0CE601E4134978D58A68901122D0324249DB645141D5539CC317BB210A4 |
SHA-512: | B4082EB102BC9757285F87322CDCBF9F915738D0C1688E72B980A45887D22CA31CED2F639DA7B27196FA628B90A4EE6A35132A445D6B581C81B2351F49919A9F |
Malicious: | false |
Reputation: | low |
URL: | https://siliconeer.com/current/wp-content/uploads/2020/07/harsh-chhaya-i-have-nothing-against-working-in-a-tv-show.jpg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 70075 |
Entropy (8bit): | 7.917366245670385 |
Encrypted: | false |
SSDEEP: | 1536:KQenmqrioNl5K81m8tFykTZLuX05whZPI0N9FftS9z4:xSuoN28w4ICZKX8wjXNLId4 |
MD5: | CA9D00D9FCD90EC59F1489F2140D6441 |
SHA1: | 2BD6F006BDC0920686EC4102D494EB922BCBA6B9 |
SHA-256: | 17BB1C9AABE71D47A1B25BE46F7E2565642E8B538830F6B3340BE7AB302C4F42 |
SHA-512: | 78B38B1F722A73E9A1841F5FB28BD5F77FA406ED1693660A79031F8804A492247C061A431EAD3489FC764D5BC9521906D655C903F77A1ABC838F07236DEF667B |
Malicious: | false |
Reputation: | low |
Preview: |
⊘No static file info
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 29, 2024 10:25:39.867413044 CET | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Mar 29, 2024 10:25:40.226790905 CET | 49678 | 443 | 192.168.2.4 | 104.46.162.224 |
Mar 29, 2024 10:25:47.171159029 CET | 49735 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.171624899 CET | 49736 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.276412964 CET | 49737 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.350564957 CET | 80 | 49735 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:47.350802898 CET | 49735 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.351012945 CET | 49735 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.351881981 CET | 80 | 49736 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:47.351946115 CET | 49736 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.457201958 CET | 80 | 49737 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:47.457432985 CET | 49737 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.530145884 CET | 80 | 49735 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:47.535043001 CET | 80 | 49735 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:47.577341080 CET | 49735 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.739294052 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.739331961 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:47.739417076 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.739629030 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:47.739638090 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.110450983 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.110738993 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.110758066 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.111623049 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.111696005 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.112670898 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.112724066 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.112909079 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.112914085 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.167916059 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.474047899 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.474069118 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.474076986 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.474111080 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.474118948 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.474128962 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.474163055 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.523128986 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.654072046 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.654082060 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.654113054 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.654171944 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.654186010 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.654194117 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.654212952 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.654218912 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.654230118 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.654256105 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.654405117 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.654431105 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.654450893 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.654478073 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.745781898 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.745793104 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.745872021 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.834517956 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.834599018 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.834656954 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.834698915 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.834718943 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.834723949 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:48.834736109 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:48.875813007 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.287267923 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.328233957 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.474503040 CET | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Mar 29, 2024 10:25:49.498445988 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.498495102 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.498522997 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.498560905 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.499047041 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.499053955 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.499098063 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.499108076 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.499537945 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.499603033 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.499607086 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.499792099 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.499856949 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.499861002 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.500109911 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.500163078 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.500168085 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.500325918 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.500390053 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.500395060 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.500587940 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.500642061 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.500646114 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.500855923 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.500911951 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.500916004 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.553762913 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.679363966 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.679398060 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:49.679450035 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:49.679478884 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.026942968 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:25:50.026978970 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:25:50.027034998 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:25:50.027668953 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:25:50.027687073 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:25:50.138520956 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.138564110 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.138641119 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.139830112 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.139836073 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.239315987 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:25:50.289515018 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:25:50.309791088 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:25:50.309799910 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:25:50.310734987 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:25:50.310794115 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:25:50.318856001 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:25:50.318916082 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:25:50.366297007 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:25:50.366312027 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:25:50.413170099 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:25:50.508842945 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.522542000 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.522567987 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.523478031 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.523545027 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.527023077 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.527077913 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.529519081 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.529529095 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.569416046 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.899321079 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.899348974 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.899355888 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.899418116 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:50.899435043 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:50.944417953 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.063847065 CET | 49743 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.063873053 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.063951969 CET | 49743 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.067051888 CET | 49743 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.067063093 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079263926 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079272032 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079302073 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079324007 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.079354048 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.079365969 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079375982 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079425097 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.079433918 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079608917 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079641104 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079658031 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.079663992 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.079674959 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.137002945 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.144670010 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.144679070 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.144705057 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.144751072 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.144790888 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.261588097 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.261596918 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.261667967 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.261679888 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.261919022 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.261926889 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.261969090 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.261976957 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.262309074 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.262346029 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.262367010 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.262373924 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.262399912 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.262486935 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.262536049 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.262542009 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:51.268369913 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.268435955 CET | 49743 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.271207094 CET | 49743 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.271212101 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.271496058 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.303798914 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:51.311029911 CET | 49743 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.356246948 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.455460072 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.455611944 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.455661058 CET | 49743 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.455738068 CET | 49743 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.455753088 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.455764055 CET | 49743 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.455768108 CET | 443 | 49743 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.511360884 CET | 49744 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.511398077 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.511543036 CET | 49744 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.511850119 CET | 49744 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.511862040 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.706536055 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.706584930 CET | 49744 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.744328022 CET | 49744 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.744338989 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.744600058 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.750070095 CET | 49744 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.792241096 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.897145987 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.897222042 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.897464991 CET | 49744 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.900038958 CET | 49744 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.900053978 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:51.900063038 CET | 49744 | 443 | 192.168.2.4 | 23.33.180.114 |
Mar 29, 2024 10:25:51.900067091 CET | 443 | 49744 | 23.33.180.114 | 192.168.2.4 |
Mar 29, 2024 10:25:52.535872936 CET | 80 | 49735 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:52.535933018 CET | 49735 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:53.898169994 CET | 49735 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:54.078258991 CET | 80 | 49735 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:54.680058002 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:54.680135965 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:54.680186033 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:55.883497000 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:55.883517027 CET | 443 | 49738 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:55.883549929 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:55.883589029 CET | 49738 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:56.098493099 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:56.098561049 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:56.098613024 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:58.805921078 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:58.805921078 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:25:58.805958986 CET | 443 | 49742 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:25:58.806005001 CET | 49742 | 443 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:26:00.262904882 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:26:00.262974977 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:26:00.263065100 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:26:01.890187979 CET | 49741 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:26:01.890218973 CET | 443 | 49741 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:26:19.171631098 CET | 80 | 49737 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:26:19.171652079 CET | 80 | 49736 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:26:19.171694040 CET | 49737 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:26:19.171727896 CET | 49736 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:26:32.366353035 CET | 49736 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:26:32.460172892 CET | 49737 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:26:32.546756983 CET | 80 | 49736 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:26:32.647322893 CET | 80 | 49737 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:26:47.907063007 CET | 49736 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:26:47.907150030 CET | 49737 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:26:48.086977005 CET | 80 | 49737 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:26:48.087033987 CET | 49737 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:26:48.087506056 CET | 80 | 49736 | 162.241.248.14 | 192.168.2.4 |
Mar 29, 2024 10:26:48.087559938 CET | 49736 | 80 | 192.168.2.4 | 162.241.248.14 |
Mar 29, 2024 10:26:49.978214979 CET | 49753 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:26:49.978246927 CET | 443 | 49753 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:26:49.978317022 CET | 49753 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:26:49.979023933 CET | 49753 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:26:49.979034901 CET | 443 | 49753 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:26:50.186177015 CET | 443 | 49753 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:26:50.186497927 CET | 49753 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:26:50.186510086 CET | 443 | 49753 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:26:50.186799049 CET | 443 | 49753 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:26:50.187210083 CET | 49753 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:26:50.187263012 CET | 443 | 49753 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:26:50.241985083 CET | 49753 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:27:00.195698977 CET | 443 | 49753 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:27:00.195765018 CET | 443 | 49753 | 172.253.62.105 | 192.168.2.4 |
Mar 29, 2024 10:27:00.195907116 CET | 49753 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:27:01.883804083 CET | 49753 | 443 | 192.168.2.4 | 172.253.62.105 |
Mar 29, 2024 10:27:01.883829117 CET | 443 | 49753 | 172.253.62.105 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 29, 2024 10:25:45.809784889 CET | 53 | 51467 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:45.813394070 CET | 53 | 52010 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:46.537940979 CET | 53 | 52107 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:47.000965118 CET | 54471 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 10:25:47.001102924 CET | 61637 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 10:25:47.158540010 CET | 53 | 54471 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:47.170387983 CET | 53 | 61637 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:47.538862944 CET | 61442 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 10:25:47.539278030 CET | 61145 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 10:25:47.691262007 CET | 53 | 61145 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:47.738606930 CET | 53 | 61442 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:49.922795057 CET | 54152 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 10:25:49.928520918 CET | 58196 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 10:25:49.992733955 CET | 64582 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 10:25:49.993011951 CET | 63500 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 29, 2024 10:25:50.018346071 CET | 53 | 54152 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:50.023310900 CET | 53 | 58196 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:50.089766026 CET | 53 | 64582 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:25:50.090073109 CET | 53 | 63500 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:26:04.791656017 CET | 53 | 53971 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:26:10.765511036 CET | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Mar 29, 2024 10:26:23.666378021 CET | 53 | 54558 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:26:45.212831020 CET | 53 | 62988 | 1.1.1.1 | 192.168.2.4 |
Mar 29, 2024 10:26:46.569067001 CET | 53 | 57062 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Mar 29, 2024 10:25:47.000965118 CET | 192.168.2.4 | 1.1.1.1 | 0x69be | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 29, 2024 10:25:47.001102924 CET | 192.168.2.4 | 1.1.1.1 | 0xe285 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 29, 2024 10:25:47.538862944 CET | 192.168.2.4 | 1.1.1.1 | 0xbd4d | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 29, 2024 10:25:47.539278030 CET | 192.168.2.4 | 1.1.1.1 | 0x34d1 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 29, 2024 10:25:49.922795057 CET | 192.168.2.4 | 1.1.1.1 | 0xd3a3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 29, 2024 10:25:49.928520918 CET | 192.168.2.4 | 1.1.1.1 | 0x6ea6 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 29, 2024 10:25:49.992733955 CET | 192.168.2.4 | 1.1.1.1 | 0xe971 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 29, 2024 10:25:49.993011951 CET | 192.168.2.4 | 1.1.1.1 | 0xde59 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Mar 29, 2024 10:25:47.158540010 CET | 1.1.1.1 | 192.168.2.4 | 0x69be | No error (0) | 162.241.248.14 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:25:47.738606930 CET | 1.1.1.1 | 192.168.2.4 | 0xbd4d | No error (0) | 162.241.248.14 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:25:50.018346071 CET | 1.1.1.1 | 192.168.2.4 | 0xd3a3 | No error (0) | 172.253.62.105 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:25:50.018346071 CET | 1.1.1.1 | 192.168.2.4 | 0xd3a3 | No error (0) | 172.253.62.147 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:25:50.018346071 CET | 1.1.1.1 | 192.168.2.4 | 0xd3a3 | No error (0) | 172.253.62.104 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:25:50.018346071 CET | 1.1.1.1 | 192.168.2.4 | 0xd3a3 | No error (0) | 172.253.62.99 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:25:50.018346071 CET | 1.1.1.1 | 192.168.2.4 | 0xd3a3 | No error (0) | 172.253.62.103 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:25:50.018346071 CET | 1.1.1.1 | 192.168.2.4 | 0xd3a3 | No error (0) | 172.253.62.106 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:25:50.023310900 CET | 1.1.1.1 | 192.168.2.4 | 0x6ea6 | No error (0) | 65 | IN (0x0001) | false | |||
Mar 29, 2024 10:25:50.089766026 CET | 1.1.1.1 | 192.168.2.4 | 0xe971 | No error (0) | 162.241.248.14 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:26:03.576436043 CET | 1.1.1.1 | 192.168.2.4 | 0x4347 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 29, 2024 10:26:03.576436043 CET | 1.1.1.1 | 192.168.2.4 | 0x4347 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:26:16.666083097 CET | 1.1.1.1 | 192.168.2.4 | 0xffd7 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 29, 2024 10:26:16.666083097 CET | 1.1.1.1 | 192.168.2.4 | 0xffd7 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:26:38.747472048 CET | 1.1.1.1 | 192.168.2.4 | 0xe43d | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 29, 2024 10:26:38.747472048 CET | 1.1.1.1 | 192.168.2.4 | 0xe43d | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Mar 29, 2024 10:26:57.946441889 CET | 1.1.1.1 | 192.168.2.4 | 0x702f | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 29, 2024 10:26:57.946441889 CET | 1.1.1.1 | 192.168.2.4 | 0x702f | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49735 | 162.241.248.14 | 80 | 2128 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Mar 29, 2024 10:25:47.351012945 CET | 524 | OUT | |
Mar 29, 2024 10:25:47.535043001 CET | 664 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49736 | 162.241.248.14 | 80 | 2128 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Mar 29, 2024 10:26:32.366353035 CET | 6 | OUT |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49737 | 162.241.248.14 | 80 | 2128 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Mar 29, 2024 10:26:32.460172892 CET | 6 | OUT |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49738 | 162.241.248.14 | 443 | 2128 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-03-29 09:25:48 UTC | 752 | OUT | |
2024-03-29 09:25:48 UTC | 420 | IN | |
2024-03-29 09:25:48 UTC | 7772 | IN | |
2024-03-29 09:25:48 UTC | 8000 | IN | |
2024-03-29 09:25:48 UTC | 8000 | IN | |
2024-03-29 09:25:48 UTC | 8000 | IN | |
2024-03-29 09:25:48 UTC | 8000 | IN | |
2024-03-29 09:25:48 UTC | 8000 | IN | |
2024-03-29 09:25:48 UTC | 8000 | IN | |
2024-03-29 09:25:48 UTC | 3047 | IN | |
2024-03-29 09:25:49 UTC | 679 | OUT | |
2024-03-29 09:25:49 UTC | 8192 | IN |