Edit tour
Linux
Analysis Report
TCke75ESG2.elf
Overview
General Information
Sample name: | TCke75ESG2.elfrenamed because original name is a hash value |
Original sample name: | c3bf39b658fd262fdf2fb5eef4e904e8.elf |
Analysis ID: | 1431929 |
MD5: | c3bf39b658fd262fdf2fb5eef4e904e8 |
SHA1: | b11b96447bf98aae19a4729568c7743ff5e09c9f |
SHA256: | 509d90b598a685633784f2380e066966e381b0f85f5791ea0f83e9801e6b51ca |
Tags: | 32elfmipsmirai |
Infos: | |
Detection
Gafgyt
Score: | 76 |
Range: | 0 - 100 |
Whitelisted: | false |
Signatures
Multi AV Scanner detection for submitted file
Yara detected Gafgyt
Deletes system log files
Manipulation of devices in /dev
Sample reads /proc/mounts (often used for finding a writable filesystem)
Sample tries to kill multiple processes (SIGKILL)
Sends malformed DNS queries
Creates hidden files and/or directories
Detected TCP or UDP traffic on non-standard ports
Sample has stripped symbol table
Sample listens on a socket
Sample tries to kill a process (SIGKILL)
Tries to connect to HTTP servers, but all servers are down (expired dropper behavior)
Uses the "uname" system call to query kernel version information (possible evasion)
Classification
Analysis Advice
Static ELF header machine description suggests that the sample might not execute correctly on this machine. |
All HTTP servers contacted by the sample do not answer. The sample is likely an old dropper which does no longer work. |
Static ELF header machine description suggests that the sample might only run correctly on MIPS or ARM architectures. |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1431929 |
Start date and time: | 2024-04-26 01:45:04 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 4m 41s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultlinuxfilecookbook.jbs |
Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
Analysis Mode: | default |
Sample name: | TCke75ESG2.elfrenamed because original name is a hash value |
Original Sample Name: | c3bf39b658fd262fdf2fb5eef4e904e8.elf |
Detection: | MAL |
Classification: | mal76.spre.troj.evad.linELF@0/1@67/0 |
- VT rate limit hit for: TCke75ESG2.elf
Command: | /tmp/TCke75ESG2.elf |
PID: | 6220 |
Exit Code: | 0 |
Exit Code Info: | |
Killed: | False |
Standard Output: | guess what. you're retarded |
Standard Error: |
- system is lnxubuntu20
- TCke75ESG2.elf New Fork (PID: 6222, Parent: 6220)
- TCke75ESG2.elf New Fork (PID: 6224, Parent: 6222)
- TCke75ESG2.elf New Fork (PID: 6225, Parent: 6222)
- TCke75ESG2.elf New Fork (PID: 6228, Parent: 6222)
- gnome-session-binary New Fork (PID: 6257, Parent: 1477)
- gnome-session-binary New Fork (PID: 6259, Parent: 1477)
- systemd New Fork (PID: 6261, Parent: 1)
- gnome-session-binary New Fork (PID: 6301, Parent: 1477)
- gnome-session-binary New Fork (PID: 6302, Parent: 1477)
- gnome-session-binary New Fork (PID: 6305, Parent: 1477)
- gnome-session-binary New Fork (PID: 6306, Parent: 1477)
- gnome-session-binary New Fork (PID: 6307, Parent: 1477)
- gnome-session-binary New Fork (PID: 6308, Parent: 1477)
- gvfsd-fuse New Fork (PID: 6309, Parent: 2038)
- gnome-session-binary New Fork (PID: 6310, Parent: 1477)
- gnome-session-binary New Fork (PID: 6311, Parent: 1477)
- gnome-session-binary New Fork (PID: 6312, Parent: 1477)
- gnome-session-binary New Fork (PID: 6313, Parent: 1477)
- xfce4-panel New Fork (PID: 6316, Parent: 2063)
- gnome-session-binary New Fork (PID: 6333, Parent: 1477)
- xfce4-panel New Fork (PID: 6334, Parent: 2063)
- gnome-session-binary New Fork (PID: 6335, Parent: 1477)
- xfce4-panel New Fork (PID: 6338, Parent: 2063)
- xfce4-panel New Fork (PID: 6341, Parent: 2063)
- xfce4-panel New Fork (PID: 6342, Parent: 2063)
- xfce4-panel New Fork (PID: 6343, Parent: 2063)
- dbus-daemon New Fork (PID: 6375, Parent: 6374)
- gdm3 New Fork (PID: 6376, Parent: 1320)
- systemd New Fork (PID: 6399, Parent: 1)
- gdm3 New Fork (PID: 6437, Parent: 1320)
- dbus-daemon New Fork (PID: 6439, Parent: 6438)
- dbus-daemon New Fork (PID: 6447, Parent: 6446)
- systemd New Fork (PID: 6448, Parent: 1)
- dbus-daemon New Fork (PID: 6451, Parent: 6450)
- dbus-daemon New Fork (PID: 6491, Parent: 6490)
- dbus-daemon New Fork (PID: 6493, Parent: 6492)
- systemd New Fork (PID: 6494, Parent: 1)
- dbus-daemon New Fork (PID: 6515, Parent: 6514)
- dbus-daemon New Fork (PID: 6539, Parent: 6538)
- dbus-daemon New Fork (PID: 6541, Parent: 6540)
- systemd New Fork (PID: 6542, Parent: 1)
- dbus-daemon New Fork (PID: 6545, Parent: 6544)
- dbus-daemon New Fork (PID: 6578, Parent: 6577)
- dbus-daemon New Fork (PID: 6587, Parent: 6586)
- cleanup
Name | Description | Attribution | Blogpost URLs | Link |
---|---|---|---|---|
Bashlite, Gafgyt | Bashlite is a malware family which infects Linux systems in order to launch distributed denial-of-service attacks (DDoS). Originally it was also known under the name Bashdoor, but this term now refers to the exploit method used by the malware. It has been used to launch attacks of up to 400 Gbps. | No Attribution |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Gafgyt | Yara detected Gafgyt | Joe Security |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Gafgyt | Yara detected Gafgyt | Joe Security | ||
JoeSecurity_Gafgyt | Yara detected Gafgyt | Joe Security |
⊘No Snort rule has matched
Click to jump to signature section
Show All Signature Results
AV Detection |
---|
Source: | ReversingLabs: |
Networking |
---|
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | TCP traffic: |
Source: | Socket: | Jump to behavior |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
System Summary |
---|
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior |
Source: | .symtab present: |
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior | ||
Source: | SIGKILL sent: | Jump to behavior |
Source: | Classification label: |
Data Obfuscation |
---|
Source: | Deleted: | Jump to behavior |
Persistence and Installation Behavior |
---|
Source: | File: | Jump to behavior |
Source: | Directory: | Jump to behavior | ||
Source: | Directory: | Jump to behavior | ||
Source: | Directory: | Jump to behavior | ||
Source: | Directory: | Jump to behavior |
Hooking and other Techniques for Hiding and Protection |
---|
Source: | Log files deleted: | Jump to behavior | ||
Source: | Log files deleted: | Jump to behavior | ||
Source: | Log files deleted: | Jump to behavior | ||
Source: | Log files deleted: | Jump to behavior |
Source: | Queries kernel information via 'uname': | Jump to behavior |
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: |
Stealing of Sensitive Information |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Remote Access Functionality |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | Path Interception | 1 Hidden Files and Directories | OS Credential Dumping | 11 Security Software Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | 1 Service Stop |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Indicator Removal | LSASS Memory | 1 File and Directory Discovery | Remote Desktop Protocol | Data from Removable Media | 1 Non-Standard Port | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 1 Non-Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 2 Application Layer Protocol | Traffic Duplication | Data Destruction |
⊘No configs have been found
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
42% | ReversingLabs | Linux.Trojan.Mirai |
⊘No Antivirus matches
⊘No Antivirus matches
⊘No Antivirus matches
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
retardedclassmate.dyn | 31.220.1.44 | true | true | unknown | |
retardedclassmate.dyn. [malformed] | unknown | unknown | true | unknown | |
servernoworky.geek. [malformed] | unknown | unknown | true | unknown | |
whitepeopleonly.dyn. [malformed] | unknown | unknown | true | unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
91.92.254.116 | unknown | Bulgaria | 34368 | THEZONEBG | false | |
109.202.202.202 | unknown | Switzerland | 13030 | INIT7CH | false | |
91.189.91.43 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false | |
91.189.91.42 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
109.202.202.202 | Get hash | malicious | Mirai, Okiru | Browse | ||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Gafgyt, Mirai | Browse | |||
Get hash | malicious | Gafgyt, Mirai | Browse | |||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
91.189.91.43 | Get hash | malicious | Mirai, Okiru | Browse | ||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Gafgyt, Mirai | Browse | |||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Mirai | Browse | |||
Get hash | malicious | Mirai, Okiru | Browse | |||
91.189.91.42 | Get hash | malicious | Mirai, Okiru | Browse | ||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Gafgyt, Mirai | Browse | |||
Get hash | malicious | Gafgyt, Mirai | Browse | |||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Mirai, Okiru | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse |
⊘No context
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
CANONICAL-ASGB | Get hash | malicious | Mirai, Okiru | Browse |
| |
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
CANONICAL-ASGB | Get hash | malicious | Mirai, Okiru | Browse |
| |
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
THEZONEBG | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | AsyncRAT, PureLog Stealer | Browse |
| ||
INIT7CH | Get hash | malicious | Mirai, Okiru | Browse |
| |
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
|
⊘No context
⊘No context
Process: | /usr/libexec/gsd-sharing |
File Type: | |
Category: | dropped |
Size (bytes): | 1 |
Entropy (8bit): | 0.0 |
Encrypted: | false |
SSDEEP: | 3:: |
MD5: | 93B885ADFE0DA089CDF634904FD59F71 |
SHA1: | 5BA93C9DB0CFF93F52B521D7420E43F6EDA2784F |
SHA-256: | 6E340B9CFFB37A989CA544E6BB780A2C78901D3FB33738768511A30617AFA01D |
SHA-512: | B8244D028981D693AF7B456AF8EFA4CAD63D282E19FF14942C246E50D9351D22704A802A71C3580B6370DE4CEB293C324A8423342557D4E5C38438F0E36910EE |
Malicious: | false |
Reputation: | high, very likely benign file |
Preview: |
File type: | |
Entropy (8bit): | 4.994062425453406 |
TrID: |
|
File name: | TCke75ESG2.elf |
File size: | 211'784 bytes |
MD5: | c3bf39b658fd262fdf2fb5eef4e904e8 |
SHA1: | b11b96447bf98aae19a4729568c7743ff5e09c9f |
SHA256: | 509d90b598a685633784f2380e066966e381b0f85f5791ea0f83e9801e6b51ca |
SHA512: | bbe7795f87de17755f725693c6d39c00b1e5999386bd2d905bc87c4deaf76b1a1a1542eab1b5477310dc83576708bab55a9fe7204084eb86e86b35dcf8df2345 |
SSDEEP: | 1536:O9GH+/Jv1ViKienvpxyOAAqQQiqE4NyYLe3E5mxEOXuOixAgEdZZKvigd1f4FxXj:07VnvnyO1qxoEGGAgEdZcqnqunL1VJ3 |
TLSH: | 0A24C709AF510FBBDC6FDE3702E9060539CD651722A82B7A3674D528F54A90F4AE3C78 |
File Content Preview: | .ELF....................`.@.4....9......4. ...(...............@...@...........................F...F..X.../..........Q.td...............................<,..'!......'.......................<...'!... .........9'.. ........................<...'!...........0.9 |
ELF header | |
---|---|
Class: | |
Data: | |
Version: | |
Machine: | |
Version Number: | |
Type: | |
OS/ABI: | |
ABI Version: | 0 |
Entry Point Address: | |
Flags: | |
ELF Header Size: | 52 |
Program Header Offset: | 52 |
Program Header Size: | 32 |
Number of Program Headers: | 3 |
Section Header Offset: | 211224 |
Section Header Size: | 40 |
Number of Section Headers: | 14 |
Header String Table Index: | 13 |
Name | Type | Address | Offset | Size | EntSize | Flags | Flags Description | Link | Info | Align |
---|---|---|---|---|---|---|---|---|---|---|
NULL | 0x0 | 0x0 | 0x0 | 0x0 | 0x0 | 0 | 0 | 0 | ||
.init | PROGBITS | 0x400094 | 0x94 | 0x8c | 0x0 | 0x6 | AX | 0 | 0 | 4 |
.text | PROGBITS | 0x400120 | 0x120 | 0x2a080 | 0x0 | 0x6 | AX | 0 | 0 | 16 |
.fini | PROGBITS | 0x42a1a0 | 0x2a1a0 | 0x5c | 0x0 | 0x6 | AX | 0 | 0 | 4 |
.rodata | PROGBITS | 0x42a200 | 0x2a200 | 0x34e0 | 0x0 | 0x2 | A | 0 | 0 | 16 |
.ctors | PROGBITS | 0x46e000 | 0x2e000 | 0xc | 0x0 | 0x3 | WA | 0 | 0 | 4 |
.dtors | PROGBITS | 0x46e00c | 0x2e00c | 0x8 | 0x0 | 0x3 | WA | 0 | 0 | 4 |
.data.rel.ro | PROGBITS | 0x46e018 | 0x2e018 | 0x46c | 0x0 | 0x3 | WA | 0 | 0 | 4 |
.data | PROGBITS | 0x46e4a0 | 0x2e4a0 | 0x4930 | 0x0 | 0x3 | WA | 0 | 0 | 32 |
.got | PROGBITS | 0x472dd0 | 0x32dd0 | 0xae4 | 0x4 | 0x10000003 | WAp | 0 | 0 | 16 |
.sbss | NOBITS | 0x4738b4 | 0x338b4 | 0x50 | 0x0 | 0x10000003 | WAp | 0 | 0 | 4 |
.bss | NOBITS | 0x473910 | 0x338b4 | 0xd6c0 | 0x0 | 0x3 | WA | 0 | 0 | 16 |
.mdebug.abi32 | PROGBITS | 0x1560 | 0x338b4 | 0x0 | 0x0 | 0x0 | 0 | 0 | 1 | |
.shstrtab | STRTAB | 0x0 | 0x338b4 | 0x64 | 0x0 | 0x0 | 0 | 0 | 1 |
Type | Offset | Virtual Address | Physical Address | File Size | Memory Size | Entropy | Flags | Flags Description | Align | Prog Interpreter | Section Mappings |
---|---|---|---|---|---|---|---|---|---|---|---|
LOAD | 0x0 | 0x400000 | 0x400000 | 0x2d6e0 | 0x2d6e0 | 5.3413 | 0x5 | R E | 0x10000 | .init .text .fini .rodata | |
LOAD | 0x2e000 | 0x46e000 | 0x46e000 | 0x58b4 | 0x12fd0 | 1.4022 | 0x6 | RW | 0x10000 | .ctors .dtors .data.rel.ro .data .got .sbss .bss | |
GNU_STACK | 0x0 | 0x0 | 0x0 | 0x0 | 0x0 | 0.0000 | 0x7 | RWE | 0x4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 01:45:45.490138054 CEST | 43928 | 443 | 192.168.2.23 | 91.189.91.42 |
Apr 26, 2024 01:45:45.998136044 CEST | 48020 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:45:46.228672028 CEST | 5667 | 48020 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:45:49.525927067 CEST | 48022 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:45:49.759807110 CEST | 5667 | 48022 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:45:51.121803045 CEST | 42836 | 443 | 192.168.2.23 | 91.189.91.43 |
Apr 26, 2024 01:45:51.889225960 CEST | 42516 | 80 | 192.168.2.23 | 109.202.202.202 |
Apr 26, 2024 01:45:53.057379007 CEST | 48024 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:45:53.294246912 CEST | 5667 | 48024 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:45:56.591356993 CEST | 48026 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:45:56.827228069 CEST | 5667 | 48026 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:46:05.967305899 CEST | 43928 | 443 | 192.168.2.23 | 91.189.91.42 |
Apr 26, 2024 01:46:18.253645897 CEST | 42836 | 443 | 192.168.2.23 | 91.189.91.43 |
Apr 26, 2024 01:46:22.349124908 CEST | 42516 | 80 | 192.168.2.23 | 109.202.202.202 |
Apr 26, 2024 01:46:23.846054077 CEST | 48028 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:46:24.077924013 CEST | 5667 | 48028 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:46:27.250935078 CEST | 48030 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:46:27.481492043 CEST | 5667 | 48030 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:46:30.777535915 CEST | 48032 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:46:31.009076118 CEST | 5667 | 48032 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:46:46.921695948 CEST | 43928 | 443 | 192.168.2.23 | 91.189.91.42 |
Apr 26, 2024 01:46:58.028749943 CEST | 48034 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:46:58.264511108 CEST | 5667 | 48034 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:47:01.439099073 CEST | 48036 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:47:01.671958923 CEST | 5667 | 48036 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:47:04.873414040 CEST | 48038 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:47:05.105766058 CEST | 5667 | 48038 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:47:08.303406000 CEST | 48040 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:47:08.534244061 CEST | 5667 | 48040 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:47:11.747414112 CEST | 48042 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:47:11.977121115 CEST | 5667 | 48042 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:47:15.271001101 CEST | 48044 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:47:15.501039982 CEST | 5667 | 48044 | 91.92.254.116 | 192.168.2.23 |
Apr 26, 2024 01:47:42.513044119 CEST | 48046 | 5667 | 192.168.2.23 | 91.92.254.116 |
Apr 26, 2024 01:47:42.745162010 CEST | 5667 | 48046 | 91.92.254.116 | 192.168.2.23 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 01:45:45.737530947 CEST | 45578 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:45.997502089 CEST | 53 | 45578 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:48.229240894 CEST | 53392 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:48.491255999 CEST | 53 | 53392 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:48.491508007 CEST | 40545 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:48.750050068 CEST | 53 | 40545 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:48.750217915 CEST | 49325 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:49.008337975 CEST | 53 | 49325 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:49.008502960 CEST | 52444 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:49.265561104 CEST | 53 | 52444 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:49.265752077 CEST | 37163 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:49.525674105 CEST | 53 | 37163 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:51.759967089 CEST | 51744 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:52.020508051 CEST | 53 | 51744 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:52.020674944 CEST | 49072 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:52.280791044 CEST | 53 | 49072 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:52.280956984 CEST | 52777 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:52.541887045 CEST | 53 | 52777 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:52.542130947 CEST | 34889 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:52.796500921 CEST | 53 | 34889 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:52.796622038 CEST | 57124 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:53.057234049 CEST | 53 | 57124 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:55.294323921 CEST | 45108 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:55.550333977 CEST | 53 | 45108 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:55.550455093 CEST | 57079 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:55.807238102 CEST | 53 | 57079 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:55.807394028 CEST | 36565 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:56.069024086 CEST | 53 | 36565 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:56.069202900 CEST | 57637 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:56.330097914 CEST | 53 | 57637 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:56.330277920 CEST | 49884 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:45:56.591010094 CEST | 53 | 49884 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:45:58.827398062 CEST | 50513 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:46:03.831610918 CEST | 43840 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:46:08.832669020 CEST | 40071 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:46:13.837125063 CEST | 37418 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:46:18.841362953 CEST | 52061 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:46:26.078406096 CEST | 56248 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:46:26.313467979 CEST | 53 | 56248 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:46:26.313916922 CEST | 60996 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:46:26.547302961 CEST | 53 | 60996 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:46:26.547858953 CEST | 47652 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:46:26.783211946 CEST | 53 | 47652 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:46:26.783554077 CEST | 47914 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:46:27.018731117 CEST | 53 | 47914 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:46:27.019174099 CEST | 38381 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:46:27.250420094 CEST | 53 | 38381 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:46:29.482202053 CEST | 43755 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:46:29.742840052 CEST | 53 | 43755 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:46:29.743222952 CEST | 60923 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:46:29.999366999 CEST | 53 | 60923 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:46:29.999804020 CEST | 45922 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:46:30.262294054 CEST | 53 | 45922 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:46:30.262638092 CEST | 33741 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:46:30.520716906 CEST | 53 | 33741 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:46:30.520895958 CEST | 34447 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:46:30.777318954 CEST | 53 | 34447 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:46:33.009344101 CEST | 33039 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:46:38.013793945 CEST | 37433 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:46:43.018429041 CEST | 36806 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:46:48.022830963 CEST | 40036 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:46:53.024799109 CEST | 48329 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:47:00.264899015 CEST | 43241 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:47:00.499888897 CEST | 53 | 43241 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:47:00.500176907 CEST | 51587 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:47:00.733268023 CEST | 53 | 51587 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:47:00.733549118 CEST | 44130 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:47:00.969201088 CEST | 53 | 44130 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:47:00.969536066 CEST | 48270 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:47:01.205516100 CEST | 53 | 48270 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:47:01.205852985 CEST | 36781 | 53 | 192.168.2.23 | 51.254.162.59 |
Apr 26, 2024 01:47:01.438832045 CEST | 53 | 36781 | 51.254.162.59 | 192.168.2.23 |
Apr 26, 2024 01:47:03.672569990 CEST | 48627 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:03.912313938 CEST | 53 | 48627 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:03.912748098 CEST | 49099 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:04.151559114 CEST | 53 | 49099 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:04.151849031 CEST | 44411 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:04.393263102 CEST | 53 | 44411 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:04.393472910 CEST | 43852 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:04.633713961 CEST | 53 | 43852 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:04.634119034 CEST | 44870 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:04.873184919 CEST | 53 | 44870 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:07.106128931 CEST | 59089 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:07.345633984 CEST | 53 | 59089 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:07.345941067 CEST | 59535 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:07.585189104 CEST | 53 | 59535 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:07.585475922 CEST | 57336 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:07.824629068 CEST | 53 | 57336 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:07.824891090 CEST | 43841 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:08.064191103 CEST | 53 | 43841 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:08.064457893 CEST | 58402 | 53 | 192.168.2.23 | 195.10.195.195 |
Apr 26, 2024 01:47:08.303158998 CEST | 53 | 58402 | 195.10.195.195 | 192.168.2.23 |
Apr 26, 2024 01:47:10.534650087 CEST | 56062 | 53 | 192.168.2.23 | 194.36.144.87 |
Apr 26, 2024 01:47:10.777074099 CEST | 53 | 56062 | 194.36.144.87 | 192.168.2.23 |
Apr 26, 2024 01:47:10.777335882 CEST | 49705 | 53 | 192.168.2.23 | 194.36.144.87 |
Apr 26, 2024 01:47:11.019299984 CEST | 53 | 49705 | 194.36.144.87 | 192.168.2.23 |
Apr 26, 2024 01:47:11.019510984 CEST | 53815 | 53 | 192.168.2.23 | 194.36.144.87 |
Apr 26, 2024 01:47:11.261933088 CEST | 53 | 53815 | 194.36.144.87 | 192.168.2.23 |
Apr 26, 2024 01:47:11.262320995 CEST | 57503 | 53 | 192.168.2.23 | 194.36.144.87 |
Apr 26, 2024 01:47:11.504396915 CEST | 53 | 57503 | 194.36.144.87 | 192.168.2.23 |
Apr 26, 2024 01:47:11.504695892 CEST | 50766 | 53 | 192.168.2.23 | 194.36.144.87 |
Apr 26, 2024 01:47:11.747097015 CEST | 53 | 50766 | 194.36.144.87 | 192.168.2.23 |
Apr 26, 2024 01:47:13.977385998 CEST | 51038 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:47:14.233890057 CEST | 53 | 51038 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:47:14.234188080 CEST | 35461 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:47:14.494076014 CEST | 53 | 35461 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:47:14.494256973 CEST | 53612 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:47:14.748433113 CEST | 53 | 53612 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:47:14.748681068 CEST | 60376 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:47:15.009963036 CEST | 53 | 60376 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:47:15.010229111 CEST | 57566 | 53 | 192.168.2.23 | 185.181.61.24 |
Apr 26, 2024 01:47:15.270782948 CEST | 53 | 57566 | 185.181.61.24 | 192.168.2.23 |
Apr 26, 2024 01:47:17.501180887 CEST | 46778 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:47:22.504024982 CEST | 48847 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:47:27.507904053 CEST | 43824 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:47:32.512474060 CEST | 34478 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:47:37.512216091 CEST | 51784 | 53 | 192.168.2.23 | 91.217.137.37 |
Apr 26, 2024 01:47:44.745743990 CEST | 56546 | 53 | 192.168.2.23 | 94.16.114.254 |
Apr 26, 2024 01:47:49.750222921 CEST | 33625 | 53 | 192.168.2.23 | 94.16.114.254 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 26, 2024 01:45:45.737530947 CEST | 192.168.2.23 | 185.181.61.24 | 0x9292 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 01:45:48.229240894 CEST | 192.168.2.23 | 185.181.61.24 | 0x296d | Standard query (0) | 256 | 300 | false | |
Apr 26, 2024 01:45:48.491508007 CEST | 192.168.2.23 | 185.181.61.24 | 0x296d | Standard query (0) | 256 | 300 | false | |
Apr 26, 2024 01:45:48.750217915 CEST | 192.168.2.23 | 185.181.61.24 | 0x296d | Standard query (0) | 256 | 301 | false | |
Apr 26, 2024 01:45:49.008502960 CEST | 192.168.2.23 | 185.181.61.24 | 0x296d | Standard query (0) | 256 | 301 | false | |
Apr 26, 2024 01:45:49.265752077 CEST | 192.168.2.23 | 185.181.61.24 | 0x296d | Standard query (0) | 256 | 301 | false | |
Apr 26, 2024 01:45:51.759967089 CEST | 192.168.2.23 | 185.181.61.24 | 0xd19a | Standard query (0) | 256 | 303 | false | |
Apr 26, 2024 01:45:52.020674944 CEST | 192.168.2.23 | 185.181.61.24 | 0xd19a | Standard query (0) | 256 | 304 | false | |
Apr 26, 2024 01:45:52.280956984 CEST | 192.168.2.23 | 185.181.61.24 | 0xd19a | Standard query (0) | 256 | 304 | false | |
Apr 26, 2024 01:45:52.542130947 CEST | 192.168.2.23 | 185.181.61.24 | 0xd19a | Standard query (0) | 256 | 304 | false | |
Apr 26, 2024 01:45:52.796622038 CEST | 192.168.2.23 | 185.181.61.24 | 0xd19a | Standard query (0) | 256 | 305 | false | |
Apr 26, 2024 01:45:55.294323921 CEST | 192.168.2.23 | 185.181.61.24 | 0xd7e7 | Standard query (0) | 256 | 307 | false | |
Apr 26, 2024 01:45:55.550455093 CEST | 192.168.2.23 | 185.181.61.24 | 0xd7e7 | Standard query (0) | 256 | 307 | false | |
Apr 26, 2024 01:45:55.807394028 CEST | 192.168.2.23 | 185.181.61.24 | 0xd7e7 | Standard query (0) | 256 | 308 | false | |
Apr 26, 2024 01:45:56.069202900 CEST | 192.168.2.23 | 185.181.61.24 | 0xd7e7 | Standard query (0) | 256 | 308 | false | |
Apr 26, 2024 01:45:56.330277920 CEST | 192.168.2.23 | 185.181.61.24 | 0xd7e7 | Standard query (0) | 256 | 308 | false | |
Apr 26, 2024 01:45:58.827398062 CEST | 192.168.2.23 | 91.217.137.37 | 0x1636 | Standard query (0) | 256 | 315 | false | |
Apr 26, 2024 01:46:03.831610918 CEST | 192.168.2.23 | 91.217.137.37 | 0x1636 | Standard query (0) | 256 | 317 | false | |
Apr 26, 2024 01:46:08.832669020 CEST | 192.168.2.23 | 91.217.137.37 | 0x1636 | Standard query (0) | 256 | 325 | false | |
Apr 26, 2024 01:46:13.837125063 CEST | 192.168.2.23 | 91.217.137.37 | 0x1636 | Standard query (0) | 256 | 330 | false | |
Apr 26, 2024 01:46:18.841362953 CEST | 192.168.2.23 | 91.217.137.37 | 0x1636 | Standard query (0) | 256 | 334 | false | |
Apr 26, 2024 01:46:26.078406096 CEST | 192.168.2.23 | 51.254.162.59 | 0xd3e7 | Standard query (0) | 256 | 338 | false | |
Apr 26, 2024 01:46:26.313916922 CEST | 192.168.2.23 | 51.254.162.59 | 0xd3e7 | Standard query (0) | 256 | 338 | false | |
Apr 26, 2024 01:46:26.547858953 CEST | 192.168.2.23 | 51.254.162.59 | 0xd3e7 | Standard query (0) | 256 | 338 | false | |
Apr 26, 2024 01:46:26.783554077 CEST | 192.168.2.23 | 51.254.162.59 | 0xd3e7 | Standard query (0) | 256 | 339 | false | |
Apr 26, 2024 01:46:27.019174099 CEST | 192.168.2.23 | 51.254.162.59 | 0xd3e7 | Standard query (0) | 256 | 339 | false | |
Apr 26, 2024 01:46:29.482202053 CEST | 192.168.2.23 | 185.181.61.24 | 0x2596 | Standard query (0) | 256 | 341 | false | |
Apr 26, 2024 01:46:29.743222952 CEST | 192.168.2.23 | 185.181.61.24 | 0x2596 | Standard query (0) | 256 | 341 | false | |
Apr 26, 2024 01:46:29.999804020 CEST | 192.168.2.23 | 185.181.61.24 | 0x2596 | Standard query (0) | 256 | 342 | false | |
Apr 26, 2024 01:46:30.262638092 CEST | 192.168.2.23 | 185.181.61.24 | 0x2596 | Standard query (0) | 256 | 342 | false | |
Apr 26, 2024 01:46:30.520895958 CEST | 192.168.2.23 | 185.181.61.24 | 0x2596 | Standard query (0) | 256 | 342 | false | |
Apr 26, 2024 01:46:33.009344101 CEST | 192.168.2.23 | 91.217.137.37 | 0x8a6e | Standard query (0) | 256 | 350 | false | |
Apr 26, 2024 01:46:38.013793945 CEST | 192.168.2.23 | 91.217.137.37 | 0x8a6e | Standard query (0) | 256 | 355 | false | |
Apr 26, 2024 01:46:43.018429041 CEST | 192.168.2.23 | 91.217.137.37 | 0x8a6e | Standard query (0) | 256 | 358 | false | |
Apr 26, 2024 01:46:48.022830963 CEST | 192.168.2.23 | 91.217.137.37 | 0x8a6e | Standard query (0) | 256 | 365 | false | |
Apr 26, 2024 01:46:53.024799109 CEST | 192.168.2.23 | 91.217.137.37 | 0x8a6e | Standard query (0) | 256 | 370 | false | |
Apr 26, 2024 01:47:00.264899015 CEST | 192.168.2.23 | 51.254.162.59 | 0xa179 | Standard query (0) | 256 | 372 | false | |
Apr 26, 2024 01:47:00.500176907 CEST | 192.168.2.23 | 51.254.162.59 | 0xa179 | Standard query (0) | 256 | 372 | false | |
Apr 26, 2024 01:47:00.733549118 CEST | 192.168.2.23 | 51.254.162.59 | 0xa179 | Standard query (0) | 256 | 372 | false | |
Apr 26, 2024 01:47:00.969536066 CEST | 192.168.2.23 | 51.254.162.59 | 0xa179 | Standard query (0) | 256 | 373 | false | |
Apr 26, 2024 01:47:01.205852985 CEST | 192.168.2.23 | 51.254.162.59 | 0xa179 | Standard query (0) | 256 | 373 | false | |
Apr 26, 2024 01:47:03.672569990 CEST | 192.168.2.23 | 195.10.195.195 | 0xa6b2 | Standard query (0) | 256 | 375 | false | |
Apr 26, 2024 01:47:03.912748098 CEST | 192.168.2.23 | 195.10.195.195 | 0xa6b2 | Standard query (0) | 256 | 376 | false | |
Apr 26, 2024 01:47:04.151849031 CEST | 192.168.2.23 | 195.10.195.195 | 0xa6b2 | Standard query (0) | 256 | 376 | false | |
Apr 26, 2024 01:47:04.393472910 CEST | 192.168.2.23 | 195.10.195.195 | 0xa6b2 | Standard query (0) | 256 | 376 | false | |
Apr 26, 2024 01:47:04.634119034 CEST | 192.168.2.23 | 195.10.195.195 | 0xa6b2 | Standard query (0) | 256 | 376 | false | |
Apr 26, 2024 01:47:07.106128931 CEST | 192.168.2.23 | 195.10.195.195 | 0xa5d0 | Standard query (0) | 256 | 379 | false | |
Apr 26, 2024 01:47:07.345941067 CEST | 192.168.2.23 | 195.10.195.195 | 0xa5d0 | Standard query (0) | 256 | 379 | false | |
Apr 26, 2024 01:47:07.585475922 CEST | 192.168.2.23 | 195.10.195.195 | 0xa5d0 | Standard query (0) | 256 | 379 | false | |
Apr 26, 2024 01:47:07.824891090 CEST | 192.168.2.23 | 195.10.195.195 | 0xa5d0 | Standard query (0) | 256 | 380 | false | |
Apr 26, 2024 01:47:08.064457893 CEST | 192.168.2.23 | 195.10.195.195 | 0xa5d0 | Standard query (0) | 256 | 380 | false | |
Apr 26, 2024 01:47:10.534650087 CEST | 192.168.2.23 | 194.36.144.87 | 0x5426 | Standard query (0) | 256 | 382 | false | |
Apr 26, 2024 01:47:10.777335882 CEST | 192.168.2.23 | 194.36.144.87 | 0x5426 | Standard query (0) | 256 | 383 | false | |
Apr 26, 2024 01:47:11.019510984 CEST | 192.168.2.23 | 194.36.144.87 | 0x5426 | Standard query (0) | 256 | 383 | false | |
Apr 26, 2024 01:47:11.262320995 CEST | 192.168.2.23 | 194.36.144.87 | 0x5426 | Standard query (0) | 256 | 383 | false | |
Apr 26, 2024 01:47:11.504695892 CEST | 192.168.2.23 | 194.36.144.87 | 0x5426 | Standard query (0) | 256 | 383 | false | |
Apr 26, 2024 01:47:13.977385998 CEST | 192.168.2.23 | 185.181.61.24 | 0xf909 | Standard query (0) | 256 | 386 | false | |
Apr 26, 2024 01:47:14.234188080 CEST | 192.168.2.23 | 185.181.61.24 | 0xf909 | Standard query (0) | 256 | 386 | false | |
Apr 26, 2024 01:47:14.494256973 CEST | 192.168.2.23 | 185.181.61.24 | 0xf909 | Standard query (0) | 256 | 386 | false | |
Apr 26, 2024 01:47:14.748681068 CEST | 192.168.2.23 | 185.181.61.24 | 0xf909 | Standard query (0) | 256 | 387 | false | |
Apr 26, 2024 01:47:15.010229111 CEST | 192.168.2.23 | 185.181.61.24 | 0xf909 | Standard query (0) | 256 | 387 | false | |
Apr 26, 2024 01:47:17.501180887 CEST | 192.168.2.23 | 91.217.137.37 | 0x4861 | Standard query (0) | 256 | 394 | false | |
Apr 26, 2024 01:47:22.504024982 CEST | 192.168.2.23 | 91.217.137.37 | 0x4861 | Standard query (0) | 256 | 399 | false | |
Apr 26, 2024 01:47:27.507904053 CEST | 192.168.2.23 | 91.217.137.37 | 0x4861 | Standard query (0) | 256 | 404 | false | |
Apr 26, 2024 01:47:32.512474060 CEST | 192.168.2.23 | 91.217.137.37 | 0x4861 | Standard query (0) | 256 | 409 | false | |
Apr 26, 2024 01:47:37.512216091 CEST | 192.168.2.23 | 91.217.137.37 | 0x4861 | Standard query (0) | 256 | 414 | false | |
Apr 26, 2024 01:47:44.745743990 CEST | 192.168.2.23 | 94.16.114.254 | 0x9fb7 | Standard query (0) | 256 | 421 | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 26, 2024 01:45:45.997502089 CEST | 185.181.61.24 | 192.168.2.23 | 0x9292 | No error (0) | 31.220.1.44 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 01:45:45.997502089 CEST | 185.181.61.24 | 192.168.2.23 | 0x9292 | No error (0) | 91.92.254.116 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 01:45:45.997502089 CEST | 185.181.61.24 | 192.168.2.23 | 0x9292 | No error (0) | 94.156.248.19 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 01:45:45.997502089 CEST | 185.181.61.24 | 192.168.2.23 | 0x9292 | No error (0) | 94.156.248.18 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 01:45:45.997502089 CEST | 185.181.61.24 | 192.168.2.23 | 0x9292 | No error (0) | 85.239.33.65 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 01:45:45.997502089 CEST | 185.181.61.24 | 192.168.2.23 | 0x9292 | No error (0) | 94.156.248.20 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 01:47:10.777074099 CEST | 194.36.144.87 | 192.168.2.23 | 0x5426 | Format error (1) | none | none | 256 | 382 | false | |
Apr 26, 2024 01:47:11.019299984 CEST | 194.36.144.87 | 192.168.2.23 | 0x5426 | Format error (1) | none | none | 256 | 383 | false | |
Apr 26, 2024 01:47:11.261933088 CEST | 194.36.144.87 | 192.168.2.23 | 0x5426 | Format error (1) | none | none | 256 | 383 | false | |
Apr 26, 2024 01:47:11.504396915 CEST | 194.36.144.87 | 192.168.2.23 | 0x5426 | Format error (1) | none | none | 256 | 383 | false | |
Apr 26, 2024 01:47:11.747097015 CEST | 194.36.144.87 | 192.168.2.23 | 0x5426 | Format error (1) | none | none | 256 | 383 | false |
System Behavior
Start time (UTC): | 23:45:44 |
Start date (UTC): | 25/04/2024 |
Path: | /tmp/TCke75ESG2.elf |
Arguments: | /tmp/TCke75ESG2.elf |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 23:45:44 |
Start date (UTC): | 25/04/2024 |
Path: | /tmp/TCke75ESG2.elf |
Arguments: | - |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 23:45:44 |
Start date (UTC): | 25/04/2024 |
Path: | /tmp/TCke75ESG2.elf |
Arguments: | - |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 23:45:44 |
Start date (UTC): | 25/04/2024 |
Path: | /tmp/TCke75ESG2.elf |
Arguments: | - |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 23:45:44 |
Start date (UTC): | 25/04/2024 |
Path: | /tmp/TCke75ESG2.elf |
Arguments: | - |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 23:45:49 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:49 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-sharing |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-sharing |
Arguments: | /usr/libexec/gsd-sharing |
File size: | 35424 bytes |
MD5 hash: | e29d9025d98590fbb69f89fdbd4438b3 |
Start time (UTC): | 23:45:49 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:49 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-wacom |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-wacom |
Arguments: | /usr/libexec/gsd-wacom |
File size: | 39520 bytes |
MD5 hash: | 13778dd1a23a4e94ddc17ac9caa4fcc1 |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/systemd/systemd |
Arguments: | - |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/upower/upowerd |
Arguments: | /usr/lib/upower/upowerd |
File size: | 260328 bytes |
MD5 hash: | 1253eea2fe5fe4017069664284e326cd |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-keyboard |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-keyboard |
Arguments: | /usr/libexec/gsd-keyboard |
File size: | 39760 bytes |
MD5 hash: | 8e288fd17c80bb0a1148b964b2ac2279 |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-print-notifications |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-print-notifications |
Arguments: | /usr/libexec/gsd-print-notifications |
File size: | 51840 bytes |
MD5 hash: | 71539698aa691718cee775d6b9450ae2 |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-color |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-color |
Arguments: | /usr/libexec/gsd-color |
File size: | 92832 bytes |
MD5 hash: | ac2861ad93ce047283e8e87cefef9a19 |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-rfkill |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-rfkill |
Arguments: | /usr/libexec/gsd-rfkill |
File size: | 51808 bytes |
MD5 hash: | 88a16a3c0aba1759358c06215ecfb5cc |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-smartcard |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-smartcard |
Arguments: | /usr/libexec/gsd-smartcard |
File size: | 109152 bytes |
MD5 hash: | ea1fbd7f62e4cd0331eae2ef754ee605 |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-datetime |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-datetime |
Arguments: | /usr/libexec/gsd-datetime |
File size: | 76736 bytes |
MD5 hash: | d80d39745740de37d6634d36e344d4bc |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gvfsd-fuse |
Arguments: | - |
File size: | 47632 bytes |
MD5 hash: | d18fbf1cbf8eb57b17fac48b7b4be933 |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/fusermount |
Arguments: | fusermount -u -q -z -- /run/user/1000/gvfs |
File size: | 39144 bytes |
MD5 hash: | 576a1b135c82bdcbc97a91acea900566 |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-media-keys |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-media-keys |
Arguments: | /usr/libexec/gsd-media-keys |
File size: | 232936 bytes |
MD5 hash: | a425448c135afb4b8bfd79cc0b6b74da |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-screensaver-proxy |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-screensaver-proxy |
Arguments: | /usr/libexec/gsd-screensaver-proxy |
File size: | 27232 bytes |
MD5 hash: | 77e309450c87dceee43f1a9e50cc0d02 |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:50 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-a11y-settings |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-a11y-settings |
Arguments: | /usr/libexec/gsd-a11y-settings |
File size: | 23056 bytes |
MD5 hash: | 18e243d2cf30ecee7ea89d1462725c5c |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-sound |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-sound |
Arguments: | /usr/libexec/gsd-sound |
File size: | 31248 bytes |
MD5 hash: | 4c7d3fb993463337b4a0eb5c80c760ee |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/xfce4-panel |
Arguments: | - |
File size: | 375768 bytes |
MD5 hash: | a15b657c7d54ac1385f1f15004ea6784 |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libsystray.so 6 12582920 systray "Notification Area" "Area where notification icons appear" |
File size: | 35136 bytes |
MD5 hash: | ac0b8a906f359a8ae102244738682e76 |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-housekeeping |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-housekeeping |
Arguments: | /usr/libexec/gsd-housekeeping |
File size: | 51840 bytes |
MD5 hash: | b55f3394a84976ddb92a2915e5d76914 |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/xfce4-panel |
Arguments: | - |
File size: | 375768 bytes |
MD5 hash: | a15b657c7d54ac1385f1f15004ea6784 |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libstatusnotifier.so 7 12582921 statusnotifier "Status Notifier Plugin" "Provides a panel area for status notifier items (application indicators)" |
File size: | 35136 bytes |
MD5 hash: | ac0b8a906f359a8ae102244738682e76 |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gnome-session-binary |
Arguments: | - |
File size: | 334664 bytes |
MD5 hash: | d9b90be4f7db60cb3c2d3da6a1d31bfb |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /bin/sh |
Arguments: | /bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-power |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:52 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/libexec/gsd-power |
Arguments: | /usr/libexec/gsd-power |
File size: | 88672 bytes |
MD5 hash: | 28b8e1b43c3e7f1db6741ea1ecd978b7 |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/xfce4-panel |
Arguments: | - |
File size: | 375768 bytes |
MD5 hash: | a15b657c7d54ac1385f1f15004ea6784 |
Start time (UTC): | 23:45:51 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libpulseaudio-plugin.so 8 12582922 pulseaudio "PulseAudio Plugin" "Adjust the audio volume of the PulseAudio sound system" |
File size: | 35136 bytes |
MD5 hash: | ac0b8a906f359a8ae102244738682e76 |
Start time (UTC): | 23:45:52 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/xfce4-panel |
Arguments: | - |
File size: | 375768 bytes |
MD5 hash: | a15b657c7d54ac1385f1f15004ea6784 |
Start time (UTC): | 23:45:52 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libxfce4powermanager.so 9 12582923 power-manager-plugin "Power Manager Plugin" "Display the battery levels of your devices and control the brightness of your display" |
File size: | 35136 bytes |
MD5 hash: | ac0b8a906f359a8ae102244738682e76 |
Start time (UTC): | 23:45:52 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/xfce4-panel |
Arguments: | - |
File size: | 375768 bytes |
MD5 hash: | a15b657c7d54ac1385f1f15004ea6784 |
Start time (UTC): | 23:45:52 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libnotification-plugin.so 10 12582924 notification-plugin "Notification Plugin" "Notification plugin for the Xfce panel" |
File size: | 35136 bytes |
MD5 hash: | ac0b8a906f359a8ae102244738682e76 |
Start time (UTC): | 23:45:52 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/xfce4-panel |
Arguments: | - |
File size: | 375768 bytes |
MD5 hash: | a15b657c7d54ac1385f1f15004ea6784 |
Start time (UTC): | 23:45:52 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libactions.so 14 12582925 actions "Action Buttons" "Log out, lock or other system actions" |
File size: | 35136 bytes |
MD5 hash: | ac0b8a906f359a8ae102244738682e76 |
Start time (UTC): | 23:45:56 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:56 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:56 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/sbin/gdm3 |
Arguments: | - |
File size: | 453296 bytes |
MD5 hash: | 2492e2d8d34f9377e3e530a61a15674f |
Start time (UTC): | 23:45:56 |
Start date (UTC): | 25/04/2024 |
Path: | /etc/gdm3/PrimeOff/Default |
Arguments: | /etc/gdm3/PrimeOff/Default |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:56 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/systemd/systemd |
Arguments: | - |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
Start time (UTC): | 23:45:56 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/upower/upowerd |
Arguments: | /usr/lib/upower/upowerd |
File size: | 260328 bytes |
MD5 hash: | 1253eea2fe5fe4017069664284e326cd |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/sbin/gdm3 |
Arguments: | - |
File size: | 453296 bytes |
MD5 hash: | 2492e2d8d34f9377e3e530a61a15674f |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /etc/gdm3/PrimeOff/Default |
Arguments: | /etc/gdm3/PrimeOff/Default |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/systemd/systemd |
Arguments: | - |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/upower/upowerd |
Arguments: | /usr/lib/upower/upowerd |
File size: | 260328 bytes |
MD5 hash: | 1253eea2fe5fe4017069664284e326cd |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:57 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/systemd/systemd |
Arguments: | - |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/upower/upowerd |
Arguments: | /usr/lib/upower/upowerd |
File size: | 260328 bytes |
MD5 hash: | 1253eea2fe5fe4017069664284e326cd |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/systemd/systemd |
Arguments: | - |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/upower/upowerd |
Arguments: | /usr/lib/upower/upowerd |
File size: | 260328 bytes |
MD5 hash: | 1253eea2fe5fe4017069664284e326cd |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/bin/dbus-daemon |
Arguments: | - |
File size: | 249032 bytes |
MD5 hash: | 3089d47e3f3ab84cd81c48fd406d7a8c |
Start time (UTC): | 23:45:58 |
Start date (UTC): | 25/04/2024 |
Path: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
Arguments: | /usr/lib/x86_64-linux-gnu/xfce4/xfconf/xfconfd |
File size: | 112880 bytes |
MD5 hash: | 4c7a0d6d258bb970905b19b84abcd8e9 |