Windows
Analysis Report
POattach.html
Overview
General Information
Detection
Score: | 60 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 2744 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "C:\Us ers\user\D esktop\POa ttach.html " MD5: 5BBFA6CBDF4C254EB368D534F9E23C92) - chrome.exe (PID: 6280 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2016 --fi eld-trial- handle=199 2,i,427533 0503968366 977,144747 1189862507 9558,26214 4 /prefetc h:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
- chrome.exe (PID: 716 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t http://7 3975907836 8945019535 2315164314 0112627322 7452560306 561161109/ MD5: 5BBFA6CBDF4C254EB368D534F9E23C92) - chrome.exe (PID: 2420 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2068 --fi eld-trial- handle=201 6,i,102067 3713911304 9155,15613 7131087846 48929,2621 44 --disab le-feature s=Optimiza tionGuideM odelDownlo ading,Opti mizationHi nts,Optimi zationHint sFetching, Optimizati onTargetPr ediction / prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
- cleanup
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_HtmlPhish_10 | Yara detected HtmlPhish_10 | Joe Security |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_HtmlPhish_10 | Yara detected HtmlPhish_10 | Joe Security |
Click to jump to signature section
Phishing |
---|
Source: | File source: | ||
Source: | File source: |
Source: | URL: | ||
Source: | URL: |
Source: | Matcher: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: |
Source: | JA3 fingerprint: | ||
Source: | JA3 fingerprint: |
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Stealing of Sensitive Information |
---|
Source: | HTTP Parser: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | ReversingLabs | |||
0% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
1% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
2% | Virustotal | Browse | ||
1% | Virustotal | Browse |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
stackpath.bootstrapcdn.com | 104.18.11.207 | true | false | high | |
i.postimg.cc | 162.249.168.129 | true | false |
| unknown |
www.google.com | 142.250.64.196 | true | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false |
| unknown | |
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
true |
| low |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false | high | |||
false | high | |||
false |
| unknown | ||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
162.249.168.129 | i.postimg.cc | United States | 26548 | PUREVOLTAGE-INCUS | false | |
104.18.11.207 | stackpath.bootstrapcdn.com | United States | 13335 | CLOUDFLARENETUS | false | |
142.250.64.196 | www.google.com | United States | 15169 | GOOGLEUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false |
IP |
---|
192.168.2.6 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1432115 |
Start date and time: | 2024-04-26 14:15:26 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 5m 34s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultwindowshtmlcookbook.jbs |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 8 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Sample name: | POattach.html |
Detection: | MAL |
Classification: | mal60.phis.winHTML@33/9@8/5 |
EGA Information: | Failed |
HCA Information: |
|
Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 142.250.189.131, 142.250.217.238, 173.194.216.84, 142.250.64.170, 34.104.35.123, 72.21.81.240, 192.229.211.108, 172.217.165.202, 142.250.217.234, 142.251.35.234, 142.250.64.202, 172.217.3.74, 172.217.2.202, 192.178.50.74, 142.250.217.202, 172.217.15.202, 192.178.50.42, 142.250.217.170, 142.250.189.138, 142.250.64.234, 142.250.64.138, 172.217.3.67, 142.250.64.206
- Excluded domains from analysis (whitelisted): clients1.google.com, fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, ajax.googleapis.com, ctldl.windowsupdate.com, clientservices.googleapis.com, fe3cr.delivery.mp.microsoft.com, clients2.google.com, ocsp.digicert.com, edgedl.me.gvt1.com, update.googleapis.com, clients.l.google.com, optimizationguide-pa.googleapis.com
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
Source | URL |
---|---|
Screenshot | http://739759078368945019535231516431401126273227452560306561161109 |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
162.249.168.129 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
104.18.11.207 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
239.255.255.250 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
stackpath.bootstrapcdn.com | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
i.postimg.cc | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
PUREVOLTAGE-INCUS | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | LummaC, DarkTortilla, LummaC Stealer, PureLog Stealer, RedLine, zgRAT | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Phisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
CLOUDFLARENETUS | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | RisePro Stealer | Browse |
| ||
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
1138de370e523e824bbca92d049a3777 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
Get hash | malicious | Fake Captcha, HTMLPhisher | Browse |
| ||
28a2c9bd18a11de089ef85a160da29e4 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
|
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 776 |
Entropy (8bit): | 5.147793957765601 |
Encrypted: | false |
SSDEEP: | 24:eBC3BHslgT9lCuABuoB7HHHHHHHYqmffffffo:eA3KlgZ01BuSEqmffffffo |
MD5: | 57DA7E99E5AE2817102B95018D381B22 |
SHA1: | C16358FA9660814759D606A93A746DAFAE101F08 |
SHA-256: | 5D14ED1B429A9BBAA00F6D022F00CCB47FCCD21B76E2E21E11C34E2A66C3C119 |
SHA-512: | 24AA0FC54C646CF8C8BC6B5F2F01723AE3DE853C2E02BAEC89E824C2974FDB1C43C3B46869BD20E00479E345866A6BC351166905239DD5EF294406BC071EACC6 |
Malicious: | false |
Reputation: | low |
URL: | https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&oft=1&pgcl=20&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 25062 |
Entropy (8bit): | 7.721988384978091 |
Encrypted: | false |
SSDEEP: | 768:tEuGxt8VNlBijhYDAgzxnKAZTjrc/6CrKT26vF0RRs:tEuGX8VNlsjhYxc8TCWT26t0Ts |
MD5: | 3925D979AA4FBB0CDA622E0399410206 |
SHA1: | 65B08E675411AC540EF56C0096C8AB415231B0DD |
SHA-256: | 4DCDCDA6574CBD484F47266B5572A8689BB2B5F06FE1F8218F1B6A0578845014 |
SHA-512: | 5C6071C61B9B6D5AB650590761F974F53411E79BF8A8CA6429FD385AC17B0A2A6B9D79A3DCDAFFB3A638CA1F87258842384E8D44847B4BA9B11D700EF59DBEBD |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 51039 |
Entropy (8bit): | 5.247253437401007 |
Encrypted: | false |
SSDEEP: | 768:E9Yw7GuJM+HV0cen/7Kh5rM7V4RxCKg8FW/xsXQUd+FiID65r48Hgp5HRl+:E9X7PMIM7V4R5LFAxTWyuHHgp5HRl+ |
MD5: | 67176C242E1BDC20603C878DEE836DF3 |
SHA1: | 27A71B00383D61EF3C489326B3564D698FC1227C |
SHA-256: | 56C12A125B021D21A69E61D7190CEFA168D6C28CE715265CEA1B3B0112D169C4 |
SHA-512: | 9FA75814E1B9F7DB38FE61A503A13E60B82D83DB8F4CE30351BD08A6B48C0D854BAF472D891AF23C443C8293380C2325C7B3361B708AF9971AA0EA09A25CDD0A |
Malicious: | false |
Reputation: | high, very likely benign file |
URL: | https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 25062 |
Entropy (8bit): | 7.721988384978091 |
Encrypted: | false |
SSDEEP: | 768:tEuGxt8VNlBijhYDAgzxnKAZTjrc/6CrKT26vF0RRs:tEuGX8VNlsjhYxc8TCWT26t0Ts |
MD5: | 3925D979AA4FBB0CDA622E0399410206 |
SHA1: | 65B08E675411AC540EF56C0096C8AB415231B0DD |
SHA-256: | 4DCDCDA6574CBD484F47266B5572A8689BB2B5F06FE1F8218F1B6A0578845014 |
SHA-512: | 5C6071C61B9B6D5AB650590761F974F53411E79BF8A8CA6429FD385AC17B0A2A6B9D79A3DCDAFFB3A638CA1F87258842384E8D44847B4BA9B11D700EF59DBEBD |
Malicious: | false |
Reputation: | low |
URL: | https://i.postimg.cc/4nk1H1rD/invoce-background.jpg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 85578 |
Entropy (8bit): | 5.366055229017455 |
Encrypted: | false |
SSDEEP: | 1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2 |
MD5: | 2F6B11A7E914718E0290410E85366FE9 |
SHA1: | 69BB69E25CA7D5EF0935317584E6153F3FD9A88C |
SHA-256: | 05B85D96F41FFF14D8F608DAD03AB71E2C1017C2DA0914D7C59291BAD7A54F8E |
SHA-512: | 0D40BCCAA59FEDECF7243D63B33C42592541D0330FEFC78EC81A4C6B9689922D5B211011CA4BE23AE22621CCE4C658F52A1552C92D7AC3615241EB640F8514DB |
Malicious: | false |
Reputation: | high, very likely benign file |
URL: | https://ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js |
Preview: |
File type: | |
Entropy (8bit): | 6.150142956464395 |
TrID: |
|
File name: | POattach.html |
File size: | 47'898 bytes |
MD5: | ba5c0f66f1111d3c7bb13d790f57c7f4 |
SHA1: | 9553678cc693662628e59a08e74a8ae2ad9c26a8 |
SHA256: | 92fb9e83082d89d00b1ccc01481d7c8a15a31895a91c0cde9761dc0295a5b034 |
SHA512: | 86c09cb43012e9d54c28e3bad55acf7b7f78d0af8e0ad168c0a40f44e49a5f47419fb49af4d6f221f24de2022344eed9f15d696626012542b00b1425ad53bdd5 |
SSDEEP: | 768:9YXY/Gzink/1Yx/8OYhpvZRQkCdOgxJCitbnD4pNOxxWWWWWWJWCzqKgCS853v7X:9YoC0kNYqOGpv4dvxJCi9n4wxxWWWWWU |
TLSH: | 8C23AF3418C2BA0613B28694F2A2B8C7EF62D02F5311D56D794E7147CF69D62EFA3274 |
File Content Preview: | <html xmlns="http://www.w3.org/1999/xhtml">.. <head>.. <script type="text/javascript">function showDiv() { document.getElementById('welcomeDiv').style.display = "block"; document.getElementById('hide_this').style.display = "none";}</script>.. |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 14:16:10.260401011 CEST | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:10.260411024 CEST | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:10.572882891 CEST | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:19.885421038 CEST | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:19.947932005 CEST | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:20.197909117 CEST | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:21.301470995 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.301527977 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.301595926 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.302212000 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.302236080 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.302983999 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.302992105 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.303055048 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.303352118 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.303370953 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.575546026 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.576126099 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.576143980 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.578147888 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.578253031 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.581650019 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.581734896 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.582259893 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.582266092 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.642529011 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.642939091 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.642957926 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.644407988 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.644468069 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.645435095 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.645512104 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.645576954 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.645585060 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.648714066 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.705982924 CEST | 443 | 49698 | 173.222.162.64 | 192.168.2.6 |
Apr 26, 2024 14:16:21.706093073 CEST | 49698 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:21.749268055 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.879631996 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.879807949 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.879895926 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.879897118 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.879940033 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.880007982 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.880031109 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.880207062 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.880271912 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.880280018 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.880352020 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.880412102 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.880418062 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.880738020 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.880819082 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.880821943 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.880844116 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.880906105 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.880944014 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.883074045 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.883131027 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.883136034 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.883261919 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.883344889 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.883347034 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.883368015 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.883426905 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.883766890 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.883930922 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.883999109 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.884004116 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.884759903 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.884839058 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.884844065 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.884924889 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.884989023 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.885001898 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.885087013 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.885170937 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.885176897 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.886171103 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.886265039 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.886270046 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.886360884 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.886428118 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.886431932 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.888164997 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.888252020 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.888252974 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.888274908 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.888360977 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.888365984 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.889015913 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.889084101 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.889089108 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.889164925 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.889218092 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.889223099 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.889435053 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:21.889506102 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:21.947894096 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.947953939 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.948014975 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.948036909 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.948110104 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.958477020 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.958497047 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.958537102 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.980504990 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.980565071 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.980581999 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.980632067 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:21.995260000 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.995280027 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:21.995342970 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.123301029 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.123322010 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.123394012 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.123430967 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.125231028 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.125441074 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.125474930 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.125497103 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.156816006 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.156848907 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.157114029 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.157505035 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.157521009 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.179007053 CEST | 49704 | 443 | 192.168.2.6 | 104.18.11.207 |
Apr 26, 2024 14:16:22.179032087 CEST | 443 | 49704 | 104.18.11.207 | 192.168.2.6 |
Apr 26, 2024 14:16:22.193681955 CEST | 49702 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.193692923 CEST | 443 | 49702 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.468264103 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.468285084 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.468456030 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.468969107 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.469055891 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.469130039 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.470900059 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.470938921 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.471350908 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.471362114 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.553652048 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.553754091 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.553839922 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.554043055 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.554080963 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.560209036 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.560432911 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.560451984 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.561302900 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.561367989 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.562414885 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.562479973 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.562577009 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.562586069 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.697918892 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.823563099 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.824208021 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.824260950 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.827367067 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.827461958 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.827783108 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.827869892 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.827925920 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.859999895 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.860299110 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.860315084 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.861721992 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.861876011 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.862237930 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.862237930 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.862310886 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.872126102 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.877861977 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.878190041 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.878236055 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.879312038 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.879398108 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.879687071 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.879759073 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.879789114 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.920156956 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.946321964 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.946350098 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.946393013 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:22.946417093 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:22.960284948 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.960424900 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.960529089 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.960549116 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.965853930 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:22.966012001 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.966089964 CEST | 49707 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:22.966108084 CEST | 443 | 49707 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.069849968 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.069863081 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.149458885 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.149579048 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.196352959 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.208836079 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.208852053 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.208925962 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.208967924 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.209047079 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.219798088 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.219808102 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.219906092 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.242192984 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.242199898 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.242263079 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.253442049 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.253448009 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.253528118 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.371203899 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.371211052 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.371306896 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.386333942 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.386342049 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.386415005 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.386436939 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.386465073 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.386528015 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.390615940 CEST | 49710 | 443 | 192.168.2.6 | 162.249.168.129 |
Apr 26, 2024 14:16:23.390652895 CEST | 443 | 49710 | 162.249.168.129 | 192.168.2.6 |
Apr 26, 2024 14:16:23.427589893 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.427711964 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.427762985 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.427925110 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.427988052 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.438401937 CEST | 49709 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.438445091 CEST | 443 | 49709 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.510636091 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.510657072 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.510833025 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.513288021 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.513299942 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.530054092 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.530129910 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.530147076 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.530195951 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.530337095 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.550899982 CEST | 49708 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.550915003 CEST | 443 | 49708 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.842417955 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.912950039 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.912965059 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.913295984 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.915113926 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.915160894 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:23.915535927 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:23.956160069 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:24.199665070 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:24.199718952 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:24.199775934 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:24.199789047 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:24.199820995 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:24.199904919 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:24.199915886 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:24.199928045 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:24.199976921 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:25.324763060 CEST | 49712 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:25.324794054 CEST | 443 | 49712 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:25.329217911 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:25.329292059 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:25.329377890 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:25.329758883 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:25.329786062 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:26.297694921 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:26.399594069 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:26.864630938 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:26.864689112 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:26.865089893 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:26.866262913 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:26.866333961 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:26.866926908 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:26.908114910 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:27.126435995 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:27.126475096 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:27.126513004 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:27.126545906 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:27.126584053 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:27.126607895 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:27.126640081 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:27.126669884 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:30.359019995 CEST | 49713 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:16:30.359088898 CEST | 443 | 49713 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:16:30.904165030 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:30.904284000 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:30.904360056 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:30.907109022 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:30.907155991 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.158835888 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:31.158859015 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:31.159090996 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:31.160706997 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:31.160717964 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:31.185751915 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.185831070 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.188277006 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.188317060 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.188812017 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.291105032 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.402298927 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.448131084 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.528598070 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.528749943 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.528826952 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.530368090 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.530411959 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.530440092 CEST | 49715 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.530455112 CEST | 443 | 49715 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.581048965 CEST | 49718 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.581078053 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.581155062 CEST | 49718 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.582102060 CEST | 49718 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.582115889 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.844655037 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.844722986 CEST | 49718 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.847640991 CEST | 49718 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.847651005 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.848150015 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.849867105 CEST | 49718 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:31.892132044 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:31.893785954 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:31.893853903 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:31.897438049 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:31.897447109 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:31.897922039 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.040036917 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:32.107161999 CEST | 49698 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:32.108782053 CEST | 49698 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:32.110481977 CEST | 49722 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:32.110502005 CEST | 443 | 49722 | 173.222.162.64 | 192.168.2.6 |
Apr 26, 2024 14:16:32.110651016 CEST | 49722 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:32.111078978 CEST | 49722 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:32.111093998 CEST | 443 | 49722 | 173.222.162.64 | 192.168.2.6 |
Apr 26, 2024 14:16:32.305475950 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:32.317316055 CEST | 443 | 49698 | 173.222.162.64 | 192.168.2.6 |
Apr 26, 2024 14:16:32.318905115 CEST | 443 | 49698 | 173.222.162.64 | 192.168.2.6 |
Apr 26, 2024 14:16:32.348125935 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.496592045 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:32.496819019 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:32.496874094 CEST | 49718 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:32.498697042 CEST | 49718 | 443 | 192.168.2.6 | 23.193.120.112 |
Apr 26, 2024 14:16:32.498708963 CEST | 443 | 49718 | 23.193.120.112 | 192.168.2.6 |
Apr 26, 2024 14:16:32.541239977 CEST | 443 | 49722 | 173.222.162.64 | 192.168.2.6 |
Apr 26, 2024 14:16:32.541317940 CEST | 49722 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:16:32.783633947 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783649921 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783658028 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783680916 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783693075 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783705950 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783731937 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:32.783740997 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783750057 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783756018 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783777952 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:32.783783913 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783806086 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:32.783809900 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783853054 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:32.783855915 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783868074 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:32.783905983 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:33.117583036 CEST | 49716 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:16:33.117602110 CEST | 443 | 49716 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:16:51.747189999 CEST | 443 | 49722 | 173.222.162.64 | 192.168.2.6 |
Apr 26, 2024 14:16:51.747279882 CEST | 49722 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 26, 2024 14:17:12.337574005 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:12.337646961 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:12.337734938 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:12.340595961 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:12.340646982 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.079195023 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.079272985 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.090549946 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.090569973 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.091036081 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.114006042 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.160118103 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.783699989 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.783761978 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.783807993 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.783842087 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.783868074 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.783898115 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.783916950 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.783958912 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.784019947 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.784024000 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.784061909 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.784066916 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.784166098 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.784526110 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.793190002 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.793216944 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:13.793231010 CEST | 49734 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 26, 2024 14:17:13.793237925 CEST | 443 | 49734 | 40.68.123.157 | 192.168.2.6 |
Apr 26, 2024 14:17:25.273977995 CEST | 49736 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:17:25.274081945 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:17:25.274677038 CEST | 49736 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:17:25.275258064 CEST | 49736 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:17:25.275305986 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:17:25.686330080 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:17:25.686676979 CEST | 49736 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:17:25.686739922 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:17:25.687094927 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:17:25.687561989 CEST | 49736 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:17:25.687635899 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:17:25.727489948 CEST | 49736 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:17:35.673947096 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:17:35.674022913 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:17:35.674083948 CEST | 49736 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:17:37.260431051 CEST | 49736 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:17:37.260502100 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:18:25.337841988 CEST | 49740 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:18:25.337872028 CEST | 443 | 49740 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:18:25.337999105 CEST | 49740 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:18:25.338237047 CEST | 49740 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:18:25.338248968 CEST | 443 | 49740 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:18:25.743992090 CEST | 443 | 49740 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:18:25.744313002 CEST | 49740 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:18:25.744333982 CEST | 443 | 49740 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:18:25.744996071 CEST | 443 | 49740 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:18:25.745280981 CEST | 49740 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:18:25.745369911 CEST | 443 | 49740 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:18:25.790131092 CEST | 49740 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:18:35.750529051 CEST | 443 | 49740 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:18:35.750742912 CEST | 443 | 49740 | 142.250.64.196 | 192.168.2.6 |
Apr 26, 2024 14:18:35.750801086 CEST | 49740 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:18:37.262248993 CEST | 49740 | 443 | 192.168.2.6 | 142.250.64.196 |
Apr 26, 2024 14:18:37.262273073 CEST | 443 | 49740 | 142.250.64.196 | 192.168.2.6 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 14:16:21.156598091 CEST | 61558 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 26, 2024 14:16:21.156795979 CEST | 52152 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 26, 2024 14:16:21.157672882 CEST | 56851 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 26, 2024 14:16:21.157819033 CEST | 60697 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 26, 2024 14:16:21.282897949 CEST | 53 | 53668 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:21.298651934 CEST | 53 | 55832 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:21.298732996 CEST | 53 | 61558 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:21.300096989 CEST | 53 | 60697 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:21.300944090 CEST | 53 | 52152 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:21.301291943 CEST | 53 | 52454 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:21.302242994 CEST | 53 | 56851 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:22.031013966 CEST | 57934 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 26, 2024 14:16:22.031495094 CEST | 52557 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 26, 2024 14:16:22.155808926 CEST | 53 | 57934 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:22.156327963 CEST | 53 | 52557 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:22.427645922 CEST | 63041 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 26, 2024 14:16:22.428114891 CEST | 64240 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 26, 2024 14:16:22.531596899 CEST | 53 | 64513 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:22.553076029 CEST | 53 | 63041 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:22.553114891 CEST | 53 | 64240 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:33.258991003 CEST | 53 | 52327 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:16:42.586656094 CEST | 53 | 49868 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:17:02.916449070 CEST | 53 | 58183 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:17:20.576453924 CEST | 53 | 56540 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:17:27.643407106 CEST | 53 | 61064 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:17:48.462599993 CEST | 53 | 57757 | 1.1.1.1 | 192.168.2.6 |
Apr 26, 2024 14:18:34.072546959 CEST | 53 | 51362 | 1.1.1.1 | 192.168.2.6 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 26, 2024 14:16:21.156598091 CEST | 192.168.2.6 | 1.1.1.1 | 0xe04b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:16:21.156795979 CEST | 192.168.2.6 | 1.1.1.1 | 0xa52a | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 14:16:21.157672882 CEST | 192.168.2.6 | 1.1.1.1 | 0xb246 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:16:21.157819033 CEST | 192.168.2.6 | 1.1.1.1 | 0x456 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 14:16:22.031013966 CEST | 192.168.2.6 | 1.1.1.1 | 0x2360 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:16:22.031495094 CEST | 192.168.2.6 | 1.1.1.1 | 0x651e | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 14:16:22.427645922 CEST | 192.168.2.6 | 1.1.1.1 | 0x646 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 14:16:22.428114891 CEST | 192.168.2.6 | 1.1.1.1 | 0x85b8 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 26, 2024 14:16:21.298732996 CEST | 1.1.1.1 | 192.168.2.6 | 0xe04b | No error (0) | 162.249.168.129 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:16:21.300096989 CEST | 1.1.1.1 | 192.168.2.6 | 0x456 | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 14:16:21.302242994 CEST | 1.1.1.1 | 192.168.2.6 | 0xb246 | No error (0) | 104.18.11.207 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:16:21.302242994 CEST | 1.1.1.1 | 192.168.2.6 | 0xb246 | No error (0) | 104.18.10.207 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:16:22.155808926 CEST | 1.1.1.1 | 192.168.2.6 | 0x2360 | No error (0) | 142.250.64.196 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 14:16:22.156327963 CEST | 1.1.1.1 | 192.168.2.6 | 0x651e | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 14:16:22.553076029 CEST | 1.1.1.1 | 192.168.2.6 | 0x646 | No error (0) | 162.249.168.129 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.6 | 49704 | 104.18.11.207 | 443 | 6280 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:21 UTC | 525 | OUT | |
2024-04-26 12:16:21 UTC | 946 | IN | |
2024-04-26 12:16:21 UTC | 423 | IN | |
2024-04-26 12:16:21 UTC | 1369 | IN | |
2024-04-26 12:16:21 UTC | 1369 | IN | |
2024-04-26 12:16:21 UTC | 1369 | IN | |
2024-04-26 12:16:21 UTC | 1369 | IN | |
2024-04-26 12:16:21 UTC | 1369 | IN | |
2024-04-26 12:16:21 UTC | 1369 | IN | |
2024-04-26 12:16:21 UTC | 1369 | IN | |
2024-04-26 12:16:21 UTC | 1369 | IN | |
2024-04-26 12:16:21 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.6 | 49702 | 162.249.168.129 | 443 | 6280 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:21 UTC | 566 | OUT | |
2024-04-26 12:16:21 UTC | 380 | IN | |
2024-04-26 12:16:21 UTC | 3716 | IN | |
2024-04-26 12:16:21 UTC | 4096 | IN | |
2024-04-26 12:16:21 UTC | 4096 | IN | |
2024-04-26 12:16:21 UTC | 4096 | IN | |
2024-04-26 12:16:22 UTC | 4096 | IN | |
2024-04-26 12:16:22 UTC | 4096 | IN | |
2024-04-26 12:16:22 UTC | 866 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.6 | 49707 | 142.250.64.196 | 443 | 6280 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:22 UTC | 595 | OUT | |
2024-04-26 12:16:22 UTC | 1703 | IN | |
2024-04-26 12:16:22 UTC | 783 | IN | |
2024-04-26 12:16:22 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.6 | 49709 | 142.250.64.196 | 443 | 6280 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:22 UTC | 498 | OUT | |
2024-04-26 12:16:23 UTC | 1843 | IN | |
2024-04-26 12:16:23 UTC | 458 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.6 | 49708 | 142.250.64.196 | 443 | 6280 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:22 UTC | 353 | OUT | |
2024-04-26 12:16:23 UTC | 1761 | IN | |
2024-04-26 12:16:23 UTC | 417 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.6 | 49710 | 162.249.168.129 | 443 | 6280 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:22 UTC | 366 | OUT | |
2024-04-26 12:16:23 UTC | 380 | IN | |
2024-04-26 12:16:23 UTC | 3716 | IN | |
2024-04-26 12:16:23 UTC | 4096 | IN | |
2024-04-26 12:16:23 UTC | 4096 | IN | |
2024-04-26 12:16:23 UTC | 4096 | IN | |
2024-04-26 12:16:23 UTC | 4096 | IN | |
2024-04-26 12:16:23 UTC | 4096 | IN | |
2024-04-26 12:16:23 UTC | 866 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.6 | 49712 | 142.250.64.196 | 443 | 6280 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:23 UTC | 900 | OUT | |
2024-04-26 12:16:24 UTC | 356 | IN | |
2024-04-26 12:16:24 UTC | 899 | IN | |
2024-04-26 12:16:24 UTC | 1255 | IN | |
2024-04-26 12:16:24 UTC | 1032 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.6 | 49713 | 142.250.64.196 | 443 | 6280 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:26 UTC | 738 | OUT | |
2024-04-26 12:16:27 UTC | 356 | IN | |
2024-04-26 12:16:27 UTC | 899 | IN | |
2024-04-26 12:16:27 UTC | 1255 | IN | |
2024-04-26 12:16:27 UTC | 960 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.6 | 49715 | 23.193.120.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:31 UTC | 161 | OUT | |
2024-04-26 12:16:31 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.6 | 49718 | 23.193.120.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:31 UTC | 239 | OUT | |
2024-04-26 12:16:32 UTC | 530 | IN | |
2024-04-26 12:16:32 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.6 | 49716 | 40.68.123.157 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:16:32 UTC | 306 | OUT | |
2024-04-26 12:16:32 UTC | 560 | IN | |
2024-04-26 12:16:32 UTC | 15824 | IN | |
2024-04-26 12:16:32 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.6 | 49734 | 40.68.123.157 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 12:17:13 UTC | 306 | OUT | |
2024-04-26 12:17:13 UTC | 560 | IN | |
2024-04-26 12:17:13 UTC | 15824 | IN | |
2024-04-26 12:17:13 UTC | 9633 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 14:16:11 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff684c40000 |
File size: | 3'242'272 bytes |
MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | false |
Target ID: | 3 |
Start time: | 14:16:19 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff684c40000 |
File size: | 3'242'272 bytes |
MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | false |
Target ID: | 4 |
Start time: | 14:16:20 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff684c40000 |
File size: | 3'242'272 bytes |
MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |
Target ID: | 5 |
Start time: | 14:16:21 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff684c40000 |
File size: | 3'242'272 bytes |
MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |