Windows
Analysis Report
http://www.ensp.fiocruz.br/portal-ensp/entrevista/counter.php?content=http://owens-minor.com&contentid=32190&link=https://nabbeton.com/!
Overview
General Information
Detection
Score: | 60 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 6788 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 5308 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2088 --fi eld-trial- handle=201 2,i,840764 0223723030 326,178522 1234846887 2010,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 2352 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t http://2 4920850606 5339175713 0653436826 2033923223 2032338309 3403644966 8026160985 3560675097 8510306553 4120013181 7362917853 3777592003 9000160515 4889513680 0267487876 30195/ MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 6592 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2156 --fi eld-trial- handle=199 6,i,534804 1525371635 847,143409 5098801563 0701,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 1576 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt p://www.en sp.fiocruz .br/portal -ensp/entr evista/cou nter.php?c ontent=htt p://owens- minor.com& contentid= 32190&link =https://n abbeton.co m/!" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
AV Detection |
---|
Source: | Virustotal: | Perma Link |
Phishing |
---|
Source: | URL: | ||
Source: | URL: |
Source: | Matcher: |
Source: | Matcher: |
Source: | HTTPS traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | File created: | Jump to behavior |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: |
Source: | Window detected: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | 1 Registry Run Keys / Startup Folder | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | 1 Registry Run Keys / Startup Folder | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
11% | Virustotal | Browse |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
nabbeton.com | 217.144.104.57 | true | false | unknown | |
jsdelivr.map.fastly.net | 151.101.193.229 | true | false | unknown | |
bg.microsoft.map.fastly.net | 199.232.210.172 | true | false | unknown | |
www.ensp.fiocruz.br | 157.86.160.90 | true | false | high | |
www.google.com | 142.251.35.228 | true | false | high | |
fp2e7a.wpc.phicdn.net | 192.229.211.108 | true | false | unknown | |
cdn.jsdelivr.net | unknown | unknown | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false | high | ||
false |
| unknown | |
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
true | unknown | ||
false | high | ||
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false |
| unknown | ||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false |
| unknown | ||
false |
| low | ||
false | high | |||
false | high | |||
false | high | |||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
151.101.193.229 | jsdelivr.map.fastly.net | United States | 54113 | FASTLYUS | false | |
142.250.217.164 | unknown | United States | 15169 | GOOGLEUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
142.251.35.228 | www.google.com | United States | 15169 | GOOGLEUS | false | |
157.86.160.90 | www.ensp.fiocruz.br | Brazil | 21612 | FUNDACAOINSTITUTOOSWALDOCRUZBR | false | |
217.144.104.57 | nabbeton.com | Iran (ISLAMIC Republic Of) | 204213 | NETMIHANIR | false |
IP |
---|
192.168.2.5 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1432113 |
Start date and time: | 2024-04-26 14:08:28 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 48s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | http://www.ensp.fiocruz.br/portal-ensp/entrevista/counter.php?content=http://owens-minor.com&contentid=32190&link=https://nabbeton.com/! |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 9 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal60.phis.win@24/16@12/7 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 192.178.50.35, 142.250.217.174, 173.194.215.84, 34.104.35.123, 72.21.81.240, 199.232.210.172, 192.229.211.108, 20.3.187.198, 172.217.165.195, 199.232.214.172, 192.178.50.46, 23.45.182.68, 23.45.182.85, 23.45.182.97, 23.45.182.93
- Excluded domains from analysis (whitelisted): clients1.google.com, fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, clientservices.googleapis.com, ctldl.windowsupdate.com, a767.dspw65.akamai.net, wu-bg-shim.trafficmanager.net, fe3cr.delivery.mp.microsoft.com, download.windowsupdate.com.edgesuite.net, fe3.delivery.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, ocsp.digicert.com, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, update.googleapis.com, clients.l.google.com, www.gstatic.com
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
Source | URL |
---|---|
Screenshot | http://249208506065339175713065343682620339232232032338309340364496680261609853560675097851030655341200131817362917853377759200390001605154889513680026748787630195 |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2677 |
Entropy (8bit): | 3.9764501899915823 |
Encrypted: | false |
SSDEEP: | 48:8NdKT2GMHMidAKZdA19ehwiZUklqehLy+3:8K/70y |
MD5: | 3D8F83AD5C3A7DD41CFCD4334BE5E392 |
SHA1: | 9E75BCB0A17981447FABCFDC7E11182F55E00B5F |
SHA-256: | 5EE6A3B1BD6A71B2EC31B280B4BD13A7210CD94AC372F3538F8B34030E9D6242 |
SHA-512: | 290DD21D35C42E8AA8CFCC434052C5D61A19908D715C2BBAD47D492D6F9B2289860C1A7B1216EAF97738D22FCD323F66C30DB3B935ABF435F11EA1C5D07AEA20 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2679 |
Entropy (8bit): | 3.991185878577642 |
Encrypted: | false |
SSDEEP: | 48:88dKT2GMHMidAKZdA1weh/iZUkAQkqehky+2:8N/J9QVy |
MD5: | DD4D2013E8EC6A651F7C1A643269BEC1 |
SHA1: | 358653515A20893DC4C09E246D39FAAC88AEF11D |
SHA-256: | FBFB5C6944AFA5D8BA1AEA4D6D2A991842DE4E6156B558F810A82D286B1A26C3 |
SHA-512: | C5B4B9B1B2023AB4530A2532F9E7F7CA4741C1FF0CADABAEF6396AE15F5E85B77F1AA283E9A591C73048315EE3292235C0B229ABC77DE2E3C2D19E562097DE78 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2693 |
Entropy (8bit): | 4.000413317491086 |
Encrypted: | false |
SSDEEP: | 48:8xHdKT2GsHMidAKZdA14tseh7sFiZUkmgqeh7s+y+BX:8xk/Znoy |
MD5: | A7FA25259658238582515C4269CEEBC3 |
SHA1: | 53FFB9DF71C3FE0AA8FCE76E3DB6AB572FE0CBB7 |
SHA-256: | 37C18FEFB7E881876DAD605C57D8ADBDA43C69B6865E2D9169CB372EAE01DF5D |
SHA-512: | 6490E8934F0F05FA864CC03765EC1CD06B53306749FA4F2E95850BB29115CCD7419462995E26C35EDA58B830E35F8309D5DCF0DBC85C1F3898850003DA33DBD1 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2681 |
Entropy (8bit): | 3.9889184352294156 |
Encrypted: | false |
SSDEEP: | 48:8sdKT2GMHMidAKZdA1vehDiZUkwqehAy+R:89/K2y |
MD5: | D4E05BFF964D401396E1D99F10223160 |
SHA1: | F6C214492BBDDA03D06AC8B0324E1DA2F412AD98 |
SHA-256: | 2F6F6B037B64362A524325C45142E28A22F166C0CFBC6183FA0782B0533C1084 |
SHA-512: | F0ACE8508B4F9B01FB6B19CBE35DD8C5F87D1211358E00C1515EE10CEA2D612443C3B6B53ACE362614770B158570A9C59AA4A15B000DDAEC4EDB0F0CB78230F8 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2681 |
Entropy (8bit): | 3.9778254651270952 |
Encrypted: | false |
SSDEEP: | 48:8edKT2GMHMidAKZdA1hehBiZUk1W1qehyy+C:8H/q9Sy |
MD5: | 6A66BC12891E07F65BB090D8F01D7EAF |
SHA1: | 4D2E18070784445E270B0CEDAD4ED6D6A6F9D40A |
SHA-256: | 501661A76361500E197B546109DE51AAFCA40272E8F7FE762D7E31E624891EB6 |
SHA-512: | 61744C2DCF8AC2EFAA0C5D358F1698A0A13DDF079110B731F19F76F34FAB740B852FC5091462656FD96E004537BC14A681B291B7922B915A7FF6B2C79B5CE71C |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2683 |
Entropy (8bit): | 3.9862367621735504 |
Encrypted: | false |
SSDEEP: | 48:8fdKT2GMHMidAKZdA1duT+ehOuTbbiZUk5OjqehOuTboy+yT+:8M/0T/TbxWOvTboy7T |
MD5: | A22155F42C41334FD94C7BD2AB374C05 |
SHA1: | FCD6A6B26D1CFDB132723016AD7F22960C21FF88 |
SHA-256: | BA34B72A69E24B4772DC423379AAEB345BF84A9B9169E3431BEC20093E019EDF |
SHA-512: | 9BCED4F198537C0FEA25AEDBBC8C5F5E46ECB535BEF5F1C139179199115C0B897767FF28D1E200915CE98D9B7EB70816FB397C7D5BCF705912C5913321E44804 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 814 |
Entropy (8bit): | 5.1372934374438906 |
Encrypted: | false |
SSDEEP: | 24:Xw6UMD23494gQ4oBHslgT9lCuABuoB7HHHHHHHYqmffffffo:gVwQw4xKlgZ01BuSEqmffffffo |
MD5: | 3183739ABD197F30A55A312C9975BD23 |
SHA1: | A0EED09398044567D06795635E58670C2AD47763 |
SHA-256: | C114312A46A5A39E7E92F0A8490853FC03BDA7A3A98301D36B4100D6342D649D |
SHA-512: | 26919EA216F9F90986E076D64504A7B2F4B697873EE529DCB364CB5641472CD9CB3225F35093CD3E488C1B8B9F2D9E9EE6B4E1592B7353CB641383857B0DFAA7 |
Malicious: | false |
Reputation: | low |
URL: | https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&oft=1&pgcl=20&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 10729 |
Entropy (8bit): | 5.550330238193615 |
Encrypted: | false |
SSDEEP: | 192:kcY2jzETPnfL69pYZW9OYnYtRl7BRj6ezc0eIfP1o3O:/qQuWOsYtRZj6eY0joO |
MD5: | 26AB32573828DCFA4579694CDC85502D |
SHA1: | 6C906CC598527B322107569684858873214EC155 |
SHA-256: | F972CFDA1A5CCFE154344673BC30A3F56AE86F1C5BA8FE4E2242C715D85F773C |
SHA-512: | 715A53B411A51A5D9419694A0A1806ED5924010EB3525A2F1FFFD9A97C86E7036B7A849A7276336B9033C856571A0E5315D0FCF57B551D7474AA816BD435C166 |
Malicious: | false |
Reputation: | low |
URL: | https://cdn.jsdelivr.net/npm/js-md5@0.8.3/src/md5.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 42290 |
Entropy (8bit): | 4.326887399255793 |
Encrypted: | false |
SSDEEP: | 384:oFOIulJiTDepv5xk41e3NlqOl5tIOhmkHUB6tf3tYUJf:hy41e3Nxlffhmvw/tYu |
MD5: | 7893A791E3F4166C74F5C2AEEE6B072C |
SHA1: | EC72032243B4A462BAC4649563A4CC338768F736 |
SHA-256: | 97AA2B4DC4376718D5C2F02810023551FA8764D4A875C735FB0D554F46E4AD95 |
SHA-512: | D39CCD9CCEBCD823EE0CE612FF0DBCEFBD30B50B2CC503A67B262AF8B866EAB4185900D0234297A5BF4A8CEABDCE78299B5746EDF738176AAD4AC347BE60479B |
Malicious: | false |
Reputation: | low |
URL: | https://nabbeton.com/!/ |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1222 |
Entropy (8bit): | 5.818804287152988 |
Encrypted: | false |
SSDEEP: | 24:2jkm94/zKPccAv+KVCLTLv138EgFB5vtTGJTlWtRcw1MuhtsLqo40RWUnYN:VKEctKonR3evtTA87b1Muh6LrwUnG |
MD5: | 463D838587C8B5873CB6E4E942B770C9 |
SHA1: | E69DCF383A6F3F51F123CA2D86F19FC4BE09E612 |
SHA-256: | 1448EC1B3F30A554233BD280AA99A7EAF690D1098647E7DDDEA286C757884F9C |
SHA-512: | F02DE64A37B90492D714CC7D132C49BF29CB5117CA945258BAF5B36D087A3A2AED165C6FF37D2ED4E4F10D7199AFB9C2B5E2555BA1BECA1A8D3AE133F4DF4B23 |
Malicious: | false |
Reputation: | low |
URL: | https://www.google.com/recaptcha/api.js?render=6LeHuMMpAAAAABiEPEEmflNkcOSMpz3Up0FkOmgt |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 517649 |
Entropy (8bit): | 5.713376874006511 |
Encrypted: | false |
SSDEEP: | 6144:m1K1Z7NMxjW6eJoWvAlUjWwuMSYCVvLk8DSWd1Ps8Jz38iZc:m6eWTAujfuPY0JGgkt |
MD5: | E2E79D6B927169D9E0E57E3BAECC0993 |
SHA1: | 1299473950B2999BA0B7F39BD5E4A60EAFD1819D |
SHA-256: | 231336ED913A5EBD4445B85486E053CAF2B81CAB91318241375F3F7A245B6C6B |
SHA-512: | D6A2ED7B19E54D1447EE9BBC684AF7101B48086945A938A5F9B6AE74ACE30B9A98CA83D3183814DD3CC40F251AB6433DC7F8B425F313EA9557B83E1C2E035DFF |
Malicious: | false |
Reputation: | low |
URL: | https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 14:09:11.083077908 CEST | 49675 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:11.083091021 CEST | 49674 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:11.208091974 CEST | 49673 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:18.406200886 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.406260967 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.406394958 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.406903982 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.406919956 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.443015099 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.443044901 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.443248987 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.443526030 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.443573952 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.443625927 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.444206953 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.444237947 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.444439888 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.444463968 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.444477081 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.444693089 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.444710970 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.444875002 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.444894075 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.752351046 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.752577066 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.752607107 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.754030943 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.754096985 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.755074024 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.755175114 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.755242109 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.755250931 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.774590015 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.775115013 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.775155067 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.778512955 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.778681993 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.779519081 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.779613018 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.779789925 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.824160099 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.831214905 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.831525087 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.831537008 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.832082987 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.832484007 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.832504034 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.832966089 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.833039999 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.833530903 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.833589077 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.834002018 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.834078074 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.834933996 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.835010052 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.835284948 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.835290909 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.884753942 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.884769917 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.884779930 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.884797096 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:18.947310925 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:18.947341919 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.087922096 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.094449997 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.094515085 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.094633102 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.094675064 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.096142054 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.096223116 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.096474886 CEST | 49707 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.096493959 CEST | 443 | 49707 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.150291920 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.408539057 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.408628941 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.408699036 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.408869028 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.408929110 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.409518957 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.409564018 CEST | 443 | 49709 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.409589052 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.409615040 CEST | 49709 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.411386013 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.452120066 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.611768961 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.611808062 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.611850023 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.611869097 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.611952066 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.611994982 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.662992954 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.663045883 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.663064957 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.663110971 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.663156986 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.701536894 CEST | 49710 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.701561928 CEST | 443 | 49710 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.780472040 CEST | 49708 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.780484915 CEST | 443 | 49708 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.865080118 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.865112066 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:19.865174055 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.865499973 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:19.865506887 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:20.200043917 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:20.337158918 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:20.697875023 CEST | 49674 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:20.744802952 CEST | 49675 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:20.850121975 CEST | 49673 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:21.121488094 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:21.121514082 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.122899055 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.123997927 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:21.124221087 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.124286890 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:21.168157101 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.295267105 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.295399904 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.295450926 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:21.295466900 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.295672894 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.295721054 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:21.322582960 CEST | 49713 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:21.322594881 CEST | 443 | 49713 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.938474894 CEST | 49716 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:21.938584089 CEST | 443 | 49716 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:21.938687086 CEST | 49716 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:21.938983917 CEST | 49716 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:21.939044952 CEST | 443 | 49716 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:22.273468971 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Apr 26, 2024 14:09:22.273608923 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:22.640607119 CEST | 443 | 49716 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:22.643342972 CEST | 49716 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:22.643371105 CEST | 443 | 49716 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:22.644464016 CEST | 443 | 49716 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:22.646388054 CEST | 49716 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:22.646704912 CEST | 443 | 49716 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:22.743586063 CEST | 49716 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:27.905599117 CEST | 49717 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:27.905658960 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:27.905724049 CEST | 49717 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:27.908473015 CEST | 49717 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:27.908489943 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.168292046 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.168385029 CEST | 49717 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.178729057 CEST | 49717 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.178764105 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.179133892 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.227057934 CEST | 49717 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.268115044 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.464798927 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.465080023 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.465130091 CEST | 49717 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.483927011 CEST | 49717 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.483980894 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.484015942 CEST | 49717 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.484031916 CEST | 443 | 49717 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.625112057 CEST | 49718 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.625195980 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.625277996 CEST | 49718 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.626647949 CEST | 49718 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.626679897 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.882204056 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.882302999 CEST | 49718 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.888390064 CEST | 49718 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.888425112 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.888650894 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:28.890943050 CEST | 49718 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:28.932163954 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:29.141551018 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:29.141673088 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:29.141731977 CEST | 49718 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:29.143578053 CEST | 49718 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:29.143609047 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:29.143635988 CEST | 49718 | 443 | 192.168.2.5 | 23.193.120.112 |
Apr 26, 2024 14:09:29.143652916 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.5 |
Apr 26, 2024 14:09:31.226699114 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:31.226732969 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:31.226804018 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:31.228132010 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:31.228146076 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:31.722073078 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:31.722168922 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:31.725857973 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:31.725867033 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:31.726114035 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:31.774684906 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:32.219685078 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:32.260123968 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.426078081 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:32.426240921 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:32.426712990 CEST | 49724 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:32.426778078 CEST | 443 | 49724 | 23.1.237.91 | 192.168.2.5 |
Apr 26, 2024 14:09:32.426914930 CEST | 49724 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:32.427249908 CEST | 49724 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:32.427294016 CEST | 443 | 49724 | 23.1.237.91 | 192.168.2.5 |
Apr 26, 2024 14:09:32.543119907 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.543145895 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.543153048 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.543168068 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.543205976 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:32.543220043 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.543262959 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:32.543266058 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.543277025 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.543277979 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:32.543323040 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:32.543345928 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:32.543351889 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.543498993 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:32.623361111 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Apr 26, 2024 14:09:32.623384953 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Apr 26, 2024 14:09:32.631155014 CEST | 443 | 49716 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:32.631294966 CEST | 443 | 49716 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:32.631352901 CEST | 49716 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:32.745518923 CEST | 49716 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:09:32.745543957 CEST | 443 | 49716 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:09:32.837677002 CEST | 49719 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:09:32.837701082 CEST | 443 | 49719 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:09:32.854175091 CEST | 443 | 49724 | 23.1.237.91 | 192.168.2.5 |
Apr 26, 2024 14:09:32.854264975 CEST | 49724 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:46.363616943 CEST | 49727 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:46.364516020 CEST | 49728 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:46.404968977 CEST | 49729 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:46.606457949 CEST | 80 | 49728 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:09:46.606563091 CEST | 80 | 49727 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:09:46.606565952 CEST | 49728 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:46.606676102 CEST | 49727 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:46.608047009 CEST | 49727 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:46.647876978 CEST | 80 | 49729 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:09:46.647964954 CEST | 49729 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:46.850385904 CEST | 80 | 49727 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:09:47.827694893 CEST | 80 | 49729 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:09:47.827758074 CEST | 80 | 49728 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:09:47.827774048 CEST | 49729 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:47.827826977 CEST | 49728 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:51.257803917 CEST | 80 | 49727 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:09:51.257873058 CEST | 49727 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:51.259605885 CEST | 49727 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:09:51.502096891 CEST | 80 | 49727 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:09:51.836323977 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:51.836400986 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:51.836479902 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:51.836764097 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:51.836796045 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:52.041302919 CEST | 443 | 49724 | 23.1.237.91 | 192.168.2.5 |
Apr 26, 2024 14:09:52.041506052 CEST | 49724 | 443 | 192.168.2.5 | 23.1.237.91 |
Apr 26, 2024 14:09:53.527836084 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:53.530899048 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:53.530973911 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:53.532032013 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:53.532114983 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:53.540018082 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:53.540117025 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:53.541093111 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:53.541126013 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:53.587097883 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.205813885 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.206008911 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.206104994 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.206365108 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.206412077 CEST | 443 | 49730 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.206440926 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.206468105 CEST | 49730 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.209477901 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.209513903 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.209717989 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.210313082 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.210325003 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.892538071 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.892839909 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.892860889 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.893960953 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.894334078 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.894490004 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:54.894495010 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.894506931 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:54.943342924 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:55.561842918 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:55.614342928 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:55.614367008 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:55.662352085 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:55.894073963 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:55.894087076 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:55.894167900 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:55.894175053 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:55.894220114 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:55.894248962 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:55.894259930 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:55.894268990 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:55.894273996 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:55.894290924 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:55.943676949 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.135114908 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.135170937 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.135312080 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.138375044 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.138403893 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:09:56.138467073 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.141030073 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.141043901 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:09:56.141851902 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.141880035 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.435374022 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.435864925 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.435897112 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.437329054 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.437455893 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.438903093 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.438903093 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.438936949 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.439012051 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.493869066 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.493895054 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.526983976 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:09:56.529215097 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.529247999 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:09:56.530632973 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:09:56.530780077 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.531481028 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.531622887 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:09:56.533869982 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.533888102 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:09:56.541387081 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.554486990 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.554516077 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.554532051 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.554574013 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.554591894 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.554622889 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.554622889 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.554653883 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.554666042 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.554678917 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.554678917 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.554702997 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.586901903 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.586929083 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.586963892 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.586966038 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.586998940 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.587146997 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.587178946 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.590125084 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.590693951 CEST | 49731 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:09:56.590709925 CEST | 443 | 49731 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:09:56.707245111 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.707365036 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.707393885 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.707426071 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.707451105 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.707468987 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.707499981 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.707540989 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.707639933 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.709927082 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.714520931 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.714612007 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.714637995 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.717087984 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.717731953 CEST | 49732 | 443 | 192.168.2.5 | 151.101.193.229 |
Apr 26, 2024 14:09:56.717758894 CEST | 443 | 49732 | 151.101.193.229 | 192.168.2.5 |
Apr 26, 2024 14:09:56.922429085 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:09:56.922600031 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:09:56.925988913 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.926243067 CEST | 49733 | 443 | 192.168.2.5 | 142.250.217.164 |
Apr 26, 2024 14:09:56.926275969 CEST | 443 | 49733 | 142.250.217.164 | 192.168.2.5 |
Apr 26, 2024 14:10:01.105782986 CEST | 49735 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:01.105870008 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:01.105943918 CEST | 49735 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:01.107032061 CEST | 49735 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:01.107070923 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:01.778067112 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:01.787775040 CEST | 49735 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:01.787805080 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:01.788942099 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:01.789654016 CEST | 49735 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:01.789841890 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:01.790380001 CEST | 49735 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:01.836114883 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:02.488375902 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:02.488574982 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:02.488655090 CEST | 49735 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:03.455091000 CEST | 49735 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:03.455125093 CEST | 443 | 49735 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:04.604018927 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:04.604072094 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:04.604124069 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:04.604482889 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:04.604497910 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:05.268913031 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:05.269252062 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:05.269270897 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:05.272783041 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:05.272851944 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:05.273418903 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:05.273569107 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:05.273590088 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:05.399960995 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:05.399976015 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:05.603082895 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:05.931274891 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:05.931452036 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:05.932169914 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:05.934514046 CEST | 49737 | 443 | 192.168.2.5 | 217.144.104.57 |
Apr 26, 2024 14:10:05.934533119 CEST | 443 | 49737 | 217.144.104.57 | 192.168.2.5 |
Apr 26, 2024 14:10:11.593146086 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:11.593245029 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:11.593322992 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:11.593915939 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:11.593940973 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.100558043 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.100644112 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.104382038 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.104389906 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.104713917 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.114888906 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.156142950 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.579741001 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.579832077 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.579910040 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.579942942 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.579982996 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.580008984 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.580034971 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.580192089 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.580243111 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.580271006 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.580295086 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.580468893 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.580521107 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.674194098 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.674194098 CEST | 49738 | 443 | 192.168.2.5 | 13.85.23.86 |
Apr 26, 2024 14:10:12.674252987 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:12.674280882 CEST | 443 | 49738 | 13.85.23.86 | 192.168.2.5 |
Apr 26, 2024 14:10:21.995562077 CEST | 49740 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:10:21.995598078 CEST | 443 | 49740 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:10:21.995667934 CEST | 49740 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:10:21.996167898 CEST | 49740 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:10:21.996182919 CEST | 443 | 49740 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:10:22.390149117 CEST | 443 | 49740 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:10:22.391568899 CEST | 49740 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:10:22.391583920 CEST | 443 | 49740 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:10:22.392700911 CEST | 443 | 49740 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:10:22.393039942 CEST | 49740 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:10:22.393223047 CEST | 443 | 49740 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:10:22.446846962 CEST | 49740 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:10:31.618071079 CEST | 49728 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:10:31.649429083 CEST | 49729 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:10:31.860239029 CEST | 80 | 49728 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:10:31.891295910 CEST | 80 | 49729 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:10:32.376554966 CEST | 443 | 49740 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:10:32.376722097 CEST | 443 | 49740 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:10:32.376784086 CEST | 49740 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:10:32.747400045 CEST | 49740 | 443 | 192.168.2.5 | 142.251.35.228 |
Apr 26, 2024 14:10:32.747423887 CEST | 443 | 49740 | 142.251.35.228 | 192.168.2.5 |
Apr 26, 2024 14:10:46.745098114 CEST | 49728 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:10:46.745182991 CEST | 49729 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:10:46.987570047 CEST | 80 | 49729 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:10:46.987636089 CEST | 49729 | 80 | 192.168.2.5 | 157.86.160.90 |
Apr 26, 2024 14:10:46.988409996 CEST | 80 | 49728 | 157.86.160.90 | 192.168.2.5 |
Apr 26, 2024 14:10:46.988471031 CEST | 49728 | 80 | 192.168.2.5 | 157.86.160.90 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 14:09:17.596519947 CEST | 53 | 56249 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:17.815695047 CEST | 53 | 53209 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:18.254507065 CEST | 56532 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:18.254662037 CEST | 54220 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:18.384888887 CEST | 53 | 56532 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:18.384951115 CEST | 53 | 54220 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:18.719074965 CEST | 53 | 52119 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:35.652015924 CEST | 53 | 51389 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:45.769289970 CEST | 54711 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:45.769527912 CEST | 55361 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:46.163727999 CEST | 53 | 55361 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:46.362099886 CEST | 53 | 54711 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:51.260706902 CEST | 55246 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:51.260977030 CEST | 63116 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:51.830138922 CEST | 53 | 55246 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:51.835824966 CEST | 53 | 63116 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:55.996067047 CEST | 59678 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:55.997390985 CEST | 59308 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:55.998488903 CEST | 61334 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:55.999073982 CEST | 53209 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:09:56.094012022 CEST | 53 | 51848 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:56.121417999 CEST | 53 | 59678 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:56.122697115 CEST | 53 | 59308 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:56.124295950 CEST | 53 | 53209 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:56.124366999 CEST | 53 | 61334 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:09:57.116750002 CEST | 53 | 64816 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:10:04.029439926 CEST | 62113 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:10:04.029583931 CEST | 55335 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 26, 2024 14:10:04.575259924 CEST | 53 | 62113 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:10:04.603468895 CEST | 53 | 55335 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:10:17.314778090 CEST | 53 | 59171 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:10:19.846971035 CEST | 53 | 55229 | 1.1.1.1 | 192.168.2.5 |
Apr 26, 2024 14:10:45.274555922 CEST | 53 | 54573 | 1.1.1.1 | 192.168.2.5 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 26, 2024 14:09:18.254507065 CEST | 192.168.2.5 | 1.1.1.1 | 0x3793 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:09:18.254662037 CEST | 192.168.2.5 | 1.1.1.1 | 0x472 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 14:09:45.769289970 CEST | 192.168.2.5 | 1.1.1.1 | 0xb1c4 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:09:45.769527912 CEST | 192.168.2.5 | 1.1.1.1 | 0x4942 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 14:09:51.260706902 CEST | 192.168.2.5 | 1.1.1.1 | 0xdc8c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:09:51.260977030 CEST | 192.168.2.5 | 1.1.1.1 | 0x2073 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 14:09:55.996067047 CEST | 192.168.2.5 | 1.1.1.1 | 0xa5fc | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:09:55.997390985 CEST | 192.168.2.5 | 1.1.1.1 | 0x1dbc | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 14:09:55.998488903 CEST | 192.168.2.5 | 1.1.1.1 | 0xf600 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:09:55.999073982 CEST | 192.168.2.5 | 1.1.1.1 | 0xeebb | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 14:10:04.029439926 CEST | 192.168.2.5 | 1.1.1.1 | 0x36b0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:10:04.029583931 CEST | 192.168.2.5 | 1.1.1.1 | 0xfbea | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 26, 2024 14:09:18.384888887 CEST | 1.1.1.1 | 192.168.2.5 | 0x3793 | No error (0) | 142.251.35.228 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:18.384951115 CEST | 1.1.1.1 | 192.168.2.5 | 0x472 | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 14:09:31.914082050 CEST | 1.1.1.1 | 192.168.2.5 | 0xe590 | No error (0) | 199.232.210.172 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:31.914082050 CEST | 1.1.1.1 | 192.168.2.5 | 0xe590 | No error (0) | 199.232.214.172 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:32.168150902 CEST | 1.1.1.1 | 192.168.2.5 | 0x86a0 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:32.168150902 CEST | 1.1.1.1 | 192.168.2.5 | 0x86a0 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:45.755966902 CEST | 1.1.1.1 | 192.168.2.5 | 0xa24b | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:45.755966902 CEST | 1.1.1.1 | 192.168.2.5 | 0xa24b | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:46.362099886 CEST | 1.1.1.1 | 192.168.2.5 | 0xb1c4 | No error (0) | 157.86.160.90 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:51.830138922 CEST | 1.1.1.1 | 192.168.2.5 | 0xdc8c | No error (0) | 217.144.104.57 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:56.121417999 CEST | 1.1.1.1 | 192.168.2.5 | 0xa5fc | No error (0) | 142.250.217.164 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:56.122697115 CEST | 1.1.1.1 | 192.168.2.5 | 0x1dbc | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 14:09:56.124295950 CEST | 1.1.1.1 | 192.168.2.5 | 0xeebb | No error (0) | jsdelivr.map.fastly.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:56.124366999 CEST | 1.1.1.1 | 192.168.2.5 | 0xf600 | No error (0) | jsdelivr.map.fastly.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:56.124366999 CEST | 1.1.1.1 | 192.168.2.5 | 0xf600 | No error (0) | 151.101.193.229 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:56.124366999 CEST | 1.1.1.1 | 192.168.2.5 | 0xf600 | No error (0) | 151.101.65.229 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:56.124366999 CEST | 1.1.1.1 | 192.168.2.5 | 0xf600 | No error (0) | 151.101.1.229 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:09:56.124366999 CEST | 1.1.1.1 | 192.168.2.5 | 0xf600 | No error (0) | 151.101.129.229 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:10:04.575259924 CEST | 1.1.1.1 | 192.168.2.5 | 0x36b0 | No error (0) | 217.144.104.57 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:10:12.389290094 CEST | 1.1.1.1 | 192.168.2.5 | 0x69cc | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 14:10:12.389290094 CEST | 1.1.1.1 | 192.168.2.5 | 0x69cc | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:10:30.541098118 CEST | 1.1.1.1 | 192.168.2.5 | 0x53b1 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 14:10:30.541098118 CEST | 1.1.1.1 | 192.168.2.5 | 0x53b1 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:10:33.176476002 CEST | 1.1.1.1 | 192.168.2.5 | 0x8c2 | No error (0) | 199.232.214.172 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:10:33.176476002 CEST | 1.1.1.1 | 192.168.2.5 | 0x8c2 | No error (0) | 199.232.210.172 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.5 | 49727 | 157.86.160.90 | 80 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 26, 2024 14:09:46.608047009 CEST | 543 | OUT | |
Apr 26, 2024 14:09:51.257803917 CEST | 711 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.5 | 49728 | 157.86.160.90 | 80 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 26, 2024 14:10:31.618071079 CEST | 6 | OUT |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.5 | 49729 | 157.86.160.90 | 80 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 26, 2024 14:10:31.649429083 CEST | 6 | OUT |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.5 | 49707 | 142.251.35.228 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:18 UTC | 615 | OUT | |
2024-04-26 12:09:19 UTC | 1703 | IN | |
2024-04-26 12:09:19 UTC | 821 | IN | |
2024-04-26 12:09:19 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.5 | 49709 | 142.251.35.228 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:18 UTC | 518 | OUT | |
2024-04-26 12:09:19 UTC | 1843 | IN | |
2024-04-26 12:09:19 UTC | 458 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.5 | 49708 | 142.251.35.228 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:18 UTC | 353 | OUT | |
2024-04-26 12:09:19 UTC | 1761 | IN | |
2024-04-26 12:09:19 UTC | 417 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.5 | 49710 | 142.251.35.228 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:19 UTC | 920 | OUT | |
2024-04-26 12:09:19 UTC | 356 | IN | |
2024-04-26 12:09:19 UTC | 899 | IN | |
2024-04-26 12:09:19 UTC | 1255 | IN | |
2024-04-26 12:09:19 UTC | 1032 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.5 | 49713 | 142.251.35.228 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:21 UTC | 738 | OUT | |
2024-04-26 12:09:21 UTC | 356 | IN | |
2024-04-26 12:09:21 UTC | 899 | IN | |
2024-04-26 12:09:21 UTC | 1255 | IN | |
2024-04-26 12:09:21 UTC | 960 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.5 | 49717 | 23.193.120.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:28 UTC | 161 | OUT | |
2024-04-26 12:09:28 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.5 | 49718 | 23.193.120.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:28 UTC | 239 | OUT | |
2024-04-26 12:09:29 UTC | 530 | IN | |
2024-04-26 12:09:29 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.5 | 49719 | 13.85.23.86 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:32 UTC | 306 | OUT | |
2024-04-26 12:09:32 UTC | 560 | IN | |
2024-04-26 12:09:32 UTC | 15824 | IN | |
2024-04-26 12:09:32 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.5 | 49730 | 217.144.104.57 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:53 UTC | 656 | OUT | |
2024-04-26 12:09:54 UTC | 364 | IN | |
2024-04-26 12:09:54 UTC | 707 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.5 | 49731 | 217.144.104.57 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:54 UTC | 657 | OUT | |
2024-04-26 12:09:55 UTC | 384 | IN | |
2024-04-26 12:09:55 UTC | 980 | IN | |
2024-04-26 12:09:55 UTC | 14987 | IN | |
2024-04-26 12:09:56 UTC | 16384 | IN | |
2024-04-26 12:09:56 UTC | 9939 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.5 | 49732 | 151.101.193.229 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:56 UTC | 543 | OUT | |
2024-04-26 12:09:56 UTC | 775 | IN | |
2024-04-26 12:09:56 UTC | 1378 | IN | |
2024-04-26 12:09:56 UTC | 1378 | IN | |
2024-04-26 12:09:56 UTC | 1378 | IN | |
2024-04-26 12:09:56 UTC | 1378 | IN | |
2024-04-26 12:09:56 UTC | 1378 | IN | |
2024-04-26 12:09:56 UTC | 1378 | IN | |
2024-04-26 12:09:56 UTC | 1378 | IN | |
2024-04-26 12:09:56 UTC | 1083 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.5 | 49733 | 142.250.217.164 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:09:56 UTC | 882 | OUT | |
2024-04-26 12:09:56 UTC | 528 | IN | |
2024-04-26 12:09:56 UTC | 727 | IN | |
2024-04-26 12:09:56 UTC | 502 | IN | |
2024-04-26 12:09:56 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
12 | 192.168.2.5 | 49735 | 217.144.104.57 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:10:01 UTC | 592 | OUT | |
2024-04-26 12:10:02 UTC | 327 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
13 | 192.168.2.5 | 49737 | 217.144.104.57 | 443 | 5308 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:10:05 UTC | 357 | OUT | |
2024-04-26 12:10:05 UTC | 327 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
14 | 192.168.2.5 | 49738 | 13.85.23.86 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:10:12 UTC | 306 | OUT | |
2024-04-26 12:10:12 UTC | 560 | IN | |
2024-04-26 12:10:12 UTC | 15824 | IN | |
2024-04-26 12:10:12 UTC | 9633 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 14:09:10 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 1 |
Start time: | 14:09:16 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 14:09:17 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 4 |
Start time: | 14:09:17 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 7 |
Start time: | 14:09:43 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |