Windows
Analysis Report
https://gist.github.com/Tantalor93/6c5baab344acf237e72b231d50408f4a/raw/%207aa875ebcd3819772d0f1d36100c19fe3c786cd7/top-1m
Overview
General Information
Detection
Score: | 20 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 80% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 4248 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 4504 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2292 --fi eld-trial- handle=223 6,i,110542 8593725949 0056,70337 0940617617 5706,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 3020 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t http:/// MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 6196 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2152 --fi eld-trial- handle=195 2,i,170213 6743850697 031,132454 6735469339 3187,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 3512 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t http://% 3cfnc1%3e( %05)/ MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 6932 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =860 --fie ld-trial-h andle=2008 ,i,1234981 8873830694 159,126819 6577353770 583,262144 --disable -features= Optimizati onGuideMod elDownload ing,Optimi zationHint s,Optimiza tionHintsF etching,Op timization TargetPred iction /pr efetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6692 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://gist. github.com /Tantalor9 3/6c5baab3 44acf237e7 2b231d5040 8f4a/raw/% 207aa875eb cd3819772d 0f1d36100c 19fe3c786c d7/top-1m" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
Phishing |
---|
Source: | URL: | ||
Source: | URL: | ||
Source: | URL: | ||
Source: | URL: |
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
github.com | 140.82.112.3 | true | false | high | |
gist.githubusercontent.com | 185.199.111.133 | true | false | unknown | |
www.google.com | 142.250.64.196 | true | false | high | |
gist.github.com | unknown | unknown | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
142.250.64.196 | www.google.com | United States | 15169 | GOOGLEUS | false | |
140.82.112.3 | github.com | United States | 36459 | GITHUBUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
185.199.111.133 | gist.githubusercontent.com | Netherlands | 54113 | FASTLYUS | false |
IP |
---|
192.168.2.4 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1432169 |
Start date and time: | 2024-04-26 16:12:09 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 41s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://gist.github.com/Tantalor93/6c5baab344acf237e72b231d50408f4a/raw/%207aa875ebcd3819772d0f1d36100c19fe3c786cd7/top-1m |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 12 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | SUS |
Classification: | sus20.phis.win@29/4@6/5 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 192.178.50.67, 142.250.217.174, 142.251.107.84, 34.104.35.123, 199.232.214.172, 192.229.211.108, 142.250.217.195, 142.250.64.142
- Excluded domains from analysis (whitelisted): clients1.google.com, fs.microsoft.com, clients2.google.com, ocsp.digicert.com, accounts.google.com, edgedl.me.gvt1.com, slscr.update.microsoft.com, update.googleapis.com, ctldl.windowsupdate.com, clientservices.googleapis.com, clients.l.google.com, fe3cr.delivery.mp.microsoft.com
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
Source | URL |
---|---|
Screenshot | http:// |
Screenshot | http://<FNC1>() |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 5301 |
Entropy (8bit): | 5.784292316524993 |
Encrypted: | false |
SSDEEP: | 96:zmlliRHIN6666XIIqLFwkh4Z6SH66662x/jahYSx1WDUDzfffQX:zaTN6666XIZLFwkGMSH66660xSx1WDkC |
MD5: | 148466A3C9A8C8805488F1D4473C7A52 |
SHA1: | 2E6C8F768284495F7AEACF2AE3D1AE381381A9D1 |
SHA-256: | B32F3B0989488DCD3C7C664E5EAE51ECEFF0E75B3A02EC50D0C090384076633F |
SHA-512: | 929E2E2D2D4CC3A5657960689C61BB3AFE44FF58DA06009ECDE20410ABE049AD5F41D256FBB208580C8EB5FC7A77E55B11121E006CB105768A5ED5B16F44BA9E |
Malicious: | false |
Reputation: | low |
URL: | https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&oft=1&pgcl=20&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 14 |
Entropy (8bit): | 3.3787834934861767 |
Encrypted: | false |
SSDEEP: | 3:eRbn:eRbn |
MD5: | 3BE7B8B182CCD96E48989B4E57311193 |
SHA1: | 78FB38F212FA49029AFF24C669A39648D9B4E68B |
SHA-256: | D5558CD419C8D46BDC958064CB97F963D1EA793866414C025906EC15033512ED |
SHA-512: | F3781CBB4E9E190DF38C3FE7FA80BA69BF6F9DBAFB158E0426DD4604F2F1BA794450679005A38D0F9F1DAD0696E2F22B8B086B2D7D08A0F99BB4FD3B0F7ED5D8 |
Malicious: | false |
Reputation: | low |
URL: | https://gist.githubusercontent.com/Tantalor93/6c5baab344acf237e72b231d50408f4a/raw/%207aa875ebcd3819772d0f1d36100c19fe3c786cd7/top-1m |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 16:12:51.658008099 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 16:12:51.704978943 CEST | 49678 | 443 | 192.168.2.4 | 104.46.162.224 |
Apr 26, 2024 16:13:01.267378092 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 16:13:07.588893890 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.588932037 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.588987112 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.589032888 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.589054108 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.589102983 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.589274883 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.589303017 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.589359045 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.589418888 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.589472055 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.589539051 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.589698076 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.589724064 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.589778900 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.599920988 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.599941015 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.600250959 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.600261927 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.600644112 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.600666046 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.601387978 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.601424932 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.601653099 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.601667881 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.652492046 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.652517080 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.652576923 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.654685020 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.654712915 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.992871046 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.993164062 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.993175030 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.994704008 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.994790077 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.995148897 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.995723009 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.995848894 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.995857954 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.995985985 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.996129036 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.996156931 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.996177912 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.996362925 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.996370077 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.997051001 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.997126102 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.997683048 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.997776985 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.997934103 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.997940063 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.999322891 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:07.999612093 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:07.999636889 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.000096083 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.000195026 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.000293970 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.000617981 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.000713110 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.000894070 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.000900984 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.001025915 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.001038074 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.001848936 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.001914978 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.002307892 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.002391100 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.002518892 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.002579927 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.002993107 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.003073931 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.041178942 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.041630983 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.041671038 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.043119907 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.043209076 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.043739080 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.043817997 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.078906059 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.078922033 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.078931093 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.078932047 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.078960896 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.188307047 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.188313961 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.188323021 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.188335896 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.282128096 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.282407045 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.378875971 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.401927948 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.401981115 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.402010918 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.402064085 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.402086973 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.402173996 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.408723116 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.414630890 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.414680004 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.414686918 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.420883894 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.421087980 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.421483040 CEST | 49736 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.421495914 CEST | 443 | 49736 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.452147007 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.631191969 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.631329060 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.631416082 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.631467104 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.631489038 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.631536961 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.643645048 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.643712044 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.643729925 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.649641037 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.649723053 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.649821997 CEST | 49737 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.649852037 CEST | 443 | 49737 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.707861900 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.707950115 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.707958937 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.708364010 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.708416939 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.709712029 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.709712029 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.709728956 CEST | 443 | 49735 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.709786892 CEST | 49735 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.712349892 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.737139940 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.737204075 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.737234116 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.737485886 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.737762928 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.749670982 CEST | 49734 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.749701023 CEST | 443 | 49734 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.753122091 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.756144047 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.796159983 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.912635088 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.912744999 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.912873030 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.912940025 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.912962914 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.913227081 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.913980961 CEST | 443 | 49738 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.914005041 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.914052963 CEST | 49738 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.956155062 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.956279039 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.956347942 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.956367016 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.956537962 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:08.956593990 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.962023973 CEST | 49739 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:13:08.962035894 CEST | 443 | 49739 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:13:14.742990971 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:14.743020058 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:14.743093967 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:14.745002031 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:14.745013952 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:15.463628054 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:15.463831902 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:15.467807055 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:15.467830896 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:15.468070030 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:15.579519033 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.102394104 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.144118071 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.257837057 CEST | 49747 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.257873058 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.257973909 CEST | 49747 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.259572983 CEST | 49747 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.259588957 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.523976088 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.524081945 CEST | 49747 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.527080059 CEST | 49747 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.527108908 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.527461052 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.571649075 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.571674109 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.571687937 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.571748972 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.571758986 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.571796894 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.571820021 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.571849108 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.571863890 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.571863890 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.571873903 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.571903944 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.572160959 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.572169065 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.572221041 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.572226048 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.572246075 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.572293043 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.640722990 CEST | 49747 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.684120893 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.768032074 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.768151045 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.768274069 CEST | 49747 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.782954931 CEST | 49747 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.783016920 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.783055067 CEST | 49747 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.783071995 CEST | 443 | 49747 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.950407028 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.950445890 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.950462103 CEST | 49744 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:16.950468063 CEST | 443 | 49744 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:16.995512009 CEST | 49750 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.995572090 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:16.995760918 CEST | 49750 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.996313095 CEST | 49750 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:16.996335983 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:17.252464056 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:17.252573967 CEST | 49750 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:17.254190922 CEST | 49750 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:17.254214048 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:17.254455090 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:17.258727074 CEST | 49750 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:17.300124884 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:17.504153967 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:17.504224062 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:17.504278898 CEST | 49750 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:17.505239964 CEST | 49750 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:17.505264997 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:17.505280018 CEST | 49750 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 16:13:17.505285978 CEST | 443 | 49750 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 16:13:30.832742929 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:30.832824945 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:30.832925081 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:30.847152948 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:30.847176075 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:30.847244024 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:30.847524881 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:30.847567081 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:30.847815037 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:30.847822905 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.169755936 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.175328016 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.179480076 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.179492950 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.179696083 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.179712057 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.181181908 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.181266069 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.182481050 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.182569981 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.187046051 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.187139988 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.189647913 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.189870119 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.189898014 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.189905882 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.235953093 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.332518101 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.332530975 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.469902039 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.470065117 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.470460892 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.470601082 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.470613956 CEST | 443 | 49752 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:31.470628023 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.470659971 CEST | 49752 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.501455069 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:31.630409956 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:31.630460024 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:31.630568027 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:31.630850077 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:31.630865097 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:31.917118073 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:31.917557955 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:31.917577028 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:31.919315100 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:31.919392109 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:31.921443939 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:31.921571970 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:31.921684027 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:31.962352037 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:31.962368965 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:32.003423929 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:32.312710047 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:32.313005924 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:32.313076973 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:33.399951935 CEST | 49754 | 443 | 192.168.2.4 | 185.199.111.133 |
Apr 26, 2024 16:13:33.399986029 CEST | 443 | 49754 | 185.199.111.133 | 192.168.2.4 |
Apr 26, 2024 16:13:36.311362028 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:36.311594963 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:36.311661005 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:38.081919909 CEST | 49753 | 443 | 192.168.2.4 | 140.82.112.3 |
Apr 26, 2024 16:13:38.081960917 CEST | 443 | 49753 | 140.82.112.3 | 192.168.2.4 |
Apr 26, 2024 16:13:53.963583946 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:53.963680029 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:53.963773966 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:53.964823961 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:53.964855909 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:54.678307056 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:54.678399086 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:54.682813883 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:54.682852030 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:54.683106899 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:54.704966068 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:54.752151966 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.382391930 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.382417917 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.382464886 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.382507086 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:55.382591009 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.382621050 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.382630110 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:55.382656097 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.382682085 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:55.382682085 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:55.382702112 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.382721901 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.382725954 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:55.382762909 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:55.399748087 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:55.399805069 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:13:55.399841070 CEST | 49756 | 443 | 192.168.2.4 | 40.68.123.157 |
Apr 26, 2024 16:13:55.399856091 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.4 |
Apr 26, 2024 16:14:08.752433062 CEST | 49758 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:14:08.752476931 CEST | 443 | 49758 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:14:08.752674103 CEST | 49758 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:14:08.752877951 CEST | 49758 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:14:08.752897978 CEST | 443 | 49758 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:14:09.081659079 CEST | 443 | 49758 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:14:09.082262993 CEST | 49758 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:14:09.082302094 CEST | 443 | 49758 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:14:09.082652092 CEST | 443 | 49758 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:14:09.083100080 CEST | 49758 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:14:09.083184958 CEST | 443 | 49758 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:14:09.126108885 CEST | 49758 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:14:10.657675982 CEST | 49723 | 80 | 192.168.2.4 | 23.45.182.86 |
Apr 26, 2024 16:14:10.657749891 CEST | 49724 | 80 | 192.168.2.4 | 23.45.182.86 |
Apr 26, 2024 16:14:10.782917976 CEST | 80 | 49724 | 23.45.182.86 | 192.168.2.4 |
Apr 26, 2024 16:14:10.782989979 CEST | 49724 | 80 | 192.168.2.4 | 23.45.182.86 |
Apr 26, 2024 16:14:10.782994032 CEST | 80 | 49723 | 23.45.182.86 | 192.168.2.4 |
Apr 26, 2024 16:14:10.783132076 CEST | 49723 | 80 | 192.168.2.4 | 23.45.182.86 |
Apr 26, 2024 16:14:19.079497099 CEST | 443 | 49758 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:14:19.079570055 CEST | 443 | 49758 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 16:14:19.079621077 CEST | 49758 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:14:19.783540964 CEST | 49758 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 16:14:19.783560991 CEST | 443 | 49758 | 142.250.64.196 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 16:13:04.812438011 CEST | 53 | 53136 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:05.425847054 CEST | 53 | 63780 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:05.433634996 CEST | 53956 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 16:13:05.433995008 CEST | 63328 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 16:13:05.559226990 CEST | 53 | 53956 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:05.559812069 CEST | 53 | 63328 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:08.043745995 CEST | 53 | 55867 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:23.566518068 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Apr 26, 2024 16:13:30.684501886 CEST | 52296 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 16:13:30.684896946 CEST | 53138 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 16:13:30.811311007 CEST | 53 | 53138 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:30.811880112 CEST | 53 | 55078 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:30.828152895 CEST | 53 | 52296 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:31.473246098 CEST | 57049 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 16:13:31.473412037 CEST | 53251 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 16:13:31.629720926 CEST | 53 | 57049 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:31.629739046 CEST | 53 | 53251 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:13:53.731909990 CEST | 53 | 53597 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:14:04.458777905 CEST | 53 | 57942 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 16:14:20.020648003 CEST | 53 | 61103 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 26, 2024 16:13:05.433634996 CEST | 192.168.2.4 | 1.1.1.1 | 0x20cc | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 16:13:05.433995008 CEST | 192.168.2.4 | 1.1.1.1 | 0xfc7d | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 16:13:30.684501886 CEST | 192.168.2.4 | 1.1.1.1 | 0xffa | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 16:13:30.684896946 CEST | 192.168.2.4 | 1.1.1.1 | 0xef2b | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 16:13:31.473246098 CEST | 192.168.2.4 | 1.1.1.1 | 0xfa57 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 16:13:31.473412037 CEST | 192.168.2.4 | 1.1.1.1 | 0xca0e | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 26, 2024 16:13:05.559226990 CEST | 1.1.1.1 | 192.168.2.4 | 0x20cc | No error (0) | 142.250.64.196 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 16:13:05.559812069 CEST | 1.1.1.1 | 192.168.2.4 | 0xfc7d | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 16:13:30.811311007 CEST | 1.1.1.1 | 192.168.2.4 | 0xef2b | No error (0) | github.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 16:13:30.828152895 CEST | 1.1.1.1 | 192.168.2.4 | 0xffa | No error (0) | github.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 16:13:30.828152895 CEST | 1.1.1.1 | 192.168.2.4 | 0xffa | No error (0) | 140.82.112.3 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 16:13:31.629720926 CEST | 1.1.1.1 | 192.168.2.4 | 0xfa57 | No error (0) | 185.199.111.133 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 16:13:31.629720926 CEST | 1.1.1.1 | 192.168.2.4 | 0xfa57 | No error (0) | 185.199.108.133 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 16:13:31.629720926 CEST | 1.1.1.1 | 192.168.2.4 | 0xfa57 | No error (0) | 185.199.110.133 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 16:13:31.629720926 CEST | 1.1.1.1 | 192.168.2.4 | 0xfa57 | No error (0) | 185.199.109.133 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49735 | 142.250.64.196 | 443 | 4504 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:07 UTC | 510 | OUT | |
2024-04-26 14:13:08 UTC | 1843 | IN | |
2024-04-26 14:13:08 UTC | 458 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49736 | 142.250.64.196 | 443 | 4504 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:07 UTC | 607 | OUT | |
2024-04-26 14:13:08 UTC | 1703 | IN | |
2024-04-26 14:13:08 UTC | 1703 | IN | |
2024-04-26 14:13:08 UTC | 1703 | IN | |
2024-04-26 14:13:08 UTC | 1703 | IN | |
2024-04-26 14:13:08 UTC | 200 | IN | |
2024-04-26 14:13:08 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49734 | 142.250.64.196 | 443 | 4504 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:07 UTC | 353 | OUT | |
2024-04-26 14:13:08 UTC | 1761 | IN | |
2024-04-26 14:13:08 UTC | 417 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49737 | 142.250.64.196 | 443 | 4504 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:08 UTC | 607 | OUT | |
2024-04-26 14:13:08 UTC | 1703 | IN | |
2024-04-26 14:13:08 UTC | 1703 | IN | |
2024-04-26 14:13:08 UTC | 1703 | IN | |
2024-04-26 14:13:08 UTC | 1703 | IN | |
2024-04-26 14:13:08 UTC | 200 | IN | |
2024-04-26 14:13:08 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49738 | 142.250.64.196 | 443 | 4504 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:08 UTC | 912 | OUT | |
2024-04-26 14:13:08 UTC | 356 | IN | |
2024-04-26 14:13:08 UTC | 899 | IN | |
2024-04-26 14:13:08 UTC | 1255 | IN | |
2024-04-26 14:13:08 UTC | 1032 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49739 | 142.250.64.196 | 443 | 4504 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:08 UTC | 738 | OUT | |
2024-04-26 14:13:08 UTC | 356 | IN | |
2024-04-26 14:13:08 UTC | 899 | IN | |
2024-04-26 14:13:08 UTC | 1255 | IN | |
2024-04-26 14:13:08 UTC | 960 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49744 | 40.68.123.157 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:16 UTC | 306 | OUT | |
2024-04-26 14:13:16 UTC | 560 | IN | |
2024-04-26 14:13:16 UTC | 15824 | IN | |
2024-04-26 14:13:16 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49747 | 23.204.76.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:16 UTC | 161 | OUT | |
2024-04-26 14:13:16 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49750 | 23.204.76.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:17 UTC | 239 | OUT | |
2024-04-26 14:13:17 UTC | 530 | IN | |
2024-04-26 14:13:17 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.4 | 49752 | 140.82.112.3 | 443 | 4504 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:31 UTC | 756 | OUT | |
2024-04-26 14:13:31 UTC | 217 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.4 | 49754 | 185.199.111.133 | 443 | 4504 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:31 UTC | 767 | OUT | |
2024-04-26 14:13:32 UTC | 799 | IN | |
2024-04-26 14:13:32 UTC | 14 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.4 | 49756 | 40.68.123.157 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 14:13:54 UTC | 306 | OUT | |
2024-04-26 14:13:55 UTC | 560 | IN | |
2024-04-26 14:13:55 UTC | 15824 | IN | |
2024-04-26 14:13:55 UTC | 9633 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 16:12:55 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 1 |
Start time: | 16:13:02 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 2 |
Start time: | 16:13:02 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 4 |
Start time: | 16:13:02 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 5 |
Start time: | 16:13:03 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 6 |
Start time: | 16:13:06 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 10 |
Start time: | 16:13:29 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |