Windows
Analysis Report
https://volaris.my.salesforce.com/setup/emailverif?oid=00D300000006mlp&k=Cj4KNQoPMDBEMzAwMDAwMDA2bWxwEg8wMkczNDAwMDAwMEg0RnAaDzAwNTB5MDAwMDBFME9leiAFGJLh35XxMRIQ05NYhI4tFVVW2re7mv4wOxoM_uZbIhh4D4hEDQFOIoIBYTmeUFFWglUQQxkPyj-CZUtrHAPhHvPlA2JOeR2K3afOhhTKA1kBfiZ9F_SrEbAQnnAZTtz1jMLFIpXCDl94jMKBqoTMBIw
Overview
General Information
Detection
Score: | 0 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 3196 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 3652 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2052 --fi eld-trial- handle=201 2,i,110997 5059933661 6528,56486 0507055203 8243,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6488 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://volar is.my.sale sforce.com /setup/ema ilverif?oi d=00D30000 0006mlp&k= Cj4KNQoPMD BEMzAwMDAw MDA2bWxwEg 8wMkczNDAw MDAwMEg0Rn AaDzAwNTB5 MDAwMDBFME 9leiAFGJLh 35XxMRIQ05 NYhI4tFVVW 2re7mv4wOx oM_uZbIhh4 D4hEDQFOIo IBYTmeUFFW glUQQxkPyj -CZUtrHAPh HvPlA2JOeR 2K3afOhhTK A1kBfiZ9F_ SrEbAQnnAZ Ttz1jMLFIp XCDl94jMKB qoTMBIwXbf MiD8h_y9RS RMkjT55qeo eh1IvWH0Ks R9_1vrh1wv QKEfTgI_sA _CVO9MM3sl qp9GcFj-yK X1Y6_Q%3D% 3D" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
There are no malicious signatures, click here to show all signatures.
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
www.google.com | 172.217.215.103 | true | false | high | |
can56.sfdc-58ktaz.salesforce.com | 3.96.182.255 | true | false | high | |
fp2e7a.wpc.phicdn.net | 192.229.211.108 | true | false | unknown | |
volaris.my.salesforce.com | unknown | unknown | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
172.217.215.103 | www.google.com | United States | 15169 | GOOGLEUS | false | |
3.96.182.255 | can56.sfdc-58ktaz.salesforce.com | United States | 16509 | AMAZON-02US | false |
IP |
---|
192.168.2.14 |
192.168.2.4 |
192.168.2.5 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1431713 |
Start date and time: | 2024-04-25 17:03:14 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 22s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://volaris.my.salesforce.com/setup/emailverif?oid=00D300000006mlp&k=Cj4KNQoPMDBEMzAwMDAwMDA2bWxwEg8wMkczNDAwMDAwMEg0RnAaDzAwNTB5MDAwMDBFME9leiAFGJLh35XxMRIQ05NYhI4tFVVW2re7mv4wOxoM_uZbIhh4D4hEDQFOIoIBYTmeUFFWglUQQxkPyj-CZUtrHAPhHvPlA2JOeR2K3afOhhTKA1kBfiZ9F_SrEbAQnnAZTtz1jMLFIpXCDl94jMKBqoTMBIwXbfMiD8h_y9RSRMkjT55qeoeh1IvWH0KsR9_1vrh1wvQKEfTgI_sA_CVO9MM3slqp9GcFj-yKX1Y6_Q%3D%3D |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 8 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | CLEAN |
Classification: | clean0.win@16/12@6/6 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 74.125.138.94, 142.250.9.100, 142.250.9.102, 142.250.9.138, 142.250.9.113, 142.250.9.101, 142.250.9.139, 142.250.9.84, 34.104.35.123, 52.165.165.26, 72.21.81.240, 192.229.211.108, 20.3.187.198, 108.177.122.94
- Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, wu.ec.azureedge.net, clientservices.googleapis.com, ctldl.windowsupdate.com, wu-bg-shim.trafficmanager.net, wu.azureedge.net, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, ocsp.digicert.com, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, clients.l.google.com, glb.sls.prod.dcat.dsp.trafficmanager.net
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6696 |
Entropy (8bit): | 4.260620056564972 |
Encrypted: | false |
SSDEEP: | 192:mBgoKjaCfeCaSNlXajN5taR1Vr4arRNrx4arRsPSSbi6BAQo7Vwv:mBIeRylKjQ/NntA6Fwv |
MD5: | 2833432DBCD3A500A9B32628C5D91D0D |
SHA1: | 18AE542C01A2A81EB8B4C0F676CCF2E01BFB8A8E |
SHA-256: | A48F997FA23140662C20F7A46E93CEFCEF071FBF81CE038067582F2D822D86D5 |
SHA-512: | C03512164C8E5125C480626E4ED175D6271F111D273BA36C581CA344B3F1D41E3A71F2914FE307F96E184AC55597A427CDF7390391C99D88F188A05100C4B370 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 15719 |
Entropy (8bit): | 5.184205781898985 |
Encrypted: | false |
SSDEEP: | 192:d0OPCII+IyIlxswIzHLL4VoIcopk8yqhkqNVOxoYoxIQiw8Ua6SeApWPIBieSsGF:aZtBlSIBVkqbWQi7X0eg |
MD5: | EFC7947CFBF748C96ACD9E0B7A7A0530 |
SHA1: | 7D37E179AA819ABB6BD09A1A0806C05D18EF3263 |
SHA-256: | 183B78D415189617E95EF5102C198ABABE0E0AF78BE79197D4B6F6B216C26796 |
SHA-512: | A206DDCD809A85A47C6AF5AFA35EC53EDBCE46336F5655B33758A75D1C450421A502689F66108E69ABF00C8D5A9F6558CF1BCFFEDA1EF411678AF7BD3BCC603B |
Malicious: | false |
Reputation: | low |
URL: | https://volaris.my.salesforce.com/css/sfdc_210.css?v=2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 5430 |
Entropy (8bit): | 2.6916960685487825 |
Encrypted: | false |
SSDEEP: | 48:uZY/S81C1A58ZrvB0Ze/kPm3Cn8GaxOcBXmD:lSRu8ZrvBj/kuXG9 |
MD5: | CCDA8DF05E9A37B3131AFD4D451B44EC |
SHA1: | ED9D0F9C4224FBD4C768BE237B4B59F27F1B718C |
SHA-256: | 92842FC6C2F66B46F69458C14621FC2ECA5D6C02D7937F9124FE8A3A9A55BC91 |
SHA-512: | A91F53C07B327C35864FE903ACFE30AFE2DE3C26FDCE1BDBF65842598B3A7B2FB19E54DE27495519BF1E2A2BF7358561DA16E931324E5B1112DA4FE7EFE4BC7E |
Malicious: | false |
Reputation: | low |
URL: | https://volaris.my.salesforce.com/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 27736 |
Entropy (8bit): | 7.991596198114222 |
Encrypted: | true |
SSDEEP: | 768:uG994gZ31ZyJicxFisGOMdzIjYXDBZ40Q54N/YifwyIBbzAu:X94gZLyJicxFdMaYBS0i+/BoyKzAu |
MD5: | F4C092CDA9A56B8E26CC307F208949B4 |
SHA1: | DAC76C1196988545BC7C7609D609FDC58CF079E5 |
SHA-256: | B7DF2D6CB9D0ECDA707A1DE1302B3C9D9BDA16247DC382E696579A8308D49771 |
SHA-512: | 8D482A592F4A7874351E5879F56FD5DF06EE268F469A608B1B746486F590834BB3F86A71B9FE273D9C043E929C38EAF571216D6332F154626571F375606B832A |
Malicious: | false |
Reputation: | low |
URL: | https://volaris.my.salesforce.com/login/assets/fonts/SalesforceSans/SalesforceSans-Light.woff2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5430 |
Entropy (8bit): | 2.6916960685487825 |
Encrypted: | false |
SSDEEP: | 48:uZY/S81C1A58ZrvB0Ze/kPm3Cn8GaxOcBXmD:lSRu8ZrvBj/kuXG9 |
MD5: | CCDA8DF05E9A37B3131AFD4D451B44EC |
SHA1: | ED9D0F9C4224FBD4C768BE237B4B59F27F1B718C |
SHA-256: | 92842FC6C2F66B46F69458C14621FC2ECA5D6C02D7937F9124FE8A3A9A55BC91 |
SHA-512: | A91F53C07B327C35864FE903ACFE30AFE2DE3C26FDCE1BDBF65842598B3A7B2FB19E54DE27495519BF1E2A2BF7358561DA16E931324E5B1112DA4FE7EFE4BC7E |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 6696 |
Entropy (8bit): | 4.260620056564972 |
Encrypted: | false |
SSDEEP: | 192:mBgoKjaCfeCaSNlXajN5taR1Vr4arRNrx4arRsPSSbi6BAQo7Vwv:mBIeRylKjQ/NntA6Fwv |
MD5: | 2833432DBCD3A500A9B32628C5D91D0D |
SHA1: | 18AE542C01A2A81EB8B4C0F676CCF2E01BFB8A8E |
SHA-256: | A48F997FA23140662C20F7A46E93CEFCEF071FBF81CE038067582F2D822D86D5 |
SHA-512: | C03512164C8E5125C480626E4ED175D6271F111D273BA36C581CA344B3F1D41E3A71F2914FE307F96E184AC55597A427CDF7390391C99D88F188A05100C4B370 |
Malicious: | false |
Reputation: | low |
URL: | https://volaris.my.salesforce.com/img/logo214.svg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 27580 |
Entropy (8bit): | 7.992387175828179 |
Encrypted: | true |
SSDEEP: | 768:qE6X22YZZE5bi18M7S6RwILPQy+KAiSjcz0:qPXdxQhjwILPqKAHjcz0 |
MD5: | 3CCB7B03C77BB2A3E91F6A2FB4C211F8 |
SHA1: | AC4C4DF3C4BCC636190E4F94C7A80B81158D0517 |
SHA-256: | 1F1752651ACA663F40E45C60E182172FC426A40DF042098F6E68A56DB2C459F3 |
SHA-512: | 0FD58D53F8590EA25A4F5DDE4C4A16BEE27FCCDA4EC94604A3A559790F3F3F9E49C748483B3037FD098ABC656C56C8D283ABE3435F7D2EDB6E7074943459F90C |
Malicious: | false |
Reputation: | low |
URL: | https://volaris.my.salesforce.com/login/assets/fonts/SalesforceSans/SalesforceSans-Regular.woff2 |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 25, 2024 17:03:58.916661978 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 25, 2024 17:04:08.588110924 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 25, 2024 17:04:10.219218016 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.219293118 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.219767094 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.219805002 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.219877005 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.219949007 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.220118046 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.220138073 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.220289946 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.220356941 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.508735895 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.510143995 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.510746956 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.510801077 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.510812044 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.510828972 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.511955976 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.511984110 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.512058973 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.513276100 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.513276100 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.513369083 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.514184952 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.514328003 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.514395952 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.558486938 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.558490038 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.558500051 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.558501959 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.598316908 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.613852978 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.961571932 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.961671114 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.961740971 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.967158079 CEST | 49736 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:10.967216015 CEST | 443 | 49736 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:10.967729092 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.012135029 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.119158983 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.119194984 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.119240046 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.119277954 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.119293928 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.119345903 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.167666912 CEST | 49735 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.167711973 CEST | 443 | 49735 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.194178104 CEST | 49738 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.194236994 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.194303036 CEST | 49738 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.194720984 CEST | 49739 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.194760084 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.194828033 CEST | 49739 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.195024967 CEST | 49738 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.195039988 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.195226908 CEST | 49739 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.195244074 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.472318888 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.472630978 CEST | 49738 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.472662926 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.473068953 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.473406076 CEST | 49738 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.473481894 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.473562002 CEST | 49738 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.474033117 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.474494934 CEST | 49739 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.474520922 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.474927902 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.476222038 CEST | 49739 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.476295948 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.476682901 CEST | 49739 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.520121098 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.520133972 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.797935009 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.797956944 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.798058987 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.798058987 CEST | 49739 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.798118114 CEST | 49739 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.820704937 CEST | 49739 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.820722103 CEST | 443 | 49739 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.930322886 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.930345058 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.930361986 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.930435896 CEST | 49738 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.930504084 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.930571079 CEST | 49738 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.943116903 CEST | 49738 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.943156958 CEST | 443 | 49738 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.983892918 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.983943939 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:11.984046936 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.985132933 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:11.985147953 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.077263117 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.077302933 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.077377081 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.078213930 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.078227043 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.079493999 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.079524994 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.079655886 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.080363989 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.080378056 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.259567976 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.260226011 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.260247946 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.261424065 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.261509895 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.262418032 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.262622118 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.262662888 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.293505907 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:12.293593884 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:04:12.293679953 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:12.294467926 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:12.294507027 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:04:12.304116964 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.307534933 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.307544947 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.354057074 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.356106997 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.356448889 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.356466055 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.356827974 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.357950926 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.358016014 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.358666897 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.359441042 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.359728098 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.359752893 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.361036062 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.361673117 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.361795902 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.361799955 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.361897945 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.403769970 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.404122114 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.528785944 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:04:12.529033899 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:12.529059887 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:04:12.530148029 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:04:12.530208111 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:12.577696085 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.577721119 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.577728987 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.577795982 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.577831984 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.577846050 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.577892065 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.578622103 CEST | 49741 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.578639984 CEST | 443 | 49741 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.808871031 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.808937073 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.808959007 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809053898 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809129953 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809158087 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809158087 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809158087 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809195995 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809221029 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809227943 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809242964 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809257984 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809273958 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809297085 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809350967 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809364080 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809537888 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809566021 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809585094 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809602976 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809638023 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809650898 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809664011 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809724092 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809730053 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809743881 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809763908 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809784889 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809792042 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809801102 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.809823990 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.809858084 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.810486078 CEST | 49742 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.810518980 CEST | 443 | 49742 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.812838078 CEST | 49743 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:12.812850952 CEST | 443 | 49743 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:12.886204958 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:12.886593103 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:04:12.937645912 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:12.937691927 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:04:12.989837885 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:13.090902090 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:13.090945959 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.091044903 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:13.091430902 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:13.091442108 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.366321087 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.415440083 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:13.513560057 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:13.513591051 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.514098883 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.516783953 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:13.516859055 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.517954111 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:13.564116001 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.684725046 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.684746027 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.684815884 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:13.684834957 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.684849024 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:13.684894085 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:14.315952063 CEST | 49745 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:14.316023111 CEST | 443 | 49745 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:14.646220922 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:14.646277905 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:14.646454096 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:14.648828030 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:14.648839951 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:14.884519100 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:14.884608030 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:14.892712116 CEST | 49747 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:14.892755985 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:14.892831087 CEST | 49747 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:14.893243074 CEST | 49747 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:14.893255949 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:14.895634890 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:14.895646095 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:14.896703005 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:14.947141886 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.054711103 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.100123882 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.167613983 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.167819023 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.167891026 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.168210030 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.174892902 CEST | 49747 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:15.174937010 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.175324917 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.176089048 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.176109076 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.176120043 CEST | 49746 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.176125050 CEST | 443 | 49746 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.177021980 CEST | 49747 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:15.177098036 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.177926064 CEST | 49747 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:15.220119953 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.276773930 CEST | 49748 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.276860952 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.276937008 CEST | 49748 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.277945995 CEST | 49748 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.277982950 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.488147020 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.488173962 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.488234043 CEST | 49747 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:15.488291025 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.488333941 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.488379002 CEST | 49747 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:15.493136883 CEST | 49747 | 443 | 192.168.2.4 | 3.96.182.255 |
Apr 25, 2024 17:04:15.493170977 CEST | 443 | 49747 | 3.96.182.255 | 192.168.2.4 |
Apr 25, 2024 17:04:15.507311106 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.507401943 CEST | 49748 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.544048071 CEST | 49748 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.544117928 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.545145035 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.546799898 CEST | 49748 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.592112064 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.730884075 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.731053114 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.731127024 CEST | 49748 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.733653069 CEST | 49748 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.733653069 CEST | 49748 | 443 | 192.168.2.4 | 23.201.212.130 |
Apr 25, 2024 17:04:15.733699083 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:15.733727932 CEST | 443 | 49748 | 23.201.212.130 | 192.168.2.4 |
Apr 25, 2024 17:04:22.536583900 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:04:22.536753893 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:04:22.536828995 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:22.583981991 CEST | 49744 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:04:22.584031105 CEST | 443 | 49744 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:05:12.198827982 CEST | 49758 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:05:12.198879004 CEST | 443 | 49758 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:05:12.199017048 CEST | 49758 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:05:12.199275970 CEST | 49758 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:05:12.199285030 CEST | 443 | 49758 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:05:12.426737070 CEST | 443 | 49758 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:05:12.427021980 CEST | 49758 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:05:12.427041054 CEST | 443 | 49758 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:05:12.427494049 CEST | 443 | 49758 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:05:12.427825928 CEST | 49758 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:05:12.427910089 CEST | 443 | 49758 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:05:12.478810072 CEST | 49758 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:05:15.534250975 CEST | 49723 | 80 | 192.168.2.4 | 199.232.210.172 |
Apr 25, 2024 17:05:15.534487963 CEST | 49724 | 80 | 192.168.2.4 | 199.232.210.172 |
Apr 25, 2024 17:05:15.643850088 CEST | 80 | 49723 | 199.232.210.172 | 192.168.2.4 |
Apr 25, 2024 17:05:15.643881083 CEST | 80 | 49723 | 199.232.210.172 | 192.168.2.4 |
Apr 25, 2024 17:05:15.643944025 CEST | 49723 | 80 | 192.168.2.4 | 199.232.210.172 |
Apr 25, 2024 17:05:15.644002914 CEST | 80 | 49724 | 199.232.210.172 | 192.168.2.4 |
Apr 25, 2024 17:05:15.644606113 CEST | 80 | 49724 | 199.232.210.172 | 192.168.2.4 |
Apr 25, 2024 17:05:15.644659996 CEST | 49724 | 80 | 192.168.2.4 | 199.232.210.172 |
Apr 25, 2024 17:05:22.452341080 CEST | 443 | 49758 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:05:22.452487946 CEST | 443 | 49758 | 172.217.215.103 | 192.168.2.4 |
Apr 25, 2024 17:05:22.452544928 CEST | 49758 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:05:22.464422941 CEST | 49758 | 443 | 192.168.2.4 | 172.217.215.103 |
Apr 25, 2024 17:05:22.464461088 CEST | 443 | 49758 | 172.217.215.103 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 25, 2024 17:04:08.055844069 CEST | 53 | 65153 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:08.248209953 CEST | 53 | 49683 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:08.908056974 CEST | 53 | 57969 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:10.091402054 CEST | 57539 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 25, 2024 17:04:10.091914892 CEST | 51161 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 25, 2024 17:04:10.209367990 CEST | 53 | 51161 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:10.218290091 CEST | 53 | 57539 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:11.830327988 CEST | 61091 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 25, 2024 17:04:11.830648899 CEST | 49423 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 25, 2024 17:04:11.944456100 CEST | 53 | 61091 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:11.959548950 CEST | 53 | 49423 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:12.178632021 CEST | 51542 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 25, 2024 17:04:12.179192066 CEST | 59566 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 25, 2024 17:04:12.289536953 CEST | 53 | 51542 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:12.291445017 CEST | 53 | 59566 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:25.891324043 CEST | 53 | 54112 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:04:27.096724033 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Apr 25, 2024 17:04:44.887275934 CEST | 53 | 54661 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:05:07.398181915 CEST | 53 | 49397 | 1.1.1.1 | 192.168.2.4 |
Apr 25, 2024 17:05:08.167937994 CEST | 53 | 58632 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 25, 2024 17:04:10.091402054 CEST | 192.168.2.4 | 1.1.1.1 | 0x3b7c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 25, 2024 17:04:10.091914892 CEST | 192.168.2.4 | 1.1.1.1 | 0x8d88 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 25, 2024 17:04:11.830327988 CEST | 192.168.2.4 | 1.1.1.1 | 0xd61a | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 25, 2024 17:04:11.830648899 CEST | 192.168.2.4 | 1.1.1.1 | 0x85b | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 25, 2024 17:04:12.178632021 CEST | 192.168.2.4 | 1.1.1.1 | 0x11dd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 25, 2024 17:04:12.179192066 CEST | 192.168.2.4 | 1.1.1.1 | 0xcb3e | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 25, 2024 17:04:10.209367990 CEST | 1.1.1.1 | 192.168.2.4 | 0x8d88 | No error (0) | can56.sfdc-58ktaz.salesforce.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:10.218290091 CEST | 1.1.1.1 | 192.168.2.4 | 0x3b7c | No error (0) | can56.sfdc-58ktaz.salesforce.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:10.218290091 CEST | 1.1.1.1 | 192.168.2.4 | 0x3b7c | No error (0) | 3.96.182.255 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:10.218290091 CEST | 1.1.1.1 | 192.168.2.4 | 0x3b7c | No error (0) | 15.156.128.250 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:10.218290091 CEST | 1.1.1.1 | 192.168.2.4 | 0x3b7c | No error (0) | 52.60.165.90 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:11.944456100 CEST | 1.1.1.1 | 192.168.2.4 | 0xd61a | No error (0) | can56.sfdc-58ktaz.salesforce.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:11.944456100 CEST | 1.1.1.1 | 192.168.2.4 | 0xd61a | No error (0) | 3.96.182.255 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:11.944456100 CEST | 1.1.1.1 | 192.168.2.4 | 0xd61a | No error (0) | 15.156.128.250 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:11.944456100 CEST | 1.1.1.1 | 192.168.2.4 | 0xd61a | No error (0) | 52.60.165.90 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:11.959548950 CEST | 1.1.1.1 | 192.168.2.4 | 0x85b | No error (0) | can56.sfdc-58ktaz.salesforce.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:12.289536953 CEST | 1.1.1.1 | 192.168.2.4 | 0x11dd | No error (0) | 172.217.215.103 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:12.289536953 CEST | 1.1.1.1 | 192.168.2.4 | 0x11dd | No error (0) | 172.217.215.105 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:12.289536953 CEST | 1.1.1.1 | 192.168.2.4 | 0x11dd | No error (0) | 172.217.215.147 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:12.289536953 CEST | 1.1.1.1 | 192.168.2.4 | 0x11dd | No error (0) | 172.217.215.104 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:12.289536953 CEST | 1.1.1.1 | 192.168.2.4 | 0x11dd | No error (0) | 172.217.215.99 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:12.289536953 CEST | 1.1.1.1 | 192.168.2.4 | 0x11dd | No error (0) | 172.217.215.106 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:12.291445017 CEST | 1.1.1.1 | 192.168.2.4 | 0xcb3e | No error (0) | 65 | IN (0x0001) | false | |||
Apr 25, 2024 17:04:22.689400911 CEST | 1.1.1.1 | 192.168.2.4 | 0x8211 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:22.689400911 CEST | 1.1.1.1 | 192.168.2.4 | 0x8211 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:35.719362020 CEST | 1.1.1.1 | 192.168.2.4 | 0x629c | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:35.719362020 CEST | 1.1.1.1 | 192.168.2.4 | 0x629c | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:59.965085983 CEST | 1.1.1.1 | 192.168.2.4 | 0xea63 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 25, 2024 17:04:59.965085983 CEST | 1.1.1.1 | 192.168.2.4 | 0xea63 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 25, 2024 17:05:20.964834929 CEST | 1.1.1.1 | 192.168.2.4 | 0x7500 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 25, 2024 17:05:20.964834929 CEST | 1.1.1.1 | 192.168.2.4 | 0x7500 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49736 | 3.96.182.255 | 443 | 3652 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:10 UTC | 1019 | OUT | |
2024-04-25 15:04:10 UTC | 1291 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49735 | 3.96.182.255 | 443 | 3652 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:10 UTC | 883 | OUT | |
2024-04-25 15:04:11 UTC | 705 | IN | |
2024-04-25 15:04:11 UTC | 2211 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49738 | 3.96.182.255 | 443 | 3652 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:11 UTC | 784 | OUT | |
2024-04-25 15:04:11 UTC | 694 | IN | |
2024-04-25 15:04:11 UTC | 15690 | IN | |
2024-04-25 15:04:11 UTC | 37 | IN | |
2024-04-25 15:04:11 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49739 | 3.96.182.255 | 443 | 3652 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:11 UTC | 825 | OUT | |
2024-04-25 15:04:11 UTC | 699 | IN | |
2024-04-25 15:04:11 UTC | 6704 | IN | |
2024-04-25 15:04:11 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49741 | 3.96.182.255 | 443 | 3652 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:12 UTC | 502 | OUT | |
2024-04-25 15:04:12 UTC | 699 | IN | |
2024-04-25 15:04:12 UTC | 6704 | IN | |
2024-04-25 15:04:12 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49743 | 3.96.182.255 | 443 | 3652 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:12 UTC | 793 | OUT | |
2024-04-25 15:04:12 UTC | 673 | IN | |
2024-04-25 15:04:12 UTC | 15711 | IN | |
2024-04-25 15:04:12 UTC | 11882 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49742 | 3.96.182.255 | 443 | 3652 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:12 UTC | 791 | OUT | |
2024-04-25 15:04:12 UTC | 673 | IN | |
2024-04-25 15:04:12 UTC | 15711 | IN | |
2024-04-25 15:04:12 UTC | 12033 | IN | |
2024-04-25 15:04:12 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49745 | 3.96.182.255 | 443 | 3652 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:13 UTC | 821 | OUT | |
2024-04-25 15:04:13 UTC | 606 | IN | |
2024-04-25 15:04:13 UTC | 5438 | IN | |
2024-04-25 15:04:13 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49746 | 23.201.212.130 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:15 UTC | 161 | OUT | |
2024-04-25 15:04:15 UTC | 467 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.4 | 49747 | 3.96.182.255 | 443 | 3652 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:15 UTC | 498 | OUT | |
2024-04-25 15:04:15 UTC | 606 | IN | |
2024-04-25 15:04:15 UTC | 5438 | IN | |
2024-04-25 15:04:15 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.4 | 49748 | 23.201.212.130 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 15:04:15 UTC | 239 | OUT | |
2024-04-25 15:04:15 UTC | 531 | IN | |
2024-04-25 15:04:15 UTC | 55 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 17:04:02 |
Start date: | 25/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 17:04:06 |
Start date: | 25/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 17:04:09 |
Start date: | 25/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |