Windows
Analysis Report
https://valleyglassinc-my.sharepoint.com/:x:/g/personal/kylief_valleyglass_com/EQQGPxTO__9Poobn5TukyJkB_VG03JzurVQP2laCRuMuHA
Overview
General Information
Detection
Score: | 1 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 2232 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 6844 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2008 --fi eld-trial- handle=189 2,i,379326 1570733558 033,115665 0471160130 3332,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 2352 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://valle yglassinc- my.sharepo int.com/:x :/g/person al/kylief_ valleyglas s_com/EQQG PxTO__9Poo bn5TukyJkB _VG03JzurV QP2laCRuMu HA" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
There are no malicious signatures, click here to show all signatures.
Source: | HTTPS traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | File created: | Jump to behavior |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: |
Source: | Window detected: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | 1 Registry Run Keys / Startup Folder | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | 1 Registry Run Keys / Startup Folder | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
dual-spo-0005.spo-msedge.net | 13.107.136.10 | true | false | unknown | |
www.google.com | 142.250.105.105 | true | false | high | |
fp2e7a.wpc.phicdn.net | 192.229.211.108 | true | false | unknown | |
valleyglassinc-my.sharepoint.com | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | unknown | ||
false | unknown | ||
false | unknown | ||
false | unknown | ||
false | unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
13.107.136.10 | dual-spo-0005.spo-msedge.net | United States | 8068 | MICROSOFT-CORP-MSN-AS-BLOCKUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
142.250.105.105 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.5 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1428876 |
Start date and time: | 2024-04-19 19:01:55 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 15s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://valleyglassinc-my.sharepoint.com/:x:/g/personal/kylief_valleyglass_com/EQQGPxTO__9Poobn5TukyJkB_VG03JzurVQP2laCRuMuHA |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 7 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | CLEAN |
Classification: | clean1.win@16/33@6/4 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 173.194.219.94, 64.233.177.84, 172.217.215.100, 172.217.215.138, 172.217.215.139, 172.217.215.101, 172.217.215.113, 172.217.215.102, 34.104.35.123, 23.203.48.66, 23.203.48.28, 23.203.48.31, 20.12.23.50, 72.21.81.240, 192.229.211.108, 13.85.23.206, 142.250.9.94
- Excluded domains from analysis (whitelisted): slscr.update.microsoft.com, e40491.dscd.akamaiedge.net, clientservices.googleapis.com, res-1.cdn.office.net, wu.azureedge.net, clients2.google.com, ocsp.digicert.com, 191930-ipv4v6w.farm.dprodmgd105.sharepointonline.com.akadns.net, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, res-1.cdn.office.net-c.edgekey.net.globalredir.akadns.net, glb.sls.prod.dcat.dsp.trafficmanager.net, fs.microsoft.com, accounts.google.com, wu.ec.azureedge.net, ctldl.windowsupdate.com, wu-bg-shim.trafficmanager.net, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, clients.l.google.com, res-1.cdn.office.net-c.edgekey.net
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
- VT rate limit hit for: https://valleyglassinc-my.sharepoint.com/:x:/g/personal/kylief_valleyglass_com/EQQGPxTO__9Poobn5TukyJkB_VG03JzurVQP2laCRuMuHA
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2677 |
Entropy (8bit): | 3.9803236005069507 |
Encrypted: | false |
SSDEEP: | 48:8jtdkTI8IHEidAKZdA19ehwiZUklqehZy+3:8jEfr6y |
MD5: | 3038D9A0731B0DEA079F91EDEBBD5208 |
SHA1: | B21D19C9495CB9DCAFF9798D79837E6D92710E26 |
SHA-256: | AF1389CFCB1C67FC23ACBEE232BBB341E2C18D485030FE2D19E26AB94429ACC4 |
SHA-512: | 19C35664FC6707F39DF23A0810CA05B983EE0D3A6EEB226F677BAA4CB34172B060C3F85E8018F3663294C4E39FA0316B9EB658894E4BEC2BA705EA98C99F29D5 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2679 |
Entropy (8bit): | 3.9938713027384725 |
Encrypted: | false |
SSDEEP: | 48:8M2dkTI8IHEidAKZdA1weh/iZUkAQkqehqy+2:8ofZ9Qry |
MD5: | A66EA24F2A71A2C6FC4B7577D2B99BA0 |
SHA1: | 76E74B39EDCD16A4004DDFA8CE56219C68302477 |
SHA-256: | 53633343D2F388515E2C8E12179A62633280C7D2EE009209FBB048DF862EC7F8 |
SHA-512: | 86DDB3285F5DE548C54B7E36846BF085989E7422ACECFC21E62528C25187C5356C9928075D488BBCB2B2923B9F035435CF05CC423DF32B4C88D4BB70A671FB2E |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2693 |
Entropy (8bit): | 4.004714381948698 |
Encrypted: | false |
SSDEEP: | 48:8xddkTI8sHEidAKZdA14tseh7sFiZUkmgqeh7s8y+BX:8xUfFney |
MD5: | A6AE8E2CFD5BD986D71A9E99EA6CC723 |
SHA1: | A6B53877BECFBD8DB34AC4DD3C843295EC40CDF4 |
SHA-256: | 61F09586B4FD1E2156542830A5FBFCCACE1B2806272BF82DFAD3E489F98AEC8F |
SHA-512: | 87606B6375ED5A6F228941EDAE09B8EE9364C3DB1D1A9FDFD871F403C6DD83418C3BDA824550CBFDB07A313052A7923618AEF4212759C2C58FB8FAD1F942CD20 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2681 |
Entropy (8bit): | 3.994598545517002 |
Encrypted: | false |
SSDEEP: | 48:8hdkTI8IHEidAKZdA1vehDiZUkwqehmy+R:8Af6Ey |
MD5: | 1C143AE8A7A9EC3B7143CD1E1DCB059A |
SHA1: | 52E3CE338F9B847DA3B9558C0A88D71D9EE65741 |
SHA-256: | AD13780238F3B4417A8ACA8DE7B0AA8E0C319643DB225B81D79608182E36DB82 |
SHA-512: | 3ED1C655BBAAA43E6DF7ADBB4E37D32A81C81B5B6E663667F7E4417BA468784C797FD4878243EB887333C610648CEE8189F00808FDECC4E02C7228922472685B |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2681 |
Entropy (8bit): | 3.9839431275107517 |
Encrypted: | false |
SSDEEP: | 48:8ydkTI8IHEidAKZdA1hehBiZUk1W1qehwy+C:8Zf69Qy |
MD5: | E37C66B1DE8ACF22CD6DC7B279E345F5 |
SHA1: | 2B42D161AA65097DB6F5DAA25B8B67B259288991 |
SHA-256: | 98D905CC6BA3BAE38F6EFA95C67B8F26BEC714F2392F483DB8EFF10B844EF5CD |
SHA-512: | 356962456C7CB3FAB8D72DD1D76AC086FEA6B66CD9AE8032E4B02375F82AE63F89146615CCE73C2622E1F7124475DCDB9D1D7976F1E613FBF913556F5185D001 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2683 |
Entropy (8bit): | 3.995116658916392 |
Encrypted: | false |
SSDEEP: | 48:8rdkTI8IHEidAKZdA1duT+ehOuTbbiZUk5OjqehOuTbey+yT+:86fET/TbxWOvTbey7T |
MD5: | 961382620028083A6D3868FCD54F3AD5 |
SHA1: | 5A3B7576ACC14556135AB28EBB3C12D2645C2B1D |
SHA-256: | 1D25A3E4D4973713BD41BB9679ABB3B18482B016EF29D90B372B943640B83302 |
SHA-512: | 85D1A48F61891982746D19BBA6DE56CD2BA719B5BD9255BA08312DD879765A135E71DECD321ECA2AE7213368362DFDCBEA0F4B80328786209FA4DE5B22DB854C |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 511765 |
Entropy (8bit): | 5.440748047324113 |
Encrypted: | false |
SSDEEP: | 12288:k3OkpWeupsTyhEQLQr4ABnIF7wEyAJU7/:k3OkpWeuGTyhEQLQr4ABnIdwEyAm |
MD5: | 29C0CB5C5CC2B8CAC109153976E27534 |
SHA1: | 48C3258B2FE4F414795059A91F7744C4C431D808 |
SHA-256: | 747EA30208562F390A008403E6388D3998EEE48D015E5CA32C057DE7D02ABE58 |
SHA-512: | 1695AA0062F4020C38E9CF21BBB1624F073E735222E27715ECDF22487358A2F9063D3B4F314530C27F53358BF76DC9A2A7DAFC09343AC0E93D8C3F18426A0FC8 |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.24727.12007/core.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 7886 |
Entropy (8bit): | 3.9482833105763633 |
Encrypted: | false |
SSDEEP: | 48:gubb4a2MNTgopLqyhFTv07EVc91JbV5FIXH0wp53O:Bbb4a5NTX1c9L6E |
MD5: | 0B60F3C9E4DA6E807E808DA7360F24F2 |
SHA1: | 9AFC7ABB910DE855EFB426206E547574A1E074B7 |
SHA-256: | ADDEEDEEEF393B6B1BE5BBB099B656DCD797334FF972C495CCB09CFCB1A78341 |
SHA-512: | 1328363987ABBAD1B927FC95F0A3D5646184EF69D66B42F32D1185EE06603AE1A574FAC64472FB6E349C2CE99F9B54407BA72B2908CA7AB01D023EC2F47E7E80 |
Malicious: | false |
Reputation: | low |
URL: | https://valleyglassinc-my.sharepoint.com/_layouts/15/images/favicon.ico?rev=47 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 23594 |
Entropy (8bit): | 5.107347306409284 |
Encrypted: | false |
SSDEEP: | 384:zyWvVsT5pTtxJOyNm7lMqasjI8LWv3n8wyM:zJsT5pTt7kK+M |
MD5: | 964FCB2BAF87049DC68975291AE89431 |
SHA1: | D0CD8C989D44BC531472B632868D3FB2DE4B3184 |
SHA-256: | B8F7BD568E379502CF0C00027581D2761C7DC14B166F5D25FC048A0B56B7BFBB |
SHA-512: | 03CB58D197A776F9C315C2A14B9C034D88C7B7E9F4247C5698396F4FE7363A22FC2042A24C02A245C7E035DD2862F88E8EF46A7E5A269EDC2B69E39752A52987 |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.24727.12007/1033/initstrings.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 9984 |
Entropy (8bit): | 7.979200972475404 |
Encrypted: | false |
SSDEEP: | 192:/Z/x+yzJpYhEFmtHByePw0JwScHXWumyaxkomNwWs8pQegUOX+B/rHiG:/JP8hEFshyePw8cHXx58k3OWVpQegUO0 |
MD5: | 027A7D52E1CEED8AEF7DC13505B81D36 |
SHA1: | 33CF0BCE6A4C8B44B4A80B3116C978C12EE93FD0 |
SHA-256: | 29061464FB6FCE2326B952EACAA95C3C6183BFEA74C3851390E9838720D372A6 |
SHA-512: | FCDDEBF6DE759B5079E7DF2432771A866DE1824B119AD8CB3BAE11F9FAA060B943D52F121E4C63E7E20D43F31B2220C1D4E9C24A20004C4B061CD1A0A5EE5AC9 |
Malicious: | false |
Reputation: | low |
URL: | https://valleyglassinc-my.sharepoint.com/ScriptResource.axd?d=oss1GNe_QxAv3TikIgRy_-NOHkB42h8-smNripDChgkcYKb03Lw475ncbnT6MIsaP5H7ERi82zXToNdidd-beeJ2HyxTKrQnnrBEE7czb1hQI6Kx50OXtXk01hoTBIAzjWGC_Brom9IoS2rqlVEJgXXyfAWmVvWFT6JjdhN1CizGHy9Hn34BJT4yQ6uOgjfH0&t=722fe453 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 186722 |
Entropy (8bit): | 5.127936869447186 |
Encrypted: | false |
SSDEEP: | 1536:qofu83Pw6jz1+8YZwf7BN6pJsnNxezT8+zacaS8Ob4C//aT5L4DK:883z5+nMDEuvezT8++6kZCe |
MD5: | 2DE2482829622DE740DB42E04CBCD047 |
SHA1: | 2A88D65A01BDA232B97B24163F66BA7F90A63386 |
SHA-256: | 947D9E7117E8528021EC98FBBD6FE75A4D393A699DFFFFB3A2803EAE42845CEB |
SHA-512: | 35A2B88CF1FD1505BAD30CF68FB235ED5E5029D4824EC8586452A53E820563229AEA06156B46702C5046DC4BCE0046DFC74E934E215BFDD040B2715D298E8886 |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.24727.12007/1033/strings.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 341640 |
Entropy (8bit): | 5.323830561122645 |
Encrypted: | false |
SSDEEP: | 1536:k6Bi397Ra/9FjWr5JwiaPyJmbu52JmKI1DS9sw83nm5ZMUuj24S+o0WmuGUmh4jP:Lvf42B9Hex3s |
MD5: | 77D1F7B68F8F6B2764896B1CA8DD2625 |
SHA1: | 029DB673E5079D061FAF65C929E62381A2997112 |
SHA-256: | 6A8AA4FE96A0E0846655C2977C533F9AFABC9F8B02E6F4643244CD417D28263C |
SHA-512: | B0E66C55F74FBB23A6A62A55175280E6D1429FFB04745CB7127CD75E8AE88DE8AAEC27808965B690AB88B510CC9C6CC80B1DC7B9948B4C630A0730954E9CDD3B |
Malicious: | false |
Reputation: | low |
URL: | https://valleyglassinc-my.sharepoint.com/_layouts/15/1033/styles/corev15.css?rev=d9H3to%2BPaydkiWscqN0mJQ%3D%3DTAG441 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 456 |
Entropy (8bit): | 5.226530760472433 |
Encrypted: | false |
SSDEEP: | 6:A+roDEH6IgMbIZc8Z1DSlIKMPAI0qKIKMPAI0qeCMRTxIj+01KyBui9YDre:A+MYcYkc8Z1DMASAWCKx2+Wuit |
MD5: | F797B9FE66DEB63DB9AE1DDB7319DF4D |
SHA1: | B6C676E335CEE429E861EF3E1B2ADAC685566C1E |
SHA-256: | 81AAA642B9117EDACAA45CE9EEB02542AC0F96E0C0B3305D88B86D82DA9EEC0E |
SHA-512: | 75616D31358AD03A03D6A70920CD8FDB7D1CE498F32875F7F2CC7359A2BD4F018910B1C00A6F4B54DDECAB0D131503A24B25376F335AC6C764509ADFC5C369B1 |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.24727.12007/blank.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 7886 |
Entropy (8bit): | 3.9482833105763633 |
Encrypted: | false |
SSDEEP: | 48:gubb4a2MNTgopLqyhFTv07EVc91JbV5FIXH0wp53O:Bbb4a5NTX1c9L6E |
MD5: | 0B60F3C9E4DA6E807E808DA7360F24F2 |
SHA1: | 9AFC7ABB910DE855EFB426206E547574A1E074B7 |
SHA-256: | ADDEEDEEEF393B6B1BE5BBB099B656DCD797334FF972C495CCB09CFCB1A78341 |
SHA-512: | 1328363987ABBAD1B927FC95F0A3D5646184EF69D66B42F32D1185EE06603AE1A574FAC64472FB6E349C2CE99F9B54407BA72B2908CA7AB01D023EC2F47E7E80 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 199911 |
Entropy (8bit): | 4.976076370458966 |
Encrypted: | false |
SSDEEP: | 6144:aL+sv/ySGjF72Abdspnm4yBBCDRV51knP3cqMDUpgZ3sg/f+xD4N:4bKSGjF72Abdspn8xFGpN |
MD5: | 03A491F6BA2494601D2C2D597092161E |
SHA1: | 3448F72EDBFCC3BFABB6451D8BB05D59F5070797 |
SHA-256: | 5FF58D811AB3EBE2A850F61DA757FDA09DD76B16E55AEA85CD9993D62C9139E7 |
SHA-512: | 886A29B087CC054EDBAC0A986B169DA8A41EBC8D174B7D2969D5CF872A93D0BC532E97879E0A79B40E15F56E10A6FF38053EE90C67711FAB34DA565DF79AEF2E |
Malicious: | false |
Reputation: | low |
URL: | https://valleyglassinc-my.sharepoint.com/:x:/g/personal/kylief_valleyglass_com/EQQGPxTO__9Poobn5TukyJkB_VG03JzurVQP2laCRuMuHA |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 25609 |
Entropy (8bit): | 7.992070293592458 |
Encrypted: | true |
SSDEEP: | 768:65FO8CctusRS+4iLLuVC9Vri5MLPMTleAD5:8FbxwsR/4iAz5MbMl5 |
MD5: | B62553925BD98826C60457D2EB6B9A46 |
SHA1: | 84DBBB6D9B36A587C21B5A56B1D9E587E33BA943 |
SHA-256: | C58166FE4DF4BA8F25A960C21451EAF841D97F6F552F104E43431C9DB1C2E2CC |
SHA-512: | 7B6872144AE308224FF671A1EC63F040A40115888790CF6834AD85D517471CE5DAD3EC297EE751FB196B55118A181017151F7F06FCE0F2F26FF94E8EEC070033 |
Malicious: | false |
Reputation: | low |
URL: | https://valleyglassinc-my.sharepoint.com/ScriptResource.axd?d=NgeraXf62xoNme3s-nva94cKIdNgzW3_IQMt1G5-iuqRLvOiMZ_qJHGv7SK8DzRi6BtVJqmjbuvlqpqhPKsDZFQ7SCnLlcWHEgW-LiBxr8R88qT2SddjTOq9Omqx01n6x_u-e6gfi_JrUTEAFxPrKAdV727PReh5dFQI8hy1hY6TW-6K6oYNL977PhSpNjyI0&t=722fe453 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 23063 |
Entropy (8bit): | 4.7535440881548165 |
Encrypted: | false |
SSDEEP: | 384:GvUzYI+Vi4g1V5it1ONhA6w+Kv8i/4CYzLKL4DrLU0iTxZTAzIzrwDlTWMClQip9:bkON69kClQq8hDRJHp2tWU25Zt/gREVG |
MD5: | 90EA7274F19755002360945D54C2A0D7 |
SHA1: | 647B5D8BF7D119A2C97895363A07A0C6EB8CD284 |
SHA-256: | 40732E9DCFA704CF615E4691BB07AECFD1CC5E063220A46E4A7FF6560C77F5DB |
SHA-512: | 7474667800FF52A0031029CC338F81E1586F237EB07A49183008C8EC44A8F67B37E5E896573F089A50283DF96A1C8F185E53D667741331B647894532669E2C07 |
Malicious: | false |
Reputation: | low |
URL: | https://valleyglassinc-my.sharepoint.com/WebResource.axd?d=02gr6bN-yBhmkjUgZhXZbcx-I5GFUW4rFBxPpE7F0dAz0HZ8Jip111DYNxTtB6UuIOMHp9EW_aT0BWuF3uk-XqpAUjcVHZ3hEJMEFoN7Xo01&t=638428559797478602 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 35238 |
Entropy (8bit): | 5.390650418562352 |
Encrypted: | false |
SSDEEP: | 768:PrxzCC2akwbs7lSZTprPaTrPyrfKwKTZiNOzpCk47S:hsp7ly9rP0S4pCkx |
MD5: | C637DE6889D81964119BA1FD124E2454 |
SHA1: | 5DB2B1681BE6FF9A7B26E269CD80D817D41A01BE |
SHA-256: | 18E8366C8C5590C3D056BA6CA9691B7471D6970EE00D0E22A4B68E517B54F087 |
SHA-512: | 78288767F08DB38F6DC8C366546CECC05DF35C25BCD898B94DCCC5ECCB3ACD7807817BAF813BCA11F4CCAC169A980E4F10EBF4334000C4D2D0F74DCC30BB36EE |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.24727.12007/theming.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 341066 |
Entropy (8bit): | 5.443381100947849 |
Encrypted: | false |
SSDEEP: | 6144:rXVJjsUJaW86hPIjcfbO47IunpizIcxdS+MI4Ny6qF+HNJdWLWnAboc3lexR1YhZ:rXVJjsUPl0ugzIy |
MD5: | 79A07306C2CF97F9EDDA0B0387F9C6E3 |
SHA1: | D4D9B058C35C2F361CAEA062F59E1CD7DF796D88 |
SHA-256: | ABB5A1C1F7C2B0ADFBF5A9BCA0CEC06762FCB7D5724539E818EE30F7C20F7412 |
SHA-512: | 6E712CC9F65D05F6C8297CFC039A65C6125A48C71007C6A772D3D6635F1CD6EC9BD4C6D5E111EF82EBD6ED88490B2AFBA81990BA6965082093D7438DC9278094 |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.24727.12007/init.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 622 |
Entropy (8bit): | 5.030708856292114 |
Encrypted: | false |
SSDEEP: | 12:UXRtEohlWNmONv0MBR0/vUvFa9vN8ESve77Lxukm3auDjqHV:Ofa9n2H8qzxukmKuDjkV |
MD5: | B45EDFC9FCDB690CCDA004A8483955E0 |
SHA1: | BAEDF73329EABB32504CAC640538EE3B6B31819F |
SHA-256: | E817BF53005172205995AA07E0021BD8254A0204A1177E925F365E838C32D069 |
SHA-512: | E2709C77BA686FC58FE528EC2C2CEB6B9C84D045018D77FB9B376359F204FB6B889910B6748C978B4FF9712A7611342DF3C8C59711AA42090219DEC0C83778D2 |
Malicious: | false |
Reputation: | low |
URL: | https://valleyglassinc-my.sharepoint.com/_layouts/15/1033/styles/error.css?rev=tF7fyfzbaQzNoASoSDlV4A%3D%3DTAG441 |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 19, 2024 19:02:39.901913881 CEST | 49674 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:02:39.901968956 CEST | 49675 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:02:39.995620012 CEST | 49673 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:02:47.340219021 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.340255022 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.340327024 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.340679884 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.340696096 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.341613054 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.341628075 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.341818094 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.341932058 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.341960907 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.664489031 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.665075064 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.665087938 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.666277885 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.666352034 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.667671919 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.667749882 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.667877913 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.667885065 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.669446945 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.669684887 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.669703007 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.671175003 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.671263933 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.672425032 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.672507048 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.709600925 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.725668907 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:47.725677013 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:47.771223068 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.004637957 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.004657030 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.004748106 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.004765034 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.004797935 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.004832029 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.004834890 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.004854918 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.004865885 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.004865885 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.004916906 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.005007982 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.005085945 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.005099058 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.038054943 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.038083076 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.038177013 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.038194895 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.038755894 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.038765907 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.048955917 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.084115982 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.108609915 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.108618021 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.108664036 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.108694077 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.108733892 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.108753920 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.108799934 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.108835936 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.108890057 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.108984947 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.108999014 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.109047890 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.109121084 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.109133005 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.109246016 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.109321117 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.109333038 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.109359026 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.109426975 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.109440088 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.126450062 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Apr 19, 2024 19:02:48.126614094 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:02:48.149890900 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.206953049 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.206980944 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.207057953 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.207093000 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.207120895 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.207138062 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.207165956 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.207175970 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.207185030 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.207211971 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.207246065 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.207359076 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.207437038 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.207444906 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213386059 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213432074 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213507891 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213550091 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213577032 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213582993 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213617086 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213629961 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213658094 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213659048 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213695049 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213706017 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213723898 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213732004 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213752031 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213779926 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213799953 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213821888 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213851929 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213854074 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213865042 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213928938 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213938951 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.213951111 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213968039 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.213993073 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.214016914 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.214026928 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.214051008 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.214093924 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.242676020 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.242707968 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.242794991 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.243784904 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.243815899 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.243881941 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.244338989 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.244379044 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.244447947 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.245419025 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.245459080 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.245718956 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.245735884 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.245969057 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.245985985 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.253700018 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.311594963 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.311609983 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.311682940 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.311686993 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.311692953 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.311753035 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.311763048 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.311781883 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.311788082 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.311810017 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.311814070 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.311866045 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.311877012 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.311925888 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.311933041 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.312035084 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.312079906 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.312112093 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.312119007 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.312156916 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.317517042 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317549944 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317612886 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317626953 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.317650080 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317694902 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317729950 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317742109 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.317742109 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.317744970 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317780972 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317795992 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.317819118 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317848921 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.317881107 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.317892075 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317912102 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.317970037 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.344562054 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.344611883 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.362308025 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.363526106 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.364761114 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.364768982 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.365890026 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.366669893 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.366839886 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.367192030 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.412138939 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.415844917 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.415862083 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.415916920 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.415941000 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.415965080 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.415975094 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416007042 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416023970 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416039944 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416048050 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416079998 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416096926 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416114092 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416126966 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416182041 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416191101 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416207075 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416270971 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416275978 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416290045 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416347980 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416354895 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416368008 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416425943 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416430950 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416450024 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416508913 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416517019 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416537046 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416584015 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.416590929 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.416635036 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520268917 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520332098 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520435095 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520435095 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520453930 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520473003 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520510912 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520519018 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520541906 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520545006 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520610094 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520610094 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520616055 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520692110 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520706892 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520778894 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520813942 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520819902 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520889044 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520889044 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.520908117 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.520957947 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521022081 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521022081 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521028996 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521083117 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521213055 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521256924 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521327972 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521334887 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521378040 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521378040 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521405935 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521445990 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521488905 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521495104 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521541119 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521541119 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521579981 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521625042 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521678925 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521684885 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521723032 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521729946 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521773100 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521820068 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521878004 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521883965 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521905899 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521930933 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.521930933 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.521959066 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.522011042 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.522017002 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.522032976 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.522038937 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.522079945 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.522114038 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.523098946 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.524941921 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.525150061 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.525223017 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.529565096 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.529593945 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.564057112 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.564537048 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.564574003 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.564897060 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.569787979 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.569860935 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.570612907 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.574445963 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.574918032 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.574947119 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.575236082 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.575683117 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.575732946 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.578512907 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.578753948 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.579381943 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.579464912 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.579488039 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.579670906 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.579860926 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.580043077 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.580202103 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.580213070 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.580468893 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.580486059 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.616128922 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.624263048 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.624325991 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.624368906 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.624382973 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.624504089 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.625550032 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.625608921 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.625664949 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.625680923 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.625746012 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.625746012 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.625793934 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.625869989 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.625906944 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.625915051 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.625955105 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.625994921 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.626094103 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.627701044 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.627775908 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.660856962 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.660887957 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.714692116 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.714704037 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.714798927 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.714814901 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.715022087 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.715058088 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.715085030 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.715092897 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.715131044 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.715164900 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.723773956 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.723803997 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.723879099 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.723891020 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.723901033 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.723922014 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.723963022 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.724004030 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.724064112 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.724081993 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.724128008 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.724169970 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.724189043 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.724203110 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.724232912 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.724239111 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.724302053 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.726047039 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.726203918 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.726223946 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.726267099 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.726283073 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.726322889 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.726346970 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.726397991 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.726576090 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.726633072 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.728391886 CEST | 49716 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.728420019 CEST | 443 | 49716 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.742717981 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.742736101 CEST | 443 | 49715 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.742747068 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.742803097 CEST | 49715 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.818681002 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.818742990 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:48.818748951 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.818804979 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.820764065 CEST | 49714 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:48.820810080 CEST | 443 | 49714 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:49.505160093 CEST | 49674 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:02:49.505179882 CEST | 49675 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:02:49.596848011 CEST | 49673 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:02:49.895196915 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:49.895237923 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:49.895396948 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:49.898561954 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:49.898580074 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:49.904104948 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:02:49.904128075 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:02:49.904933929 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:02:49.910747051 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:02:49.910759926 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:02:49.915805101 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:49.915815115 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:49.916394949 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:49.916735888 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:49.916752100 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.119818926 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.119884014 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.127115965 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:02:50.131967068 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.131983042 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.132273912 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.150283098 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:02:50.150295973 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:02:50.151217937 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:02:50.151290894 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:02:50.174484015 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.224993944 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:02:50.225272894 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:02:50.240735054 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.250552893 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.250560045 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.250931025 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.257554054 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.257627964 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.258555889 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.269459963 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:02:50.269471884 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:02:50.304117918 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.316366911 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:02:50.383203030 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.409960985 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.409991980 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.410090923 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.410098076 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.410113096 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.410156012 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.410162926 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.410183907 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.410207033 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.410238981 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.416609049 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.416616917 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.428119898 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.488248110 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.488322020 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.488385916 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.489454031 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.489530087 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.489541054 CEST | 49721 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.489562035 CEST | 443 | 49721 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.546998978 CEST | 49725 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.547024965 CEST | 443 | 49725 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.547108889 CEST | 49725 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.547879934 CEST | 49725 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.547904968 CEST | 443 | 49725 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.760669947 CEST | 443 | 49725 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.760742903 CEST | 49725 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.937361002 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.937402964 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.937494993 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.938311100 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:50.938324928 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:50.942497969 CEST | 49725 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:50.942512989 CEST | 443 | 49725 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.942857981 CEST | 443 | 49725 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:50.959413052 CEST | 49725 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:51.004112005 CEST | 443 | 49725 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:51.065088987 CEST | 443 | 49725 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:51.065181971 CEST | 443 | 49725 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:51.065279961 CEST | 49725 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:51.075341940 CEST | 49725 | 443 | 192.168.2.5 | 184.24.36.112 |
Apr 19, 2024 19:02:51.075356007 CEST | 443 | 49725 | 184.24.36.112 | 192.168.2.5 |
Apr 19, 2024 19:02:51.264553070 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.264981985 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.265022993 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.266479969 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.266554117 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.266963959 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.267049074 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.267093897 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.312115908 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.315125942 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.315134048 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.361979008 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.410243988 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.410301924 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.410429001 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.410440922 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.410463095 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.410506010 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.410531998 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.410588980 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.410706043 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:02:51.410775900 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.411398888 CEST | 49726 | 443 | 192.168.2.5 | 13.107.136.10 |
Apr 19, 2024 19:02:51.411423922 CEST | 443 | 49726 | 13.107.136.10 | 192.168.2.5 |
Apr 19, 2024 19:03:00.140525103 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:00.140654087 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:00.140839100 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:03:00.598840952 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:03:00.763062954 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Apr 19, 2024 19:03:00.763082981 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Apr 19, 2024 19:03:00.763200998 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:03:00.763243914 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:03:01.264523983 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Apr 19, 2024 19:03:01.264621973 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:03:01.378882885 CEST | 49722 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:03:01.378895044 CEST | 443 | 49722 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:01.422283888 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Apr 19, 2024 19:03:01.422374964 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:03:08.372144938 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Apr 19, 2024 19:03:08.372384071 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 19, 2024 19:03:49.415688992 CEST | 49735 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:03:49.415772915 CEST | 443 | 49735 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:49.415867090 CEST | 49735 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:03:49.416120052 CEST | 49735 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:03:49.416155100 CEST | 443 | 49735 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:49.630219936 CEST | 443 | 49735 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:49.630579948 CEST | 49735 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:03:49.630619049 CEST | 443 | 49735 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:49.630975008 CEST | 443 | 49735 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:49.631337881 CEST | 49735 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:03:49.631439924 CEST | 443 | 49735 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:49.680120945 CEST | 49735 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:03:59.630188942 CEST | 443 | 49735 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:59.630299091 CEST | 443 | 49735 | 142.250.105.105 | 192.168.2.5 |
Apr 19, 2024 19:03:59.630386114 CEST | 49735 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:04:01.379242897 CEST | 49735 | 443 | 192.168.2.5 | 142.250.105.105 |
Apr 19, 2024 19:04:01.379282951 CEST | 443 | 49735 | 142.250.105.105 | 192.168.2.5 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 19, 2024 19:02:44.995917082 CEST | 53 | 51913 | 1.1.1.1 | 192.168.2.5 |
Apr 19, 2024 19:02:45.149451017 CEST | 53 | 55692 | 1.1.1.1 | 192.168.2.5 |
Apr 19, 2024 19:02:45.757189989 CEST | 53 | 61345 | 1.1.1.1 | 192.168.2.5 |
Apr 19, 2024 19:02:47.082879066 CEST | 63937 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 19, 2024 19:02:47.083251953 CEST | 51708 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 19, 2024 19:02:49.371258974 CEST | 60754 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 19, 2024 19:02:49.371891022 CEST | 61898 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 19, 2024 19:02:49.477258921 CEST | 53 | 60754 | 1.1.1.1 | 192.168.2.5 |
Apr 19, 2024 19:02:49.477732897 CEST | 53 | 61898 | 1.1.1.1 | 192.168.2.5 |
Apr 19, 2024 19:02:50.593159914 CEST | 53516 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 19, 2024 19:02:50.593713999 CEST | 59476 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 19, 2024 19:03:02.774261951 CEST | 53 | 64735 | 1.1.1.1 | 192.168.2.5 |
Apr 19, 2024 19:03:21.624888897 CEST | 53 | 56280 | 1.1.1.1 | 192.168.2.5 |
Apr 19, 2024 19:03:44.170053005 CEST | 53 | 64765 | 1.1.1.1 | 192.168.2.5 |
Apr 19, 2024 19:03:44.970374107 CEST | 53 | 59235 | 1.1.1.1 | 192.168.2.5 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 19, 2024 19:02:47.082879066 CEST | 192.168.2.5 | 1.1.1.1 | 0x8853 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 19, 2024 19:02:47.083251953 CEST | 192.168.2.5 | 1.1.1.1 | 0xca9d | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 19, 2024 19:02:49.371258974 CEST | 192.168.2.5 | 1.1.1.1 | 0xe29 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 19, 2024 19:02:49.371891022 CEST | 192.168.2.5 | 1.1.1.1 | 0x3e25 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 19, 2024 19:02:50.593159914 CEST | 192.168.2.5 | 1.1.1.1 | 0xf63e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 19, 2024 19:02:50.593713999 CEST | 192.168.2.5 | 1.1.1.1 | 0xfa9d | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 19, 2024 19:02:47.310534954 CEST | 1.1.1.1 | 192.168.2.5 | 0xca9d | No error (0) | valleyglassinc.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.310534954 CEST | 1.1.1.1 | 192.168.2.5 | 0xca9d | No error (0) | 9851-ipv4v6e.clump.dprodmgd105.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.310534954 CEST | 1.1.1.1 | 192.168.2.5 | 0xca9d | No error (0) | 191930-ipv4v6e.farm.dprodmgd105.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.310534954 CEST | 1.1.1.1 | 192.168.2.5 | 0xca9d | No error (0) | 191930-ipv4v6w.farm.dprodmgd105.sharepointonline.com.akadns.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.321856976 CEST | 1.1.1.1 | 192.168.2.5 | 0x8853 | No error (0) | valleyglassinc.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.321856976 CEST | 1.1.1.1 | 192.168.2.5 | 0x8853 | No error (0) | 9851-ipv4v6e.clump.dprodmgd105.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.321856976 CEST | 1.1.1.1 | 192.168.2.5 | 0x8853 | No error (0) | 191930-ipv4v6e.farm.dprodmgd105.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.321856976 CEST | 1.1.1.1 | 192.168.2.5 | 0x8853 | No error (0) | 191930-ipv4v6w.farm.dprodmgd105.sharepointonline.com.akadns.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.321856976 CEST | 1.1.1.1 | 192.168.2.5 | 0x8853 | No error (0) | dual-spo-0005.spo-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.321856976 CEST | 1.1.1.1 | 192.168.2.5 | 0x8853 | No error (0) | 13.107.136.10 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:47.321856976 CEST | 1.1.1.1 | 192.168.2.5 | 0x8853 | No error (0) | 13.107.138.10 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:49.477258921 CEST | 1.1.1.1 | 192.168.2.5 | 0xe29 | No error (0) | 142.250.105.105 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:49.477258921 CEST | 1.1.1.1 | 192.168.2.5 | 0xe29 | No error (0) | 142.250.105.104 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:49.477258921 CEST | 1.1.1.1 | 192.168.2.5 | 0xe29 | No error (0) | 142.250.105.103 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:49.477258921 CEST | 1.1.1.1 | 192.168.2.5 | 0xe29 | No error (0) | 142.250.105.147 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:49.477258921 CEST | 1.1.1.1 | 192.168.2.5 | 0xe29 | No error (0) | 142.250.105.99 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:49.477258921 CEST | 1.1.1.1 | 192.168.2.5 | 0xe29 | No error (0) | 142.250.105.106 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:49.477732897 CEST | 1.1.1.1 | 192.168.2.5 | 0x3e25 | No error (0) | 65 | IN (0x0001) | false | |||
Apr 19, 2024 19:02:50.799634933 CEST | 1.1.1.1 | 192.168.2.5 | 0xfa9d | No error (0) | valleyglassinc.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.799634933 CEST | 1.1.1.1 | 192.168.2.5 | 0xfa9d | No error (0) | 9851-ipv4v6e.clump.dprodmgd105.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.799634933 CEST | 1.1.1.1 | 192.168.2.5 | 0xfa9d | No error (0) | 191930-ipv4v6e.farm.dprodmgd105.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.799634933 CEST | 1.1.1.1 | 192.168.2.5 | 0xfa9d | No error (0) | 191930-ipv4v6w.farm.dprodmgd105.sharepointonline.com.akadns.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.868773937 CEST | 1.1.1.1 | 192.168.2.5 | 0xf63e | No error (0) | valleyglassinc.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.868773937 CEST | 1.1.1.1 | 192.168.2.5 | 0xf63e | No error (0) | 9851-ipv4v6e.clump.dprodmgd105.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.868773937 CEST | 1.1.1.1 | 192.168.2.5 | 0xf63e | No error (0) | 191930-ipv4v6e.farm.dprodmgd105.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.868773937 CEST | 1.1.1.1 | 192.168.2.5 | 0xf63e | No error (0) | 191930-ipv4v6w.farm.dprodmgd105.sharepointonline.com.akadns.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.868773937 CEST | 1.1.1.1 | 192.168.2.5 | 0xf63e | No error (0) | dual-spo-0005.spo-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.868773937 CEST | 1.1.1.1 | 192.168.2.5 | 0xf63e | No error (0) | 13.107.136.10 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:02:50.868773937 CEST | 1.1.1.1 | 192.168.2.5 | 0xf63e | No error (0) | 13.107.138.10 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:03:01.103229046 CEST | 1.1.1.1 | 192.168.2.5 | 0x79ec | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:03:01.103229046 CEST | 1.1.1.1 | 192.168.2.5 | 0x79ec | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:03:13.732985973 CEST | 1.1.1.1 | 192.168.2.5 | 0x9855 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:03:13.732985973 CEST | 1.1.1.1 | 192.168.2.5 | 0x9855 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:03:36.719669104 CEST | 1.1.1.1 | 192.168.2.5 | 0x7d8a | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:03:36.719669104 CEST | 1.1.1.1 | 192.168.2.5 | 0x7d8a | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 19, 2024 19:03:57.766223907 CEST | 1.1.1.1 | 192.168.2.5 | 0x28b0 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 19, 2024 19:03:57.766223907 CEST | 1.1.1.1 | 192.168.2.5 | 0x28b0 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false |
|
Timestamp | Source IP | Source Port | Dest IP | Dest Port | Subject | Issuer | Not Before | Not After | JA3 SSL Client Fingerprint | JA3 SSL Client Digest |
---|---|---|---|---|---|---|---|---|---|---|
Apr 19, 2024 19:03:01.422283888 CEST | 23.1.237.91 | 443 | 192.168.2.5 | 49703 | CN=r.bing.com, O=Microsoft Corporation, L=Redmond, ST=WA, C=US | CN=Microsoft Azure ECC TLS Issuing CA 05, O=Microsoft Corporation, C=US | Wed Oct 18 22:32:40 CEST 2023 | Fri Jun 28 01:59:59 CEST 2024 | 771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-5-10-11-13-35-16-23-65281,29-23-24,0 | 28a2c9bd18a11de089ef85a160da29e4 |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.5 | 49709 | 13.107.136.10 | 443 | 6844 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:47 UTC | 759 | OUT | |
2024-04-19 17:02:48 UTC | 1484 | IN | |
2024-04-19 17:02:48 UTC | 3695 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 3135 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.5 | 49710 | 13.107.136.10 | 443 | 6844 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:48 UTC | 723 | OUT | |
2024-04-19 17:02:48 UTC | 676 | IN | |
2024-04-19 17:02:48 UTC | 2703 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 4935 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.5 | 49713 | 13.107.136.10 | 443 | 6844 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:48 UTC | 719 | OUT | |
2024-04-19 17:02:48 UTC | 674 | IN | |
2024-04-19 17:02:48 UTC | 622 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.5 | 49714 | 13.107.136.10 | 443 | 6844 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:48 UTC | 858 | OUT | |
2024-04-19 17:02:48 UTC | 727 | IN | |
2024-04-19 17:02:48 UTC | 2240 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 5347 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 1638 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.5 | 49715 | 13.107.136.10 | 443 | 6844 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:48 UTC | 858 | OUT | |
2024-04-19 17:02:48 UTC | 725 | IN | |
2024-04-19 17:02:48 UTC | 1331 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 461 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.5 | 49716 | 13.107.136.10 | 443 | 6844 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:48 UTC | 780 | OUT | |
2024-04-19 17:02:48 UTC | 702 | IN | |
2024-04-19 17:02:48 UTC | 2638 | IN | |
2024-04-19 17:02:48 UTC | 8192 | IN | |
2024-04-19 17:02:48 UTC | 4974 | IN | |
2024-04-19 17:02:48 UTC | 7259 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.5 | 49724 | 13.107.136.10 | 443 | 6844 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:50 UTC | 730 | OUT | |
2024-04-19 17:02:50 UTC | 679 | IN | |
2024-04-19 17:02:50 UTC | 3484 | IN | |
2024-04-19 17:02:50 UTC | 4402 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.5 | 49721 | 184.24.36.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:50 UTC | 161 | OUT | |
2024-04-19 17:02:50 UTC | 467 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.5 | 49725 | 184.24.36.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:50 UTC | 239 | OUT | |
2024-04-19 17:02:51 UTC | 531 | IN | |
2024-04-19 17:02:51 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.5 | 49726 | 13.107.136.10 | 443 | 6844 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-19 17:02:51 UTC | 393 | OUT | |
2024-04-19 17:02:51 UTC | 678 | IN | |
2024-04-19 17:02:51 UTC | 2238 | IN | |
2024-04-19 17:02:51 UTC | 5648 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 19:02:41 |
Start date: | 19/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 19:02:43 |
Start date: | 19/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 19:02:46 |
Start date: | 19/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |