Windows
Analysis Report
https://flicker-candle-sunspot.glitch.me/wond276816auing.html
Overview
General Information
Detection
Score: | 60 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 3340 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 5352 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =1860 --fi eld-trial- handle=200 8,i,789349 9121769613 146,138609 6339918013 274,262144 --disable -features= Optimizati onGuideMod elDownload ing,Optimi zationHint s,Optimiza tionHintsF etching,Op timization TargetPred iction /pr efetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6492 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://flick er-candle- sunspot.gl itch.me/wo nd276816au ing.html" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: | ||
Source: | SlashNext: |
Phishing |
---|
Source: | Matcher: |
Source: | Matcher: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Obfuscated Files or Information | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing | ||
100% | SlashNext | Credential Stealing type: Phishing & Social Engineering |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
cs1100.wpc.omegacdn.net | 152.199.4.44 | true | false | unknown | |
www.google.com | 142.250.64.196 | true | false | high | |
upload.wikimedia.org | 208.80.154.240 | true | false | high | |
flicker-candle-sunspot.glitch.me | 44.214.198.122 | true | false | high | |
fp2e7a.wpc.phicdn.net | 192.229.211.108 | true | false | unknown | |
aadcdn.msftauth.net | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false |
| unknown | |
false | high |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false |
| unknown | ||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
44.214.198.122 | flicker-candle-sunspot.glitch.me | United States | 14618 | AMAZON-AESUS | false | |
18.235.65.101 | unknown | United States | 14618 | AMAZON-AESUS | false | |
152.199.4.44 | cs1100.wpc.omegacdn.net | United States | 15133 | EDGECASTUS | false | |
208.80.154.240 | upload.wikimedia.org | United States | 14907 | WIKIMEDIAUS | false | |
142.250.64.196 | www.google.com | United States | 15169 | GOOGLEUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false |
IP |
---|
192.168.2.4 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1431917 |
Start date and time: | 2024-04-26 00:56:17 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 17s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://flicker-candle-sunspot.glitch.me/wond276816auing.html |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 8 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal60.phis.win@16/11@14/7 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 192.178.50.35, 173.194.217.84, 142.250.189.142, 34.104.35.123, 142.250.217.170, 172.217.15.202, 192.178.50.74, 142.250.217.234, 172.217.3.74, 142.251.35.234, 142.250.64.202, 172.217.165.202, 142.250.217.202, 192.178.50.42, 142.250.64.234, 142.250.64.170, 142.250.64.138, 142.250.189.138, 172.217.2.202, 20.12.23.50, 72.21.81.240, 192.229.211.108, 20.242.39.171, 52.165.164.15, 40.68.123.157, 192.178.50.67, 20.114.59.183
- Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, slscr.update.microsoft.com, wu.ec.azureedge.net, clientservices.googleapis.com, ctldl.windowsupdate.com, wu-bg-shim.trafficmanager.net, wu.azureedge.net, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, ocsp.digicert.com, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, clients.l.google.com, glb.sls.prod.dcat.dsp.trafficmanager.net
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
- VT rate limit hit for: https://flicker-candle-sunspot.glitch.me/wond276816auing.html
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3651 |
Entropy (8bit): | 4.094801914706141 |
Encrypted: | false |
SSDEEP: | 96:wO4DZ+Stb/jY+eo4hAryAes9mBYYQgWLDm9:wToSBjlevudl9nO |
MD5: | EE5C8D9FB6248C938FD0DC19370E90BD |
SHA1: | D01A22720918B781338B5BBF9202B241A5F99EE4 |
SHA-256: | 04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A |
SHA-512: | C77215B729D0E60C97F075998E88775CD0F813B4D094DC2FDD13E5711D16F4E5993D4521D0FBD5BF7150B0DBE253D88B1B1FF60901F053113C5D7C1919852D58 |
Malicious: | false |
Reputation: | low |
URL: | https://aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 4274 |
Entropy (8bit): | 5.275670925084233 |
Encrypted: | false |
SSDEEP: | 96:HoE24Qee5KSlvgOa9jk4L06gBSGLhoOl85TtuCtV+/C/w9L8gttXQvViEsuU:nHSlvBa55jEdoO0Ttvt4/C/w9L8gttXd |
MD5: | F6EDD152435965F96A6AE58C10E618E9 |
SHA1: | F50C2CE7E6C66389A7EFD6CC5C7982558EFF4944 |
SHA-256: | 66458E66ED6D9481CCC6B87556F5E1DB3830ADDE85B741C431AAC8807196B509 |
SHA-512: | EB67C288F81603424E22CD431BB33AF8E90D574C35E77F2DC9906E18FA1CF58CB48312BF0F949212179BD307B6F4E71C4CD1D4E2D93C4E3432C7449BC3B9514C |
Malicious: | false |
Reputation: | low |
URL: | https://flicker-candle-sunspot.glitch.me/wond276816auing.html |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 3651 |
Entropy (8bit): | 4.094801914706141 |
Encrypted: | false |
SSDEEP: | 96:wO4DZ+Stb/jY+eo4hAryAes9mBYYQgWLDm9:wToSBjlevudl9nO |
MD5: | EE5C8D9FB6248C938FD0DC19370E90BD |
SHA1: | D01A22720918B781338B5BBF9202B241A5F99EE4 |
SHA-256: | 04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A |
SHA-512: | C77215B729D0E60C97F075998E88775CD0F813B4D094DC2FDD13E5711D16F4E5993D4521D0FBD5BF7150B0DBE253D88B1B1FF60901F053113C5D7C1919852D58 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4274 |
Entropy (8bit): | 5.275670925084233 |
Encrypted: | false |
SSDEEP: | 96:HoE24Qee5KSlvgOa9jk4L06gBSGLhoOl85TtuCtV+/C/w9L8gttXQvViEsuU:nHSlvBa55jEdoO0Ttvt4/C/w9L8gttXd |
MD5: | F6EDD152435965F96A6AE58C10E618E9 |
SHA1: | F50C2CE7E6C66389A7EFD6CC5C7982558EFF4944 |
SHA-256: | 66458E66ED6D9481CCC6B87556F5E1DB3830ADDE85B741C431AAC8807196B509 |
SHA-512: | EB67C288F81603424E22CD431BB33AF8E90D574C35E77F2DC9906E18FA1CF58CB48312BF0F949212179BD307B6F4E71C4CD1D4E2D93C4E3432C7449BC3B9514C |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 100727 |
Entropy (8bit): | 7.576212282061622 |
Encrypted: | false |
SSDEEP: | 3072:oqZjsdMCBhLZXM8rueU6o8Amk93VdDaly:bjsdMCBI8rueXMtDaE |
MD5: | 39F9670257CF2C47B21177E26205540A |
SHA1: | 3F961150D0BC99CC951F50509AE53C282EFE28B1 |
SHA-256: | 0CC3FED62E8B1F2D7C8F2A6937957914C8E8ABFA355F57906053E3D274D238B7 |
SHA-512: | A35CE2F31E2A21790F0EA8090DF784310FD7A5666C3D91AD767223E208F7C3AAEBFE6C3041F2E95A8885613E66A956F83262DCDDAC361F50EB1D61FCFB4D8B6F |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 28 |
Entropy (8bit): | 4.208966082694623 |
Encrypted: | false |
SSDEEP: | 3:G4iCw:ziCw |
MD5: | FE567926364F1F70610B746A64DE9165 |
SHA1: | A11A5E6E799B094612BBBEB4ABF31707F5080C33 |
SHA-256: | 07DCC4C01BD13CC989FEC4730DCB6DEEE43A9C7895DFCCFD5113EAD8B1BFB1F7 |
SHA-512: | 94A588BC0A2500D2B7A53671C00A383A7A2030F593E910E7B96FB4768C28F649CEE4E9263D5EF388706D82F9EF344B337D416A4CBEAC78217A5EC86E21AB2D7E |
Malicious: | false |
Reputation: | low |
URL: | https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISFwlA2ZezmGQrdBIFDVNVgbUSBQ3OQUx6?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 100727 |
Entropy (8bit): | 7.576212282061622 |
Encrypted: | false |
SSDEEP: | 3072:oqZjsdMCBhLZXM8rueU6o8Amk93VdDaly:bjsdMCBI8rueXMtDaE |
MD5: | 39F9670257CF2C47B21177E26205540A |
SHA1: | 3F961150D0BC99CC951F50509AE53C282EFE28B1 |
SHA-256: | 0CC3FED62E8B1F2D7C8F2A6937957914C8E8ABFA355F57906053E3D274D238B7 |
SHA-512: | A35CE2F31E2A21790F0EA8090DF784310FD7A5666C3D91AD767223E208F7C3AAEBFE6C3041F2E95A8885613E66A956F83262DCDDAC361F50EB1D61FCFB4D8B6F |
Malicious: | false |
Reputation: | low |
URL: | https://upload.wikimedia.org/wikipedia/commons/thumb/3/34/Microsoft_Office_Excel_%282019%E2%80%93present%29.svg/2203px-Microsoft_Office_Excel_%282019%E2%80%93present%29.svg.png |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 00:56:59.765275002 CEST | 49678 | 443 | 192.168.2.4 | 104.46.162.224 |
Apr 26, 2024 00:57:00.765276909 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 00:57:09.420609951 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.420645952 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.420722008 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.423175097 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.423263073 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.423341036 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.423670053 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.423718929 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.423815966 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.423830032 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.897778988 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.898098946 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.898114920 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.899540901 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.899630070 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.900798082 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.900878906 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.901030064 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.901037931 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.910865068 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.911130905 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.911170006 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.912857056 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.912940025 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.913908005 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.913997889 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:09.950846910 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.957042933 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:09.957053900 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:10.000283957 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:10.108901978 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:10.108922958 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:10.109077930 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:10.109077930 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:10.109137058 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:10.110162973 CEST | 49735 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:10.110181093 CEST | 443 | 49735 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:10.131194115 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:10.176129103 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:10.253711939 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.253740072 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.253809929 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.254117966 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.254129887 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.316577911 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:10.316768885 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:10.316836119 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:10.321001053 CEST | 49736 | 443 | 192.168.2.4 | 44.214.198.122 |
Apr 26, 2024 00:57:10.321022034 CEST | 443 | 49736 | 44.214.198.122 | 192.168.2.4 |
Apr 26, 2024 00:57:10.374180079 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 00:57:10.476820946 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:10.476855040 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:10.476938963 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:10.477406979 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:10.477423906 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:10.640434027 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.666116953 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.666135073 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.667664051 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.667753935 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.670114994 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.670200109 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.670619011 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.670625925 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.716828108 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.886230946 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.886297941 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.886358023 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.886362076 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.886410952 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.889849901 CEST | 49739 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:10.889863968 CEST | 443 | 49739 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:10.940426111 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:10.985677958 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:10.994880915 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:10.994899035 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:10.995789051 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:10.995870113 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:11.005474091 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:11.005534887 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:11.005692959 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:11.005703926 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:11.047033072 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:11.141711950 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.141740084 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.141797066 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.142448902 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.142461061 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.148303032 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.148308992 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.148375034 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.148914099 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.148922920 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.202044010 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:11.202071905 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:11.202122927 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:11.202138901 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:11.202152014 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:11.202179909 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:11.202193022 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:11.203780890 CEST | 49741 | 443 | 192.168.2.4 | 18.235.65.101 |
Apr 26, 2024 00:57:11.203794003 CEST | 443 | 49741 | 18.235.65.101 | 192.168.2.4 |
Apr 26, 2024 00:57:11.475399971 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.475929976 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.475939989 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.476813078 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.476875067 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.476881027 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.476921082 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.478614092 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.478665113 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.478979111 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.478984118 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.519519091 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.528484106 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.546175003 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.546185017 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.547611952 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.547672033 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.548394918 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.548573971 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.548609972 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.592155933 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.592168093 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.592181921 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.654720068 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.780025959 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.780220985 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.780294895 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.780303955 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.780352116 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.780432940 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.780543089 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.782994032 CEST | 49743 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 00:57:11.783000946 CEST | 443 | 49743 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 00:57:11.832591057 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.832628012 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.832655907 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.832667112 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.832680941 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.832684994 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.832696915 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:11.832730055 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:11.832748890 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.001650095 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.001668930 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.001741886 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.001749992 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.001810074 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.077157021 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.077171087 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.077249050 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.077255011 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.077296019 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.135849953 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.135863066 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.135927916 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.135932922 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.135974884 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.177609921 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:12.177686930 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:57:12.177992105 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:12.178248882 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:12.178282976 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:57:12.181005001 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.181021929 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.181096077 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.181114912 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.181173086 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.222822905 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.222870111 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.222943068 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.222949982 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.222985029 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.223002911 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.236704111 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.236764908 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.236764908 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.236809015 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.314526081 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:12.314640999 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:12.314735889 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:12.323771000 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:12.323807955 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:12.472093105 CEST | 49742 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:12.472106934 CEST | 443 | 49742 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:12.515661955 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:57:12.560983896 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:12.566099882 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:12.566128016 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:57:12.569922924 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:57:12.569996119 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:12.578052044 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:12.578458071 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:57:12.583204031 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:12.583272934 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:12.623475075 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:12.623498917 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:57:12.670361042 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:12.883255959 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:12.883306980 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:12.883526087 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:12.935772896 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.471101046 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.512150049 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.596959114 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.597033024 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.597103119 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.597176075 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.597214937 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.597240925 CEST | 49745 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.597254992 CEST | 443 | 49745 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.643446922 CEST | 49746 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.643481970 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.643615961 CEST | 49746 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.644046068 CEST | 49746 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.644061089 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.898174047 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.898253918 CEST | 49746 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.904582977 CEST | 49746 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.904603958 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.904784918 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:13.907143116 CEST | 49746 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:13.937907934 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:13.937973022 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:13.938045979 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:13.938462973 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:13.938494921 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:13.952111959 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:14.158418894 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:14.158593893 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:14.163331032 CEST | 49746 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:14.229806900 CEST | 49746 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:14.229830980 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:14.229859114 CEST | 49746 | 443 | 192.168.2.4 | 23.202.106.101 |
Apr 26, 2024 00:57:14.229865074 CEST | 443 | 49746 | 23.202.106.101 | 192.168.2.4 |
Apr 26, 2024 00:57:14.274430037 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.281102896 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.281130075 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.282583952 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.282640934 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.282649040 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.282696962 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.284672022 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.284744024 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.285758018 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.285764933 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.333621025 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.637852907 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.637886047 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.637897968 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.637943983 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.637953043 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.638000011 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.638032913 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.638046026 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.638058901 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.638058901 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.638075113 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.677359104 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.807699919 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.807718039 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.807763100 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.807813883 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.807831049 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.807897091 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.807955980 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.808304071 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.884107113 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.884130955 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.884291887 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.884313107 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.884501934 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.941432953 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.941462040 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.941553116 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.941553116 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.941570997 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.941854000 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.986927986 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.986948967 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.987096071 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:14.987112999 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:14.987353086 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:15.028971910 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:15.028992891 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:15.029086113 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:15.029086113 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:15.029125929 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:15.029620886 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:15.042979956 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:15.043055058 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:15.043056965 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:15.043200016 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:15.043828011 CEST | 49747 | 443 | 192.168.2.4 | 208.80.154.240 |
Apr 26, 2024 00:57:15.043858051 CEST | 443 | 49747 | 208.80.154.240 | 192.168.2.4 |
Apr 26, 2024 00:57:22.497010946 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:57:22.497178078 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:57:22.497241020 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:23.846412897 CEST | 49744 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:57:23.846452951 CEST | 443 | 49744 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:58:11.713562965 CEST | 49756 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:58:11.713589907 CEST | 443 | 49756 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:58:11.713711977 CEST | 49756 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:58:11.713999987 CEST | 49756 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:58:11.714010000 CEST | 443 | 49756 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:58:12.040616035 CEST | 443 | 49756 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:58:12.040872097 CEST | 49756 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:58:12.040880919 CEST | 443 | 49756 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:58:12.041352987 CEST | 443 | 49756 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:58:12.041666985 CEST | 49756 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:58:12.041743040 CEST | 443 | 49756 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:58:12.086910009 CEST | 49756 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:58:18.717439890 CEST | 49723 | 80 | 192.168.2.4 | 23.45.182.104 |
Apr 26, 2024 00:58:18.717540026 CEST | 49724 | 80 | 192.168.2.4 | 23.45.182.100 |
Apr 26, 2024 00:58:18.842674971 CEST | 80 | 49723 | 23.45.182.104 | 192.168.2.4 |
Apr 26, 2024 00:58:18.843622923 CEST | 49723 | 80 | 192.168.2.4 | 23.45.182.104 |
Apr 26, 2024 00:58:18.844821930 CEST | 80 | 49724 | 23.45.182.100 | 192.168.2.4 |
Apr 26, 2024 00:58:18.844892025 CEST | 49724 | 80 | 192.168.2.4 | 23.45.182.100 |
Apr 26, 2024 00:58:22.025788069 CEST | 443 | 49756 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:58:22.025857925 CEST | 443 | 49756 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 00:58:22.025916100 CEST | 49756 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:58:24.115096092 CEST | 49756 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 00:58:24.115117073 CEST | 443 | 49756 | 142.250.64.196 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 00:57:07.662836075 CEST | 53 | 54187 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:07.794928074 CEST | 53 | 62739 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:08.756953001 CEST | 53 | 52335 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:09.280296087 CEST | 54467 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:09.280474901 CEST | 61587 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:09.407727957 CEST | 53 | 61587 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:09.419897079 CEST | 53 | 54467 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:10.126756907 CEST | 50331 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:10.128079891 CEST | 53327 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:10.252666950 CEST | 53 | 50331 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:10.253217936 CEST | 53 | 53327 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:10.316555977 CEST | 53 | 54857 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:10.334952116 CEST | 55037 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:10.335199118 CEST | 49613 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:10.464118004 CEST | 53 | 55037 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:10.476125956 CEST | 53 | 49613 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:11.014082909 CEST | 50917 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:11.014617920 CEST | 64024 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:11.021842003 CEST | 51352 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:11.022236109 CEST | 64935 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:11.139280081 CEST | 53 | 64024 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:11.140571117 CEST | 53 | 50917 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:11.146471977 CEST | 53 | 51352 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:11.147330999 CEST | 53 | 64935 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:11.653775930 CEST | 58280 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:11.654175997 CEST | 60483 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:11.779169083 CEST | 53 | 58280 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:11.780352116 CEST | 53 | 60483 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:13.810533047 CEST | 57838 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:13.811273098 CEST | 54850 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 00:57:13.936187983 CEST | 53 | 54850 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:13.936616898 CEST | 53 | 57838 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:26.454042912 CEST | 53 | 61284 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:57:30.303144932 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Apr 26, 2024 00:57:45.344235897 CEST | 53 | 61931 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:58:07.399862051 CEST | 53 | 54015 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 00:58:08.188482046 CEST | 53 | 49310 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 26, 2024 00:57:09.280296087 CEST | 192.168.2.4 | 1.1.1.1 | 0xe843 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 00:57:09.280474901 CEST | 192.168.2.4 | 1.1.1.1 | 0x8217 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 00:57:10.126756907 CEST | 192.168.2.4 | 1.1.1.1 | 0xb393 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 00:57:10.128079891 CEST | 192.168.2.4 | 1.1.1.1 | 0xf267 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 00:57:10.334952116 CEST | 192.168.2.4 | 1.1.1.1 | 0x51c9 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 00:57:10.335199118 CEST | 192.168.2.4 | 1.1.1.1 | 0xa55b | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 00:57:11.014082909 CEST | 192.168.2.4 | 1.1.1.1 | 0x96ff | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 00:57:11.014617920 CEST | 192.168.2.4 | 1.1.1.1 | 0x66ce | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 00:57:11.021842003 CEST | 192.168.2.4 | 1.1.1.1 | 0x90a1 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 00:57:11.022236109 CEST | 192.168.2.4 | 1.1.1.1 | 0x797c | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 00:57:11.653775930 CEST | 192.168.2.4 | 1.1.1.1 | 0x680c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 00:57:11.654175997 CEST | 192.168.2.4 | 1.1.1.1 | 0xbaad | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 00:57:13.810533047 CEST | 192.168.2.4 | 1.1.1.1 | 0x8339 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 00:57:13.811273098 CEST | 192.168.2.4 | 1.1.1.1 | 0xe7a6 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 26, 2024 00:57:09.419897079 CEST | 1.1.1.1 | 192.168.2.4 | 0xe843 | No error (0) | 44.214.198.122 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:09.419897079 CEST | 1.1.1.1 | 192.168.2.4 | 0xe843 | No error (0) | 18.235.65.101 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:10.252666950 CEST | 1.1.1.1 | 192.168.2.4 | 0xb393 | No error (0) | cs1100.wpc.omegacdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:10.252666950 CEST | 1.1.1.1 | 192.168.2.4 | 0xb393 | No error (0) | 152.199.4.44 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:10.253217936 CEST | 1.1.1.1 | 192.168.2.4 | 0xf267 | No error (0) | cs1100.wpc.omegacdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:10.464118004 CEST | 1.1.1.1 | 192.168.2.4 | 0x51c9 | No error (0) | 18.235.65.101 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:10.464118004 CEST | 1.1.1.1 | 192.168.2.4 | 0x51c9 | No error (0) | 44.214.198.122 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:11.140571117 CEST | 1.1.1.1 | 192.168.2.4 | 0x96ff | No error (0) | 208.80.154.240 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:11.146471977 CEST | 1.1.1.1 | 192.168.2.4 | 0x90a1 | No error (0) | cs1100.wpc.omegacdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:11.146471977 CEST | 1.1.1.1 | 192.168.2.4 | 0x90a1 | No error (0) | 152.199.4.44 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:11.147330999 CEST | 1.1.1.1 | 192.168.2.4 | 0x797c | No error (0) | cs1100.wpc.omegacdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:11.779169083 CEST | 1.1.1.1 | 192.168.2.4 | 0x680c | No error (0) | 142.250.64.196 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:11.780352116 CEST | 1.1.1.1 | 192.168.2.4 | 0xbaad | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 00:57:13.936616898 CEST | 1.1.1.1 | 192.168.2.4 | 0x8339 | No error (0) | 208.80.154.240 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:24.118257046 CEST | 1.1.1.1 | 192.168.2.4 | 0x55b2 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:24.118257046 CEST | 1.1.1.1 | 192.168.2.4 | 0x55b2 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:37.141359091 CEST | 1.1.1.1 | 192.168.2.4 | 0x7971 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 00:57:37.141359091 CEST | 1.1.1.1 | 192.168.2.4 | 0x7971 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 00:58:00.464581013 CEST | 1.1.1.1 | 192.168.2.4 | 0x22c3 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 00:58:00.464581013 CEST | 1.1.1.1 | 192.168.2.4 | 0x22c3 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49735 | 44.214.198.122 | 443 | 5352 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 22:57:09 UTC | 695 | OUT | |
2024-04-25 22:57:10 UTC | 518 | IN | |
2024-04-25 22:57:10 UTC | 4274 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49736 | 44.214.198.122 | 443 | 5352 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 22:57:10 UTC | 750 | OUT | |
2024-04-25 22:57:10 UTC | 394 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49739 | 152.199.4.44 | 443 | 5352 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 22:57:10 UTC | 672 | OUT | |
2024-04-25 22:57:10 UTC | 737 | IN | |
2024-04-25 22:57:10 UTC | 3651 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49741 | 18.235.65.101 | 443 | 5352 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 22:57:11 UTC | 376 | OUT | |
2024-04-25 22:57:11 UTC | 506 | IN | |
2024-04-25 22:57:11 UTC | 4274 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49742 | 208.80.154.240 | 443 | 5352 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 22:57:11 UTC | 743 | OUT | |
2024-04-25 22:57:11 UTC | 1101 | IN | |
2024-04-25 22:57:11 UTC | 13795 | IN | |
2024-04-25 22:57:11 UTC | 16320 | IN | |
2024-04-25 22:57:12 UTC | 16320 | IN | |
2024-04-25 22:57:12 UTC | 16320 | IN | |
2024-04-25 22:57:12 UTC | 16320 | IN | |
2024-04-25 22:57:12 UTC | 16320 | IN | |
2024-04-25 22:57:12 UTC | 5332 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49743 | 152.199.4.44 | 443 | 5352 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 22:57:11 UTC | 420 | OUT | |
2024-04-25 22:57:11 UTC | 737 | IN | |
2024-04-25 22:57:11 UTC | 3651 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49745 | 23.202.106.101 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 22:57:13 UTC | 161 | OUT | |
2024-04-25 22:57:13 UTC | 467 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49746 | 23.202.106.101 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 22:57:13 UTC | 239 | OUT | |
2024-04-25 22:57:14 UTC | 487 | IN | |
2024-04-25 22:57:14 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49747 | 208.80.154.240 | 443 | 5352 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-25 22:57:14 UTC | 491 | OUT | |
2024-04-25 22:57:14 UTC | 1101 | IN | |
2024-04-25 22:57:14 UTC | 13795 | IN | |
2024-04-25 22:57:14 UTC | 16320 | IN | |
2024-04-25 22:57:14 UTC | 16320 | IN | |
2024-04-25 22:57:14 UTC | 16320 | IN | |
2024-04-25 22:57:14 UTC | 16320 | IN | |
2024-04-25 22:57:15 UTC | 16320 | IN | |
2024-04-25 22:57:15 UTC | 5332 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 00:57:03 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 1 |
Start time: | 00:57:06 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 00:57:08 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |