Windows
Analysis Report
DOC-Zcns1G_.html
Overview
General Information
Detection
Score: | 100 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64_ra
- chrome.exe (PID: 4020 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t C:\Users \user\Desk top\DOC-Zc ns1G_.html MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 6196 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2180 --fi eld-trial- handle=200 0,i,155603 8913945395 5100,37117 4263462869 4839,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_HtmlPhish_58 | Yara detected HtmlPhish_58 | Joe Security |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_HtmlPhish_58 | Yara detected HtmlPhish_58 | Joe Security | ||
JoeSecurity_HtmlPhish_10 | Yara detected HtmlPhish_10 | Joe Security |
Click to jump to signature section
AV Detection |
---|
Source: | Virustotal: | Perma Link |
Phishing |
---|
Source: | Matcher: | ||
Source: | Matcher: |
Source: | File source: |
Source: | File source: | ||
Source: | File source: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | Tab title: |
Source: | HTTP Parser: |
Source: | Matcher: |
Source: | Matcher: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: |
Source: | JA3 fingerprint: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | File created: | Jump to behavior |
Source: | Virustotal: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: |
Source: | Window detected: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Stealing of Sensitive Information |
---|
Source: | HTTP Parser: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | 1 Registry Run Keys / Startup Folder | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | 1 Registry Run Keys / Startup Folder | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
10% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Virustotal | Browse | ||
1% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
part-0013.t-0009.t-msedge.net | 13.107.213.41 | true | false |
| unknown |
www.google.com | 192.178.50.68 | true | false | high | |
iia-p.org | 192.232.216.145 | true | false |
| unknown |
use.fontawesome.com | unknown | unknown | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
true |
| low | |
false |
| unknown | |
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
13.107.246.41 | unknown | United States | 8068 | MICROSOFT-CORP-MSN-AS-BLOCKUS | false | |
192.178.50.68 | www.google.com | United States | 15169 | GOOGLEUS | false | |
192.232.216.145 | iia-p.org | United States | 46606 | UNIFIEDLAYER-AS-1US | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
13.107.213.41 | part-0013.t-0009.t-msedge.net | United States | 8068 | MICROSOFT-CORP-MSN-AS-BLOCKUS | false |
IP |
---|
192.168.2.16 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1431977 |
Start date and time: | 2024-04-26 06:28:23 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 4m 5s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultwindowsinteractivecookbook.jbs |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 15 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Sample name: | DOC-Zcns1G_.html |
Detection: | MAL |
Classification: | mal100.phis.winHTML@16/23@8/6 |
EGA Information: | Failed |
HCA Information: |
|
Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, SIHClient.exe, SgrmBroker.exe, MoUsoCoreWorker.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 192.178.50.67, 142.250.217.174, 108.177.11.84, 34.104.35.123, 142.250.217.170, 104.21.27.152, 172.67.142.245, 199.232.210.172, 142.250.189.131, 192.178.50.46
- Excluded domains from analysis (whitelisted): logincdn.msauth.net, clients1.google.com, fs.microsoft.com, lgincdnmsftuswe2.azureedge.net, accounts.google.com, slscr.update.microsoft.com, ajax.googleapis.com, ctldl.windowsupdate.com, clientservices.googleapis.com, use.fontawesome.com.cdn.cloudflare.net, firstparty-azurefd-prod.trafficmanager.net, fe3cr.delivery.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, update.googleapis.com, lgincdnmsftuswe2.afd.azureedge.net, clients.l.google.com
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
13.107.246.41 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
239.255.255.250 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
13.107.213.41 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
part-0013.t-0009.t-msedge.net | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
UNIFIEDLAYER-AS-1US | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HtmlDropper, HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
MICROSOFT-CORP-MSN-AS-BLOCKUS | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Phisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
MICROSOFT-CORP-MSN-AS-BLOCKUS | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Phisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
28a2c9bd18a11de089ef85a160da29e4 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2673 |
Entropy (8bit): | 3.989825510713089 |
Encrypted: | false |
SSDEEP: | 48:866dRTZB+HvcidAKZdA1FehwiZUklqehEJy+3:83Lt/y |
MD5: | 5F780AF198B6EC5E16CA436F0D7E6442 |
SHA1: | CF9E1723DB652CE7B5041683C9AB297E8D44C3B7 |
SHA-256: | 3A75C700A98869816154D85E6445E235D122F3F1A5C579E58CC943FF4883C11A |
SHA-512: | 495CB6C45E04F67FF9552433CB7C8D0096F23A835491DA6F5EE724E867B7BF51656BB2E6D1D1CD84826E12179B110E6AF36E48A1FB48947954C63EEDF36D681C |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2675 |
Entropy (8bit): | 4.006136574239574 |
Encrypted: | false |
SSDEEP: | 48:8XdRTZB+HvcidAKZdA1seh/iZUkAQkqeh1Jy+2:8DLD9QKy |
MD5: | 6AEF3DCE926290A7E91F624C585F1422 |
SHA1: | 82CC917BC02D799737189478F5AFA014B82280E4 |
SHA-256: | 46371DF813274B4100C4E2CE085190034BE6554EC9DEEB365328E690D0CD2309 |
SHA-512: | 96B18AB992656CB517BADA81E27EE68CD46944737FDED63E6E435B1F25ED3D79C37D8164BF2903CC16FF1CDF7DDA05C0D7EF61911C9AFDF30D3B7309FF8E551E |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2689 |
Entropy (8bit): | 4.014341005940345 |
Encrypted: | false |
SSDEEP: | 48:8ddRTZBAHvcidAKZdA14meh7sFiZUkmgqeh7s/Jy+BX:8BL5nDy |
MD5: | A956E21E06D5FA16BD0AF7F5C2C05024 |
SHA1: | BB74C1927C859B4D19B1915A12E5461A6BE479F9 |
SHA-256: | 3C5827B1DE7EC044AD58EFFB357C79BC59C27DCA4BE0735354482511F0F0F978 |
SHA-512: | D285B331A300E6313491EB739C7FCA48D42AF2A0EC365BD592497666765DA4079FE26AB55659E3E402F870BE119AEF95EDEDCB4F5776975DC7DBDDCEA729B3D8 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2677 |
Entropy (8bit): | 4.005955083307096 |
Encrypted: | false |
SSDEEP: | 48:88dRTZB+HvcidAKZdA1TehDiZUkwqeh5Jy+R:8qLwZy |
MD5: | 2AD000941392D4AE4AD7DA5A353403AF |
SHA1: | 84268646AB7CC1C36756935F7DBE21790C3C5092 |
SHA-256: | E6D518A5D721BF69FF23543506767D06F32D2214928D07A8BBDB4C4BCE615E0B |
SHA-512: | 9290C6CDEB820445A2398677C1A80617A6726D0BC9DAF7169AD757C44778169EE6EA39590DADB817D5B44B679C1AD8484C7E56D2355503E4F3234C649D71B6DB |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2677 |
Entropy (8bit): | 3.9952114537402643 |
Encrypted: | false |
SSDEEP: | 48:8KdRTZB+HvcidAKZdA1dehBiZUk1W1qehbJy+C:8QLQ91y |
MD5: | 258B7549FD3E45038C71BEF91D98786B |
SHA1: | 0DBE71E50BE17848717DA82B5326D413411263A7 |
SHA-256: | 7AEED6EBEC415EF3460AEF26447FA0E4EBD5DEF48442E6036D8A1BF8677CE0EB |
SHA-512: | FE5DF7A73145D5DA11777530B861DF4B14578E63BA823E67D4FDE5344AA2CC714175E51F9A7AF6E14F60FEB7D812787C71DEDA8ACDE5B731844125E9782E296E |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2679 |
Entropy (8bit): | 4.004185326127633 |
Encrypted: | false |
SSDEEP: | 48:8NdRTZB+HvcidAKZdA1duTeehOuTbbiZUk5OjqehOuTbhJy+yT+:8RLCTfTbxWOvTbDy7T |
MD5: | A09C02CF2EB3438F30EBC49E19161381 |
SHA1: | 57E4289DFF0F665135841CD489659E563C993B42 |
SHA-256: | 1263B708952CDE8368AD8D369F3C908FA7C979F28A5F8CA753D46CF94EAF3466 |
SHA-512: | D7CA63073C1098EA98965FE4645D7BB8FF47DC8045B199EE7BC45A86CC286465726F61C63B8912ADB4A026B01487F19F46F0A38CF5B7D1A96FEF8D83B977CBFA |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 86659 |
Entropy (8bit): | 5.36781915816204 |
Encrypted: | false |
SSDEEP: | 1536:YNhEyjjTikEJO4edXXe9J578go6MWX2xkj8e4c4j2ll2AckaXEP6n15HZ+FhFcQ7:uxc2yjx4j2uX/kcQDU8Cu9 |
MD5: | C9F5AEECA3AD37BF2AA006139B935F0A |
SHA1: | 1055018C28AB41087EF9CCEFE411606893DABEA2 |
SHA-256: | 87083882CC6015984EB0411A99D3981817F5DC5C90BA24F0940420C5548D82DE |
SHA-512: | DCFF2B5C2B8625D3593A7531FF4DDCD633939CC9F7ACFEB79C18A9E6038FDAA99487960075502F159D44F902D965B0B5AED32B41BFA66A1DC07D85B5D5152B58 |
Malicious: | false |
Reputation: | moderate, very likely benign file |
URL: | https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1435 |
Entropy (8bit): | 7.8613342322590265 |
Encrypted: | false |
SSDEEP: | 24:XjtSZi0kq+yVCGYXVrO4vDxik/N/z5VaLPbholJvf6dblke68eRZJyBDz3BnZcNX:XgDkpyVCGca4b//9z5oPXdbl9688qRzY |
MD5: | 9F368BC4580FED907775F31C6B26D6CF |
SHA1: | E393A40B3E337F43057EEE3DE189F197AB056451 |
SHA-256: | 7ECBBA946C099539C3D9C03F4B6804958900E5B90D48336EEA7E5A2ED050FA36 |
SHA-512: | 0023B04D1EEC26719363AED57C95C1A91244C5AFF0BB53091938798FB16E230680E1F972D166B633C1D2B314B34FE0B9D7C18442410DB7DD6024E279AAFD61B0 |
Malicious: | false |
Reputation: | high, very likely benign file |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 673 |
Entropy (8bit): | 7.6596900876595075 |
Encrypted: | false |
SSDEEP: | 12:Xl0t8TUViiYi5m6FhSBXWPsigK99WCqKMvBBFThSqfLd81CK6bC+k7LqZLsFlD:XFUVpkNK0Rwid81p6btk7LqZ6D |
MD5: | 0E176276362B94279A4492511BFCBD98 |
SHA1: | 389FE6B51F62254BB98939896B8C89EBEFFE2A02 |
SHA-256: | 9A2C174AE45CAC057822844211156A5ED293E65C5F69E1D211A7206472C5C80C |
SHA-512: | 8D61C9E464C8F3C77BF1729E32F92BBB1B426A19907E418862EFE117DBD1F0A26FCC3A6FE1D1B22B836853D43C964F6B6D25E414649767FBEA7FE10D2048D7A1 |
Malicious: | false |
Reputation: | high, very likely benign file |
URL: | https://logincdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 17174 |
Entropy (8bit): | 2.9129715116732746 |
Encrypted: | false |
SSDEEP: | 24:QSNTmTFxg4lyyyyyyyyyyyyyio7eeeeeeeeekzgsLsLsLsLsLsQZp:nfgyyyyyyyyyyyyynzQQQQQO |
MD5: | 12E3DAC858061D088023B2BD48E2FA96 |
SHA1: | E08CE1A144ECEAE0C3C2EA7A9D6FBC5658F24CE5 |
SHA-256: | 90CDAF487716184E4034000935C605D1633926D348116D198F355A98B8C6CD21 |
SHA-512: | C5030C55A855E7A9E20E22F4C70BF1E0F3C558A9B7D501CFAB6992AC2656AE5E41B050CCAC541EFA55F9603E0D349B247EB4912EE169D44044271789C719CD01 |
Malicious: | false |
URL: | https://logincdn.msauth.net/16.000.28595.2/images/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 86927 |
Entropy (8bit): | 5.289226719276158 |
Encrypted: | false |
SSDEEP: | 1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69 |
MD5: | A09E13EE94D51C524B7E2A728C7D4039 |
SHA1: | 0DC32DB4AA9C5F03F3B38C47D883DBD4FED13AAE |
SHA-256: | 160A426FF2894252CD7CEBBDD6D6B7DA8FCD319C65B70468F10B6690C45D02EF |
SHA-512: | F8DA8F95B6ED33542A88AF19028E18AE3D9CE25350A06BFC3FBF433ED2B38FEFA5E639CDDFDAC703FC6CAA7F3313D974B92A3168276B3A016CEB28F27DB0714A |
Malicious: | false |
URL: | https://ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1435 |
Entropy (8bit): | 7.8613342322590265 |
Encrypted: | false |
SSDEEP: | 24:XjtSZi0kq+yVCGYXVrO4vDxik/N/z5VaLPbholJvf6dblke68eRZJyBDz3BnZcNX:XgDkpyVCGca4b//9z5oPXdbl9688qRzY |
MD5: | 9F368BC4580FED907775F31C6B26D6CF |
SHA1: | E393A40B3E337F43057EEE3DE189F197AB056451 |
SHA-256: | 7ECBBA946C099539C3D9C03F4B6804958900E5B90D48336EEA7E5A2ED050FA36 |
SHA-512: | 0023B04D1EEC26719363AED57C95C1A91244C5AFF0BB53091938798FB16E230680E1F972D166B633C1D2B314B34FE0B9D7C18442410DB7DD6024E279AAFD61B0 |
Malicious: | false |
URL: | https://logincdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 698780 |
Entropy (8bit): | 4.303376707888899 |
Encrypted: | false |
SSDEEP: | 6144:/6omS9C8UjUvDVXE7oc/AH/xpRSnJUiZ63lhD5jm:F9C856/AJpRx5m |
MD5: | BFFC6023835E717C0348C41583E56EBA |
SHA1: | 5EEECA669E300C13EF45B44E2322EA154A1D17D5 |
SHA-256: | D2FEC0E2942F49DD3CAD4650431D550D761F11DDED17834D4835768C2CA730C0 |
SHA-512: | F8A67D30D682FCA3E62667573DE5EF577C8B7D45DB14899FDE750C40DEC789FFB4D5F02003276DCF6417F00B4163236FEAFDD1BA56C43D71E4BB4FFEA2184052 |
Malicious: | false |
URL: | https://use.fontawesome.com/releases/v5.0.9/js/all.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 114178 |
Entropy (8bit): | 3.0100836220795317 |
Encrypted: | false |
SSDEEP: | 1536:Le+O4yEAYXWVX3wZyildbQhyLx3Z/dqLuY09hZaNoQsOMf8iuuoMQw+CwQwfwbw9:q03C |
MD5: | A59B10485D743AAECB180F7CBAFA9E12 |
SHA1: | 3DCF56AC3BD015599E838E1E969AFAEE9B1CE0C3 |
SHA-256: | 1F600FB26B3310DA5013601DE6F43D708F25F5DF91377CA78EA1A82F8344543F |
SHA-512: | 50635AAFD3EDF8AF8A652A2E3796D94D8458EAC184B8206DE4E6C50645F033EE85FDF3736287CA7BABD274259ADB3A914EB6E196A87F57B4A841AFB883BB00D3 |
Malicious: | false |
URL: | https://iia-p.org/lh/o.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 673 |
Entropy (8bit): | 7.6596900876595075 |
Encrypted: | false |
SSDEEP: | 12:Xl0t8TUViiYi5m6FhSBXWPsigK99WCqKMvBBFThSqfLd81CK6bC+k7LqZLsFlD:XFUVpkNK0Rwid81p6btk7LqZ6D |
MD5: | 0E176276362B94279A4492511BFCBD98 |
SHA1: | 389FE6B51F62254BB98939896B8C89EBEFFE2A02 |
SHA-256: | 9A2C174AE45CAC057822844211156A5ED293E65C5F69E1D211A7206472C5C80C |
SHA-512: | 8D61C9E464C8F3C77BF1729E32F92BBB1B426A19907E418862EFE117DBD1F0A26FCC3A6FE1D1B22B836853D43C964F6B6D25E414649767FBEA7FE10D2048D7A1 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 17174 |
Entropy (8bit): | 2.9129715116732746 |
Encrypted: | false |
SSDEEP: | 24:QSNTmTFxg4lyyyyyyyyyyyyyio7eeeeeeeeekzgsLsLsLsLsLsQZp:nfgyyyyyyyyyyyyynzQQQQQO |
MD5: | 12E3DAC858061D088023B2BD48E2FA96 |
SHA1: | E08CE1A144ECEAE0C3C2EA7A9D6FBC5658F24CE5 |
SHA-256: | 90CDAF487716184E4034000935C605D1633926D348116D198F355A98B8C6CD21 |
SHA-512: | C5030C55A855E7A9E20E22F4C70BF1E0F3C558A9B7D501CFAB6992AC2656AE5E41B050CCAC541EFA55F9603E0D349B247EB4912EE169D44044271789C719CD01 |
Malicious: | false |
Preview: |
File type: | |
Entropy (8bit): | 3.462692063418512 |
TrID: |
|
File name: | DOC-Zcns1G_.html |
File size: | 2'190 bytes |
MD5: | 1e32618fcf29bd29fe194054d4d84ca0 |
SHA1: | dbee4324588daf5ccbe2a9b66e15c580ddfbe640 |
SHA256: | 149ed57259e2ed5e5b2b20e84c4ff006ca08c964794df235a933554114a9b930 |
SHA512: | 47faf2f7977e3491e745990f6fa0d63c5e1f657076bd9999d1ec83bb5a5d39f052a9f4deb70ce4d65d563c74901aa282dc66ae11410d3570d21675a1b1146a29 |
SSDEEP: | 48:J4mTGEW7XsHk8J4jMBAArj5YAMTtWLoGzSfATkllGMQ:96EWkk8WIuAiG0Q |
TLSH: | 4441318B43D70E32B8139D51D55E9C51AFFF88E4C5784489B80E72E6ABBEB4C10528DC |
File Content Preview: | <script>. let x = ['3C', '73', '63', '72', '69', '70', '74', '3E', 'A', '20', '20', '20', '20', '64', '6F', '63', '75', '6D', '65', '6E', '74', '2E', '6C', '6F', '63', '61', '74', '69', '6F', '6E', '2E', '68', '72', '65', '66', '3D', '22', '23' |
Icon Hash: | 173149cccc490307 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 06:28:50.508826971 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:50.508872986 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:50.508996964 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:50.509279013 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:50.509289980 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:50.972826958 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:50.973128080 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:50.973151922 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:50.974862099 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:50.974934101 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:50.976133108 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:50.976222992 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:50.976495981 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:50.976505041 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.016886950 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.404081106 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.404180050 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.404205084 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.404253960 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.404273987 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.404288054 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.444861889 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.621809006 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.621840000 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.621879101 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.621906996 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.622483015 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.622502089 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.622548103 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.622560978 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.622895002 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.622915983 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.622965097 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.657891989 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.657903910 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.658001900 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.841062069 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.841177940 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.841494083 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.841583014 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.842175007 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.842261076 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.842909098 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.842995882 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.843875885 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.843944073 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.876678944 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.876801014 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:51.877232075 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:51.877331018 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:52.059279919 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:52.059374094 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:52.059720993 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:52.059787035 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:52.059875011 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:52.059931040 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:53.755495071 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:53.755521059 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:53.755605936 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:53.755815983 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:53.755830050 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:53.820449114 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:53.820508957 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:53.820580006 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:53.820616007 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:53.820650101 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:53.820678949 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:53.820790052 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:53.820805073 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:53.820919991 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:53.820931911 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.206590891 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:54.206866980 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:54.206878901 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:54.207931995 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:54.208010912 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:54.208298922 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:54.208353996 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:54.208431005 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:54.208437920 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:54.252912045 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:54.280992031 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.281275034 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.281331062 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.282380104 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.282469988 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.283418894 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.283494949 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.283572912 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.283590078 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.286674023 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.286868095 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.286936045 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.287837982 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.287913084 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.288136959 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.288192987 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.288201094 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.332895994 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.333158016 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.333180904 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.380868912 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.570264101 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.570343018 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.570409060 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.570436954 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.570497990 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.570574999 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.571480036 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.571506977 CEST | 443 | 49706 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.571516991 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.571554899 CEST | 49706 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.582475901 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.582570076 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.582631111 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.583132982 CEST | 49707 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.583146095 CEST | 443 | 49707 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.588222980 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.588260889 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.588359118 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.588618994 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:54.588625908 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.724338055 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:54.724364042 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.724457979 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:54.724478960 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:54.724502087 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.724584103 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:54.724689960 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:54.724700928 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:54.724917889 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:54.724931002 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.047310114 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.047550917 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:55.047578096 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.047923088 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.048218966 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:55.048280954 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.048352957 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:55.092125893 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.179527044 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.179822922 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.179837942 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.184266090 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.184341908 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.184725046 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.184902906 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.185091019 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.186665058 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.186922073 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.186945915 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.188050032 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.188122034 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.188433886 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.188508034 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.188602924 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.188611984 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.194506884 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:28:55.194555998 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:28:55.194628954 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:28:55.194808960 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:28:55.194828987 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:28:55.234981060 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.234982967 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.234997988 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.282881975 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.474673986 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.474769115 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.474908113 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.474992990 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.474992990 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.475641012 CEST | 49710 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.475661993 CEST | 443 | 49710 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.480674982 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.480900049 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.480957031 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.481355906 CEST | 49709 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.481374025 CEST | 443 | 49709 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.491388083 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.491449118 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.491491079 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.491533995 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:55.491542101 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.491596937 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:55.491597891 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.491624117 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.491667986 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:55.491673946 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.491754055 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.491805077 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:55.492075920 CEST | 49708 | 443 | 192.168.2.16 | 13.107.213.41 |
Apr 26, 2024 06:28:55.492079973 CEST | 443 | 49708 | 13.107.213.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.494657993 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.494680882 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.494757891 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.495032072 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.495045900 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.580265999 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:28:55.580490112 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:28:55.580514908 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:28:55.582154036 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:28:55.582222939 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:28:55.583209038 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:28:55.583319902 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:28:55.633769989 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:55.634850979 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:28:55.634866953 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:28:55.680840969 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:55.680854082 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:55.680866957 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:28:55.728849888 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:55.950552940 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.950799942 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.950825930 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.951947927 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.958528042 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.958622932 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:55.958678961 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:55.970582962 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:55.970622063 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:55.970695019 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:55.970911026 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:55.970921993 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.000123024 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.000843048 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:56.272193909 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
Apr 26, 2024 06:28:56.423186064 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.424361944 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:56.424381971 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.427993059 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.428082943 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:56.428349018 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:56.428411961 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.428441048 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:56.476130962 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.479856014 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:56.479865074 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.539356947 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:56.577877045 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
Apr 26, 2024 06:28:56.737381935 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.737446070 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.737466097 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.737505913 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.737544060 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:56.737545013 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.737569094 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.737606049 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:56.737611055 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.737672091 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:56.737677097 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.737721920 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:56.737771034 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.737845898 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:56.738709927 CEST | 49714 | 443 | 192.168.2.16 | 13.107.246.41 |
Apr 26, 2024 06:28:56.738724947 CEST | 443 | 49714 | 13.107.246.41 | 192.168.2.16 |
Apr 26, 2024 06:28:56.843128920 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.843303919 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.843413115 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:56.941508055 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:56.991548061 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:57.181885004 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
Apr 26, 2024 06:28:58.385047913 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
Apr 26, 2024 06:28:58.418590069 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:58.418590069 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:58.418610096 CEST | 443 | 49700 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:28:58.418668032 CEST | 49700 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:28:58.468601942 CEST | 49688 | 443 | 192.168.2.16 | 23.39.228.248 |
Apr 26, 2024 06:29:00.634520054 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:29:00.634593964 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:29:00.634644985 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:29:00.796899080 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
Apr 26, 2024 06:29:01.953207970 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:29:01.953427076 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:29:01.953531027 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:29:02.416240931 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:29:02.416275978 CEST | 443 | 49715 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:29:02.416291952 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:29:02.416337967 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:29:02.416340113 CEST | 49715 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:29:02.416357040 CEST | 443 | 49705 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:29:02.416387081 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:29:02.416407108 CEST | 49705 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:29:02.642232895 CEST | 49722 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:02.642297983 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:02.642376900 CEST | 49722 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:02.644889116 CEST | 49722 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:02.644916058 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:02.948312044 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:02.948396921 CEST | 49722 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:02.952836037 CEST | 49722 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:02.952861071 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:02.953105927 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:02.995897055 CEST | 49722 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.036133051 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.240556955 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.240705967 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.240791082 CEST | 49722 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.240837097 CEST | 49722 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.240866899 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.240881920 CEST | 49722 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.240890026 CEST | 443 | 49722 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.280039072 CEST | 49723 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.280081987 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.280355930 CEST | 49723 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.280687094 CEST | 49723 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.280704021 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.581479073 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.581602097 CEST | 49723 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.582977057 CEST | 49723 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.582987070 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.583213091 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.585313082 CEST | 49723 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.632122040 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.877063036 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.877144098 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.877245903 CEST | 49723 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.878252029 CEST | 49723 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.878271103 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:03.878284931 CEST | 49723 | 443 | 192.168.2.16 | 23.34.16.106 |
Apr 26, 2024 06:29:03.878290892 CEST | 443 | 49723 | 23.34.16.106 | 192.168.2.16 |
Apr 26, 2024 06:29:04.297833920 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:04.297871113 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:04.297961950 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:04.299228907 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:04.299241066 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:04.441191912 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
Apr 26, 2024 06:29:04.743855953 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
Apr 26, 2024 06:29:05.104748964 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.104922056 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.108043909 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.108053923 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.108340979 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.158883095 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.182986021 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.224123955 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.352799892 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
Apr 26, 2024 06:29:05.556320906 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:29:05.556394100 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:29:05.556453943 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:29:05.604892969 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
Apr 26, 2024 06:29:05.890445948 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.890505075 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.890515089 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.890547991 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.890598059 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.890629053 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.890629053 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.890641928 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.890664101 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.890773058 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.890796900 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.890886068 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.890887976 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.890944958 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.900763035 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.900791883 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:05.900863886 CEST | 49724 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:05.900871038 CEST | 443 | 49724 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:06.430902004 CEST | 49711 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:29:06.430922985 CEST | 443 | 49711 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:29:06.556855917 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
Apr 26, 2024 06:29:08.903995991 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
Apr 26, 2024 06:29:08.967844963 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
Apr 26, 2024 06:29:09.207922935 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
Apr 26, 2024 06:29:09.815201998 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
Apr 26, 2024 06:29:11.014867067 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
Apr 26, 2024 06:29:13.425837040 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
Apr 26, 2024 06:29:13.777873039 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
Apr 26, 2024 06:29:15.215878010 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
Apr 26, 2024 06:29:18.238861084 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
Apr 26, 2024 06:29:23.391870022 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
Apr 26, 2024 06:29:27.848999977 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
Apr 26, 2024 06:29:42.258205891 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:42.258282900 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:42.258460045 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:42.259443998 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:42.259484053 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.068528891 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.068628073 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.070113897 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.070127010 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.070453882 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.071978092 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.116159916 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870310068 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870368958 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870389938 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870521069 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.870521069 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.870543957 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870593071 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.870815039 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870868921 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870877981 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.870887041 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870933056 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.870940924 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870950937 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.870996952 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.874202967 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.874221087 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:43.874259949 CEST | 49725 | 443 | 192.168.2.16 | 40.68.123.157 |
Apr 26, 2024 06:29:43.874268055 CEST | 443 | 49725 | 40.68.123.157 | 192.168.2.16 |
Apr 26, 2024 06:29:55.101700068 CEST | 49727 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:29:55.101746082 CEST | 443 | 49727 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:29:55.101834059 CEST | 49727 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:29:55.102194071 CEST | 49727 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:29:55.102210045 CEST | 443 | 49727 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:29:55.474574089 CEST | 443 | 49727 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:29:55.474971056 CEST | 49727 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:29:55.474986076 CEST | 443 | 49727 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:29:55.475323915 CEST | 443 | 49727 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:29:55.475723028 CEST | 49727 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:29:55.475780010 CEST | 443 | 49727 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:29:55.526874065 CEST | 49727 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:30:05.471519947 CEST | 443 | 49727 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:30:05.471584082 CEST | 443 | 49727 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:30:05.471638918 CEST | 49727 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:30:06.429657936 CEST | 49727 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:30:06.429686069 CEST | 443 | 49727 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:30:07.006462097 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:07.006509066 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:07.006591082 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:07.006820917 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:07.006834984 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:07.454401016 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:07.454703093 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:07.454720974 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:07.455027103 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:07.455337048 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:07.455395937 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:07.455490112 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:07.496144056 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:08.923027039 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:08.974766970 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:08.974781990 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:08.977597952 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:08.977628946 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:08.977718115 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:08.977937937 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:08.977951050 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:09.022785902 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:09.427282095 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:09.427634954 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:09.427650928 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:09.428447008 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:09.428761005 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:09.428877115 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:09.428900003 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:09.469808102 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:09.469820023 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:09.994194984 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:10.043762922 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:13.915102005 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:13.915184975 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:13.915236950 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:14.418453932 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:14.418476105 CEST | 443 | 49728 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:14.418483973 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:14.418539047 CEST | 49728 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:14.994729042 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:14.994812012 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:14.994903088 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:16.430696964 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:16.430727005 CEST | 443 | 49729 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:16.430733919 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:16.430809021 CEST | 49729 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:27.627702951 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:27.627803087 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:27.627918959 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:27.628155947 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:27.628195047 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:28.073005915 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:28.073386908 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:28.073446989 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:28.073817968 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:28.074137926 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:28.074212074 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:28.074290037 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:28.120157003 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.336072922 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.388771057 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:29.388808966 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.391937971 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:29.391988993 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.392086029 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:29.392316103 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:29.392333031 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.436779976 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:29.841626883 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.841926098 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:29.841947079 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.842402935 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.842705011 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:29.842803001 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.842833996 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:29.884125948 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:29.897743940 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:30.383826017 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:30.424767971 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:34.337577105 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:34.337704897 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:34.337775946 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:34.425554991 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:34.425589085 CEST | 443 | 49731 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:34.425601006 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:34.425646067 CEST | 49731 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:35.384176016 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:35.384255886 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:35.384361029 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:36.419342041 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:36.419414997 CEST | 443 | 49732 | 192.232.216.145 | 192.168.2.16 |
Apr 26, 2024 06:30:36.419455051 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:36.419498920 CEST | 49732 | 443 | 192.168.2.16 | 192.232.216.145 |
Apr 26, 2024 06:30:55.157994986 CEST | 49733 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:30:55.158039093 CEST | 443 | 49733 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:30:55.158143997 CEST | 49733 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:30:55.158488035 CEST | 49733 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:30:55.158504963 CEST | 443 | 49733 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:30:55.605032921 CEST | 443 | 49733 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:30:55.605407000 CEST | 49733 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:30:55.605422020 CEST | 443 | 49733 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:30:55.606512070 CEST | 443 | 49733 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:30:55.606954098 CEST | 49733 | 443 | 192.168.2.16 | 192.178.50.68 |
Apr 26, 2024 06:30:55.607099056 CEST | 443 | 49733 | 192.178.50.68 | 192.168.2.16 |
Apr 26, 2024 06:30:55.652721882 CEST | 49733 | 443 | 192.168.2.16 | 192.178.50.68 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 06:28:50.317491055 CEST | 53260 | 53 | 192.168.2.16 | 1.1.1.1 |
Apr 26, 2024 06:28:50.317626953 CEST | 58067 | 53 | 192.168.2.16 | 1.1.1.1 |
Apr 26, 2024 06:28:50.322815895 CEST | 53 | 63084 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:28:50.360701084 CEST | 53 | 60357 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:28:50.466413021 CEST | 53 | 53260 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:28:50.595853090 CEST | 53 | 58067 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:28:51.302277088 CEST | 53 | 49231 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:28:52.064451933 CEST | 55043 | 53 | 192.168.2.16 | 1.1.1.1 |
Apr 26, 2024 06:28:52.064606905 CEST | 65501 | 53 | 192.168.2.16 | 1.1.1.1 |
Apr 26, 2024 06:28:52.211390972 CEST | 53 | 50838 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:28:55.045991898 CEST | 65315 | 53 | 192.168.2.16 | 1.1.1.1 |
Apr 26, 2024 06:28:55.046170950 CEST | 49352 | 53 | 192.168.2.16 | 1.1.1.1 |
Apr 26, 2024 06:28:55.193176031 CEST | 53 | 65315 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:28:55.193664074 CEST | 53 | 49352 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:28:55.684063911 CEST | 58061 | 53 | 192.168.2.16 | 1.1.1.1 |
Apr 26, 2024 06:28:55.684258938 CEST | 49240 | 53 | 192.168.2.16 | 1.1.1.1 |
Apr 26, 2024 06:28:55.887775898 CEST | 53 | 49240 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:28:55.970103025 CEST | 53 | 58061 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:29:08.273695946 CEST | 53 | 64352 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:29:26.991000891 CEST | 53 | 63183 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:29:50.051150084 CEST | 53 | 62255 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:29:50.326987028 CEST | 53 | 51009 | 1.1.1.1 | 192.168.2.16 |
Apr 26, 2024 06:30:00.612231970 CEST | 138 | 138 | 192.168.2.16 | 192.168.2.255 |
Apr 26, 2024 06:30:18.924000978 CEST | 53 | 54009 | 1.1.1.1 | 192.168.2.16 |
Timestamp | Source IP | Dest IP | Checksum | Code | Type |
---|---|---|---|---|---|
Apr 26, 2024 06:28:50.595917940 CEST | 192.168.2.16 | 1.1.1.1 | c227 | (Port unreachable) | Destination Unreachable |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 26, 2024 06:28:50.317491055 CEST | 192.168.2.16 | 1.1.1.1 | 0x9fb9 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 06:28:50.317626953 CEST | 192.168.2.16 | 1.1.1.1 | 0x6704 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 06:28:52.064451933 CEST | 192.168.2.16 | 1.1.1.1 | 0x999f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 06:28:52.064606905 CEST | 192.168.2.16 | 1.1.1.1 | 0xfaf3 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 06:28:55.045991898 CEST | 192.168.2.16 | 1.1.1.1 | 0xc9d8 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 06:28:55.046170950 CEST | 192.168.2.16 | 1.1.1.1 | 0x605 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 06:28:55.684063911 CEST | 192.168.2.16 | 1.1.1.1 | 0x82ae | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 06:28:55.684258938 CEST | 192.168.2.16 | 1.1.1.1 | 0xb91 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 26, 2024 06:28:50.466413021 CEST | 1.1.1.1 | 192.168.2.16 | 0x9fb9 | No error (0) | 192.232.216.145 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:52.211648941 CEST | 1.1.1.1 | 192.168.2.16 | 0x999f | No error (0) | use.fontawesome.com.cdn.cloudflare.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:52.211848021 CEST | 1.1.1.1 | 192.168.2.16 | 0xfaf3 | No error (0) | use.fontawesome.com.cdn.cloudflare.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:53.819974899 CEST | 1.1.1.1 | 192.168.2.16 | 0x9dde | No error (0) | part-0013.t-0009.t-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:53.819974899 CEST | 1.1.1.1 | 192.168.2.16 | 0x9dde | No error (0) | 13.107.213.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:53.819974899 CEST | 1.1.1.1 | 192.168.2.16 | 0x9dde | No error (0) | 13.107.246.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:54.723588943 CEST | 1.1.1.1 | 192.168.2.16 | 0xdc6f | No error (0) | part-0013.t-0009.t-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:54.723588943 CEST | 1.1.1.1 | 192.168.2.16 | 0xdc6f | No error (0) | 13.107.246.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:54.723588943 CEST | 1.1.1.1 | 192.168.2.16 | 0xdc6f | No error (0) | 13.107.213.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:55.193176031 CEST | 1.1.1.1 | 192.168.2.16 | 0xc9d8 | No error (0) | 192.178.50.68 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 06:28:55.193664074 CEST | 1.1.1.1 | 192.168.2.16 | 0x605 | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 06:28:55.970103025 CEST | 1.1.1.1 | 192.168.2.16 | 0x82ae | No error (0) | 192.232.216.145 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.16 | 49700 | 192.232.216.145 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:28:50 UTC | 568 | OUT | |
2024-04-26 04:28:51 UTC | 359 | IN | |
2024-04-26 04:28:51 UTC | 7833 | IN | |
2024-04-26 04:28:51 UTC | 8000 | IN | |
2024-04-26 04:28:51 UTC | 8000 | IN | |
2024-04-26 04:28:51 UTC | 8000 | IN | |
2024-04-26 04:28:51 UTC | 8000 | IN | |
2024-04-26 04:28:51 UTC | 8000 | IN | |
2024-04-26 04:28:51 UTC | 8000 | IN | |
2024-04-26 04:28:51 UTC | 8000 | IN | |
2024-04-26 04:28:51 UTC | 8000 | IN | |
2024-04-26 04:28:51 UTC | 8000 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.16 | 49705 | 192.232.216.145 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:28:54 UTC | 580 | OUT | |
2024-04-26 04:28:54 UTC | 49 | OUT | |
2024-04-26 04:28:55 UTC | 299 | IN | |
2024-04-26 04:28:55 UTC | 46 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.16 | 49706 | 13.107.213.41 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:28:54 UTC | 620 | OUT | |
2024-04-26 04:28:54 UTC | 800 | IN | |
2024-04-26 04:28:54 UTC | 1435 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.16 | 49707 | 13.107.213.41 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:28:54 UTC | 619 | OUT | |
2024-04-26 04:28:54 UTC | 806 | IN | |
2024-04-26 04:28:54 UTC | 673 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.16 | 49708 | 13.107.213.41 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:28:55 UTC | 576 | OUT | |
2024-04-26 04:28:55 UTC | 766 | IN | |
2024-04-26 04:28:55 UTC | 15618 | IN | |
2024-04-26 04:28:55 UTC | 1556 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.16 | 49710 | 13.107.246.41 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:28:55 UTC | 420 | OUT | |
2024-04-26 04:28:55 UTC | 800 | IN | |
2024-04-26 04:28:55 UTC | 1435 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.16 | 49709 | 13.107.246.41 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:28:55 UTC | 419 | OUT | |
2024-04-26 04:28:55 UTC | 806 | IN | |
2024-04-26 04:28:55 UTC | 673 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.16 | 49714 | 13.107.246.41 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:28:55 UTC | 376 | OUT | |
2024-04-26 04:28:56 UTC | 746 | IN | |
2024-04-26 04:28:56 UTC | 15638 | IN | |
2024-04-26 04:28:56 UTC | 1536 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.16 | 49715 | 192.232.216.145 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:28:56 UTC | 345 | OUT | |
2024-04-26 04:28:56 UTC | 301 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.16 | 49722 | 23.34.16.106 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:29:02 UTC | 161 | OUT | |
2024-04-26 04:29:03 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.16 | 49723 | 23.34.16.106 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:29:03 UTC | 239 | OUT | |
2024-04-26 04:29:03 UTC | 773 | IN | |
2024-04-26 04:29:03 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.16 | 49724 | 40.68.123.157 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:29:05 UTC | 306 | OUT | |
2024-04-26 04:29:05 UTC | 560 | IN | |
2024-04-26 04:29:05 UTC | 15824 | IN | |
2024-04-26 04:29:05 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
12 | 192.168.2.16 | 49725 | 40.68.123.157 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:29:43 UTC | 306 | OUT | |
2024-04-26 04:29:43 UTC | 560 | IN | |
2024-04-26 04:29:43 UTC | 15824 | IN | |
2024-04-26 04:29:43 UTC | 9633 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
13 | 192.168.2.16 | 49728 | 192.232.216.145 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:30:07 UTC | 580 | OUT | |
2024-04-26 04:30:07 UTC | 49 | OUT | |
2024-04-26 04:30:08 UTC | 299 | IN | |
2024-04-26 04:30:08 UTC | 46 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
14 | 192.168.2.16 | 49729 | 192.232.216.145 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:30:09 UTC | 345 | OUT | |
2024-04-26 04:30:09 UTC | 301 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
15 | 192.168.2.16 | 49731 | 192.232.216.145 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:30:28 UTC | 580 | OUT | |
2024-04-26 04:30:28 UTC | 49 | OUT | |
2024-04-26 04:30:29 UTC | 299 | IN | |
2024-04-26 04:30:29 UTC | 46 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
16 | 192.168.2.16 | 49732 | 192.232.216.145 | 443 | 6196 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 04:30:29 UTC | 345 | OUT | |
2024-04-26 04:30:30 UTC | 301 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 06:28:48 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff7f9810000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | false |
Target ID: | 2 |
Start time: | 06:28:49 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff7f9810000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | false |