Windows
Analysis Report
Housecallpro Chase Bank ACH.htm
Overview
General Information
Detection
Score: | 60 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 4416 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "C:\Us ers\user\D esktop\Hou secallpro Chase Bank ACH.htm" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 5316 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2156 --fi eld-trial- handle=203 6,i,104910 2060935629 9719,17026 7914160985 19770,2621 44 /prefet ch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6356 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t http://% 3cfnc1%3e( 79)/ MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 6564 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2164 --fi eld-trial- handle=194 0,i,146942 2676875555 3256,89041 0237976814 2272,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
Phishing |
---|
Source: | Matcher: | ||
Source: | Matcher: |
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: |
Source: | JA3 fingerprint: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
2% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
bc1q2a22gd79umarrlvhudct2v5.com | 185.216.70.216 | true | false |
| unknown |
google.com | 192.178.50.46 | true | false | high | |
bc1qusz5l7h87pd2v6sv45nz82s.com | 185.216.70.6 | true | false | unknown | |
cs1100.wpc.omegacdn.net | 152.199.4.44 | true | false |
| unknown |
cdnjs.cloudflare.com | 104.17.24.14 | true | false | high | |
www.google.com | 142.250.217.196 | true | false | high | |
aadcdn.msftauth.net | unknown | unknown | false |
| unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
| unknown | |
false |
| unknown | |
false | high | ||
false |
| unknown | |
true |
| low |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
104.17.24.14 | cdnjs.cloudflare.com | United States | 13335 | CLOUDFLARENETUS | false | |
185.216.70.6 | bc1qusz5l7h87pd2v6sv45nz82s.com | Germany | 43659 | CLOUDCOMPUTINGDE | false | |
152.199.4.44 | cs1100.wpc.omegacdn.net | United States | 15133 | EDGECASTUS | false | |
142.250.217.196 | www.google.com | United States | 15169 | GOOGLEUS | false | |
142.250.64.196 | unknown | United States | 15169 | GOOGLEUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
185.216.70.216 | bc1q2a22gd79umarrlvhudct2v5.com | Germany | 43659 | CLOUDCOMPUTINGDE | false |
IP |
---|
192.168.2.17 |
192.168.2.4 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1432231 |
Start date and time: | 2024-04-26 17:59:05 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 5m 40s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultwindowshtmlcookbook.jbs |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 9 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Sample name: | Housecallpro Chase Bank ACH.htm |
Detection: | MAL |
Classification: | mal60.phis.winHTM@37/10@18/9 |
EGA Information: | Failed |
HCA Information: |
|
Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 192.178.50.67, 142.250.217.238, 108.177.12.84, 34.104.35.123, 142.250.217.234, 142.250.217.195, 142.250.64.138, 192.178.50.74, 142.250.64.202, 172.217.3.74, 142.250.217.202, 192.178.50.42, 142.250.189.138, 172.217.15.202, 172.217.165.202, 142.250.217.170, 142.250.64.234, 23.55.103.43, 192.229.211.108, 172.217.165.195, 192.178.50.46
- Excluded domains from analysis (whitelisted): clients1.google.com, fonts.googleapis.com, fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, fonts.gstatic.com, ctldl.windowsupdate.com, clientservices.googleapis.com, fe3cr.delivery.mp.microsoft.com, clients2.google.com, ocsp.digicert.com, edgedl.me.gvt1.com, update.googleapis.com, clients.l.google.com, optimizationguide-pa.googleapis.com
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
104.17.24.14 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
185.216.70.6 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
239.255.255.250 | Get hash | malicious | Captcha Phish | Browse | ||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, SectopRAT, Stealc, Vidar, zgRAT | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Captcha Phish | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Xmrig | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
152.199.4.44 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
185.216.70.216 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
bc1qusz5l7h87pd2v6sv45nz82s.com | Get hash | malicious | Unknown | Browse |
| |
cs1100.wpc.omegacdn.net | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
bc1q2a22gd79umarrlvhudct2v5.com | Get hash | malicious | Unknown | Browse |
| |
google.com | Get hash | malicious | Captcha Phish | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, SectopRAT, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Captcha Phish | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Xmrig | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
cdnjs.cloudflare.com | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
Get hash | malicious | TechSupportScam | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
CLOUDFLARENETUS | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
CLOUDCOMPUTINGDE | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | GuLoader | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
EDGECASTUS | Get hash | malicious | Captcha Phish | Browse |
| |
Get hash | malicious | Captcha Phish | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
CLOUDCOMPUTINGDE | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | GuLoader | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
28a2c9bd18a11de089ef85a160da29e4 | Get hash | malicious | Captcha Phish | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, SectopRAT, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Captcha Phish | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Xmrig | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
|
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 124256 |
Entropy (8bit): | 4.271329036904615 |
Encrypted: | false |
SSDEEP: | 768:MKDYqJ2Rhp89g+2+Pvl/VlcGfH1aeWlEVMFF/BnbqEyac4k4VGYEAvqNRLDk1qwD:en/Z1/uJOh1jXE2rXQG |
MD5: | B83FC8A60F69713C2F2427532CB0E3CE |
SHA1: | FE9000EB2A130E7A62BC335B0A7A899203B97D12 |
SHA-256: | 9CA247E921A91D2D4F6F3DF561288777E832EA5B144254946F1C68A75F6A435D |
SHA-512: | 3C3B03A7AFB92945AF928B7DBE7C113A2B582DA3CA1680F1434A5E25229F1ECD35DED2A28A8184CBA38A1D3B0A9794196E9E253FDDD3E88FC56418E95CA7F625 |
Malicious: | false |
Reputation: | low |
URL: | https://bc1q2a22gd79umarrlvhudct2v5.com/lnk/cloud.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 31 |
Entropy (8bit): | 3.86469832616696 |
Encrypted: | false |
SSDEEP: | 3:YBAvZNQaY:YwZNQaY |
MD5: | 2D7D30EA1C6F925302D2C3ABED382951 |
SHA1: | 5BA6BBC5670C4AF1125CF9AC0AA1CA2811E744D1 |
SHA-256: | 83C09BA9A8DAEDB136F90B17A294CAA90AD471A016E430DF6E229ACB5A81E100 |
SHA-512: | BCC7AAA8A6A27ADCBD1B3E0FCA73FC1BD727FECEAB34734E99863503D1D50936A8830C0A12D75D187614F318F46B1E67F046E89F5EB6CE727D8433A722E2C525 |
Malicious: | false |
Reputation: | moderate, very likely benign file |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 21726 |
Entropy (8bit): | 5.445952999493486 |
Encrypted: | false |
SSDEEP: | 384:WDvmDWDRD5tDGDrD0vlVk54FS7vG2r5PmhCvnXy5uHERvwgB5NQL4vpZo50J+Pv6:WiaVfKX4 |
MD5: | 9842B200DB0DFFB68C6B53EAACC8C0BC |
SHA1: | 66B0AFAFC96A0F5AE9DD9E969D0C407200CEC696 |
SHA-256: | 90C4F0951056E5A82B2150C8B3FE6D011A08EA2ABC957453D080B8179504E2D7 |
SHA-512: | 5BEAB744D4F32B8468295C1AD17FBEBB48A73048D357ED5272FB5BEB649DFD05D9AF30DB84E23A0159EB5220F5EB1ED1B12F36E159B33824C7A209645BC4AC28 |
Malicious: | false |
Reputation: | moderate, very likely benign file |
URL: | https://fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;500;600;700;800;900&display=swap |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 17174 |
Entropy (8bit): | 2.9129715116732746 |
Encrypted: | false |
SSDEEP: | 24:QSNTmTFxg4lyyyyyyyyyyyyyio7eeeeeeeeekzgsLsLsLsLsLsQZp:nfgyyyyyyyyyyyyynzQQQQQO |
MD5: | 12E3DAC858061D088023B2BD48E2FA96 |
SHA1: | E08CE1A144ECEAE0C3C2EA7A9D6FBC5658F24CE5 |
SHA-256: | 90CDAF487716184E4034000935C605D1633926D348116D198F355A98B8C6CD21 |
SHA-512: | C5030C55A855E7A9E20E22F4C70BF1E0F3C558A9B7D501CFAB6992AC2656AE5E41B050CCAC541EFA55F9603E0D349B247EB4912EE169D44044271789C719CD01 |
Malicious: | false |
Reputation: | high, very likely benign file |
URL: | https://aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 89501 |
Entropy (8bit): | 5.289893677458563 |
Encrypted: | false |
SSDEEP: | 1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn |
MD5: | 8FB8FEE4FCC3CC86FF6C724154C49C42 |
SHA1: | B82D238D4E31FDF618BAE8AC11A6C812C03DD0D4 |
SHA-256: | FF1523FB7389539C84C65ABA19260648793BB4F5E29329D2EE8804BC37A3FE6E |
SHA-512: | F3DE1813A4160F9239F4781938645E1589B876759CD50B7936DBD849A35C38FFAED53F6A61DBDD8A1CF43CF4A28AA9FFFBFDDEEC9A3811A1BB4EE6DF58652B31 |
Malicious: | false |
Reputation: | high, very likely benign file |
URL: | https://cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 17174 |
Entropy (8bit): | 2.9129715116732746 |
Encrypted: | false |
SSDEEP: | 24:QSNTmTFxg4lyyyyyyyyyyyyyio7eeeeeeeeekzgsLsLsLsLsLsQZp:nfgyyyyyyyyyyyyynzQQQQQO |
MD5: | 12E3DAC858061D088023B2BD48E2FA96 |
SHA1: | E08CE1A144ECEAE0C3C2EA7A9D6FBC5658F24CE5 |
SHA-256: | 90CDAF487716184E4034000935C605D1633926D348116D198F355A98B8C6CD21 |
SHA-512: | C5030C55A855E7A9E20E22F4C70BF1E0F3C558A9B7D501CFAB6992AC2656AE5E41B050CCAC541EFA55F9603E0D349B247EB4912EE169D44044271789C719CD01 |
Malicious: | false |
Preview: |
File type: | |
Entropy (8bit): | 5.640002844176086 |
TrID: |
|
File name: | Housecallpro Chase Bank ACH.htm |
File size: | 1'693 bytes |
MD5: | 8985f94e78f090fd084e6f98936426c0 |
SHA1: | c95eaaf6d497305d62a0ef7c615774060a638b0d |
SHA256: | b50a71b811cf5218aa2746a56d1327b00d8a41bc01dc99711caada0ff912f613 |
SHA512: | 306e20463eec2a7260b7a31b0b12640b46e342b05b30b3fc3b0c9a24d1820b55c56af12d43f4ea77bf3412b1840a0108977d6294a0ef914685070bedbe9e81a6 |
SSDEEP: | 48:DjP+GZqYj7wat5RLxa1c7VTIOfMjdTvEGrhbsZCLwhLog:DjP+GEcrpQdDEGpBLC |
TLSH: | 0A3152CCBC4150E80B913AE61D3A6849E72FFC0630948B88E508DC817E5DE54E02FBF8 |
File Content Preview: | <script>const a0Z=a0E;function a0E(N,E){const R=a0N();return a0E=function(S,g){S=S-0x194;let s=R[S];return s;},a0E(N,E);}function a0N(){const p=['40MbgQOl','10044teFiWM','ipt','ite','scr','\x20src=\x22','1444098TTjNnq','888QIPOWD','value3','69076EgijTI',' |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 17:59:48.309504986 CEST | 49678 | 443 | 192.168.2.4 | 104.46.162.224 |
Apr 26, 2024 17:59:49.262626886 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 17:59:58.517832041 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:58.517884970 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:58.517940998 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:58.518815041 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:58.518824100 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:58.939985037 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 17:59:59.069133043 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.072833061 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:59.072840929 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.073859930 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.073921919 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:59.075542927 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:59.075623035 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.075726986 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:59.075731993 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.184560061 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:59.586993933 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.680355072 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:59.846651077 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.846664906 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.846684933 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.846695900 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.846704006 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.846713066 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:59.846726894 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.846765995 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:59.847333908 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.847341061 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.847362041 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.847368002 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.847378016 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.847385883 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 17:59:59.847398996 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 17:59:59.847423077 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.106714010 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.106724024 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.106750011 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.106755972 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.106766939 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.106826067 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.106831074 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.106925011 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.107433081 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.107440948 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.107460022 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.107467890 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.107494116 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.107497931 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.107554913 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.108221054 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.108234882 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.108289957 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.108293056 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.108326912 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.366477966 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.366499901 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.366578102 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.366586924 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.366695881 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.367340088 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.367355108 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.367419004 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.367423058 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.367582083 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.367691994 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.367722034 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.367749929 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.367753029 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.367800951 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.367808104 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:00.367959976 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.375148058 CEST | 49733 | 443 | 192.168.2.4 | 185.216.70.216 |
Apr 26, 2024 18:00:00.375164986 CEST | 443 | 49733 | 185.216.70.216 | 192.168.2.4 |
Apr 26, 2024 18:00:02.442867994 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:02.442920923 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:02.442986965 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:02.443435907 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:02.443455935 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:02.466389894 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:02.466425896 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:02.466495991 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:02.466943026 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:02.466960907 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:02.724709988 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:02.724987984 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:02.725018024 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:02.726391077 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:02.726454020 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:02.916882992 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:02.917035103 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:02.917148113 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:02.917164087 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:02.922055006 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:02.922600985 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:02.922619104 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:02.923671007 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:02.923748970 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:02.924710989 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:02.924782991 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:02.956691980 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.073548079 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:03.073582888 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:03.074949980 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.075139999 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.075165033 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.075186968 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.075212002 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.075253010 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.075385094 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.075579882 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.075623035 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.075627089 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.075947046 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.075993061 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.075999022 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.076267958 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.076311111 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.076314926 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.076487064 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.076530933 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.076534986 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.076831102 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.076869965 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.076874971 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.077055931 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.077111006 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.077116013 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.077291965 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.077332020 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.077336073 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.077578068 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.077629089 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.077632904 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.078027010 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.078066111 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.078069925 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.078104973 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.078145027 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.078149080 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.078835011 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.078871012 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.078890085 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.078896046 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.078934908 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.078939915 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.079113007 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.079164028 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.079169035 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.079842091 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.079869986 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.079886913 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.079891920 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.079941988 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.079996109 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.080668926 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.080718040 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.080720901 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.080784082 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.080832005 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.080835104 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.081581116 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.081624985 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.081626892 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.081639051 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.081696987 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.082372904 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.082442999 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.184511900 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:03.199811935 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.199888945 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.199913979 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.199959040 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.200731039 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.200783014 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.201006889 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.201052904 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.201057911 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.201102018 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.201124907 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.201172113 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.201767921 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.201818943 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.202522039 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.202567101 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.202615023 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.202662945 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.202666998 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.202730894 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.202774048 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.203419924 CEST | 49739 | 443 | 192.168.2.4 | 104.17.24.14 |
Apr 26, 2024 18:00:03.203435898 CEST | 443 | 49739 | 104.17.24.14 | 192.168.2.4 |
Apr 26, 2024 18:00:03.347007036 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.347031116 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.347089052 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.347491980 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.347501993 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.693774939 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:03.693809986 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:03.694050074 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:03.694431067 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:03.694443941 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:03.734083891 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.737418890 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.737432003 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.738459110 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.738531113 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.742013931 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.742072105 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.742546082 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.742552042 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.885251999 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.981156111 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982115984 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982124090 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982147932 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982153893 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982156038 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982166052 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.982177019 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982207060 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982211113 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.982242107 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.982247114 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982307911 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:03.982351065 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.982587099 CEST | 49742 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:03.982599020 CEST | 443 | 49742 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:04.228332996 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:04.228645086 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:04.228667021 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:04.229677916 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:04.229742050 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:06.321228027 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:06.321438074 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:06.323903084 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:06.323956013 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:06.528114080 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:06.528176069 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:06.588161945 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:06.632879019 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:06.850397110 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:06.850486994 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:06.850646019 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:09.920964003 CEST | 49744 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:09.921001911 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:09.921057940 CEST | 49744 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:09.922183990 CEST | 49743 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:09.922197104 CEST | 443 | 49743 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:09.923269033 CEST | 49744 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:09.923285961 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:10.453665018 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:10.454562902 CEST | 49744 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:10.454581022 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:10.454947948 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:10.455679893 CEST | 49744 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:10.455744028 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:10.455837011 CEST | 49744 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:10.496123075 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:10.566653013 CEST | 49746 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:10.566700935 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:10.566874027 CEST | 49746 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:10.569369078 CEST | 49746 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:10.569385052 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:10.593666077 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:10.593741894 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:10.593807936 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:10.594626904 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:10.594645023 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:10.830841064 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:10.830919027 CEST | 49746 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:10.833014965 CEST | 49746 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:10.833024025 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:10.833292961 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:10.870229959 CEST | 49746 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:10.916130066 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:10.980232954 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:10.981275082 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:10.981544018 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:10.981560946 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:10.984420061 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:10.984499931 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:10.984797955 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:10.984882116 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:10.985182047 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:10.985189915 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.033185959 CEST | 49744 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:11.033201933 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:11.075186014 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.075257063 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.075309992 CEST | 49746 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.075370073 CEST | 49746 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.075391054 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.075431108 CEST | 49746 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.075436115 CEST | 443 | 49746 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.172872066 CEST | 49749 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.172909975 CEST | 443 | 49749 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.173008919 CEST | 49749 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.174369097 CEST | 49749 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.174382925 CEST | 443 | 49749 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.233567953 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.235040903 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.235064983 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.235107899 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.235121965 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:11.235161066 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.235182047 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.235203981 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:11.235204935 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:11.235224962 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:11.235619068 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.235673904 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:11.235682011 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.235809088 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.238756895 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:11.271310091 CEST | 49747 | 443 | 192.168.2.4 | 152.199.4.44 |
Apr 26, 2024 18:00:11.271336079 CEST | 443 | 49747 | 152.199.4.44 | 192.168.2.4 |
Apr 26, 2024 18:00:11.284064054 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:11.284164906 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:11.284241915 CEST | 49744 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:11.339485884 CEST | 49744 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:11.339507103 CEST | 443 | 49744 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:11.429091930 CEST | 443 | 49749 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.429183006 CEST | 49749 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.494774103 CEST | 49749 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.494786978 CEST | 443 | 49749 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.495060921 CEST | 443 | 49749 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.496212006 CEST | 49749 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.540113926 CEST | 443 | 49749 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.679807901 CEST | 443 | 49749 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.679873943 CEST | 443 | 49749 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:11.680067062 CEST | 49749 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.680932999 CEST | 49749 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:00:11.680948019 CEST | 443 | 49749 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:00:12.680195093 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:12.680257082 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:12.680351973 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:12.680646896 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:12.680696964 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:12.680746078 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:12.732558966 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:12.732597113 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:12.732791901 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:12.732832909 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:12.915551901 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:12.915628910 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:12.915684938 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:13.265120029 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.265417099 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.347639084 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.347671032 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.347809076 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.347839117 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.349515915 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.349534035 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.349587917 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.349723101 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.349742889 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.349781036 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.351269007 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.351382017 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.351583004 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.351681948 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.351695061 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.351701975 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.410370111 CEST | 49738 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:00:13.410396099 CEST | 443 | 49738 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:00:13.433414936 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.433433056 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.480225086 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.558346987 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:13.789180040 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:13.886456966 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:14.090991020 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:14.091072083 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:14.091129065 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:14.091753960 CEST | 49753 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:14.091775894 CEST | 443 | 49753 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:00:14.141191006 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:14.141225100 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:14.141304016 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:14.142807007 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:14.142819881 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:14.166884899 CEST | 49672 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 18:00:14.166925907 CEST | 443 | 49672 | 173.222.162.32 | 192.168.2.4 |
Apr 26, 2024 18:00:15.791167974 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:15.791254044 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:15.797348976 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:15.797360897 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:15.797748089 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:15.869050026 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:17.539851904 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:17.580120087 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206662893 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206695080 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206705093 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206726074 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206734896 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206743002 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206743002 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:18.206754923 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206778049 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:18.206820011 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:18.206847906 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206908941 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:18.206918955 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206939936 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.206998110 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:18.737948895 CEST | 49723 | 80 | 192.168.2.4 | 23.45.182.85 |
Apr 26, 2024 18:00:18.864387035 CEST | 80 | 49723 | 23.45.182.85 | 192.168.2.4 |
Apr 26, 2024 18:00:18.864451885 CEST | 49723 | 80 | 192.168.2.4 | 23.45.182.85 |
Apr 26, 2024 18:00:18.984891891 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:18.984891891 CEST | 49755 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:18.984919071 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:18.984927893 CEST | 443 | 49755 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:32.337301016 CEST | 80 | 49724 | 208.111.136.128 | 192.168.2.4 |
Apr 26, 2024 18:00:32.337415934 CEST | 49724 | 80 | 192.168.2.4 | 208.111.136.128 |
Apr 26, 2024 18:00:32.337553978 CEST | 49724 | 80 | 192.168.2.4 | 208.111.136.128 |
Apr 26, 2024 18:00:32.465046883 CEST | 80 | 49724 | 208.111.136.128 | 192.168.2.4 |
Apr 26, 2024 18:00:55.580183029 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:55.580221891 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:55.580349922 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:55.580704927 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:55.580718994 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.230406046 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.230488062 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.249901056 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.249924898 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.250348091 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.282325029 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.328115940 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835572958 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835602999 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835638046 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835663080 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835674047 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.835695982 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835721016 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835724115 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.835746050 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.835747004 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835760117 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835769892 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.835786104 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.835830927 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:56.835912943 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.853967905 CEST | 49764 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 18:00:56.853984118 CEST | 443 | 49764 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 18:00:58.449223995 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:00:58.449240923 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:01:02.335841894 CEST | 49766 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:01:02.335896969 CEST | 443 | 49766 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:01:02.336256027 CEST | 49766 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:01:02.336846113 CEST | 49766 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:01:02.336863041 CEST | 443 | 49766 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:01:02.692917109 CEST | 443 | 49766 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:01:02.693416119 CEST | 49766 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:01:02.693468094 CEST | 443 | 49766 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:01:02.693842888 CEST | 443 | 49766 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:01:02.694195986 CEST | 49766 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:01:02.694271088 CEST | 443 | 49766 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:01:02.746515036 CEST | 49766 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:01:12.692498922 CEST | 443 | 49766 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:01:12.692573071 CEST | 443 | 49766 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:01:12.692789078 CEST | 49766 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:01:13.140292883 CEST | 49766 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:01:13.140335083 CEST | 443 | 49766 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:01:15.205399036 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:01:15.205557108 CEST | 443 | 49752 | 185.216.70.6 | 192.168.2.4 |
Apr 26, 2024 18:01:15.205637932 CEST | 49752 | 443 | 192.168.2.4 | 185.216.70.6 |
Apr 26, 2024 18:02:02.399053097 CEST | 49768 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:02:02.399101973 CEST | 443 | 49768 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:02:02.399214029 CEST | 49768 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:02:02.399821997 CEST | 49768 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:02:02.399851084 CEST | 443 | 49768 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:02:02.729510069 CEST | 443 | 49768 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:02:02.758917093 CEST | 49768 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:02:02.758943081 CEST | 443 | 49768 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:02:02.759701967 CEST | 443 | 49768 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:02:02.760243893 CEST | 49768 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:02:02.760371923 CEST | 443 | 49768 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:02:02.808737040 CEST | 49768 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:02:12.715840101 CEST | 443 | 49768 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:02:12.715903044 CEST | 443 | 49768 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:02:12.715965033 CEST | 49768 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:02:13.141985893 CEST | 49768 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:02:13.142016888 CEST | 443 | 49768 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:03:02.567281961 CEST | 49769 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 18:03:02.567369938 CEST | 443 | 49769 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 18:03:02.567456007 CEST | 49769 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 18:03:02.568077087 CEST | 49769 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 18:03:02.568125010 CEST | 443 | 49769 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 18:03:02.923099041 CEST | 443 | 49769 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 18:03:02.923407078 CEST | 49769 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 18:03:02.923469067 CEST | 443 | 49769 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 18:03:02.923873901 CEST | 443 | 49769 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 18:03:02.924278021 CEST | 49769 | 443 | 192.168.2.4 | 142.250.64.196 |
Apr 26, 2024 18:03:02.924376965 CEST | 443 | 49769 | 142.250.64.196 | 192.168.2.4 |
Apr 26, 2024 18:03:02.965572119 CEST | 49769 | 443 | 192.168.2.4 | 142.250.64.196 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 17:59:58.250840902 CEST | 57131 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 17:59:58.251068115 CEST | 54414 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 17:59:58.280946970 CEST | 53 | 53937 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 17:59:58.374593973 CEST | 53 | 60909 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 17:59:58.516931057 CEST | 53 | 54414 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 17:59:58.517038107 CEST | 53 | 57131 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 17:59:58.831932068 CEST | 51452 | 53 | 192.168.2.4 | 8.8.8.8 |
Apr 26, 2024 17:59:58.832240105 CEST | 62907 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 17:59:58.957237959 CEST | 53 | 62907 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 17:59:59.006037951 CEST | 53 | 51452 | 8.8.8.8 | 192.168.2.4 |
Apr 26, 2024 17:59:59.543181896 CEST | 53 | 59046 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:02.285103083 CEST | 55913 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:02.285525084 CEST | 53274 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:02.338424921 CEST | 53135 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:02.339318991 CEST | 59819 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:02.419946909 CEST | 53 | 55913 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:02.419971943 CEST | 53 | 53274 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:02.464616060 CEST | 53 | 53135 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:02.464639902 CEST | 53 | 59819 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:02.487034082 CEST | 53 | 54112 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:03.216348886 CEST | 56326 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:03.216826916 CEST | 51321 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:03.268893003 CEST | 62109 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:03.269450903 CEST | 61607 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:03.292484045 CEST | 53 | 62799 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:03.345784903 CEST | 53 | 56326 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:03.345824957 CEST | 53 | 51321 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:03.663496017 CEST | 53 | 62109 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:03.692658901 CEST | 53 | 61607 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:10.451265097 CEST | 53 | 59601 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:10.467087030 CEST | 64243 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:10.467571974 CEST | 50015 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:10.592050076 CEST | 53 | 64243 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:10.592962027 CEST | 53 | 50015 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:11.643925905 CEST | 58556 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:11.644314051 CEST | 49889 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:00:11.903247118 CEST | 53 | 58556 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:12.071223974 CEST | 53 | 49889 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:18.829778910 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Apr 26, 2024 18:00:20.126012087 CEST | 53 | 51627 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:39.211899042 CEST | 53 | 57998 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:00:58.018717051 CEST | 53 | 60424 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:01:02.136792898 CEST | 53 | 59905 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:01:27.348335028 CEST | 53 | 57832 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:02:14.304506063 CEST | 53 | 55948 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:03:02.436532021 CEST | 61031 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:03:02.436954021 CEST | 57681 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:03:02.564662933 CEST | 53 | 61031 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:03:02.564719915 CEST | 53 | 57681 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 26, 2024 17:59:58.250840902 CEST | 192.168.2.4 | 1.1.1.1 | 0x385b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 17:59:58.251068115 CEST | 192.168.2.4 | 1.1.1.1 | 0xf68f | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 17:59:58.831932068 CEST | 192.168.2.4 | 8.8.8.8 | 0x8a88 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 17:59:58.832240105 CEST | 192.168.2.4 | 1.1.1.1 | 0xd9c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:00:02.285103083 CEST | 192.168.2.4 | 1.1.1.1 | 0x7039 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:00:02.285525084 CEST | 192.168.2.4 | 1.1.1.1 | 0xfcda | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 18:00:02.338424921 CEST | 192.168.2.4 | 1.1.1.1 | 0x6b09 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:00:02.339318991 CEST | 192.168.2.4 | 1.1.1.1 | 0xab3 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 18:00:03.216348886 CEST | 192.168.2.4 | 1.1.1.1 | 0x1f7e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:00:03.216826916 CEST | 192.168.2.4 | 1.1.1.1 | 0x9b44 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 18:00:03.268893003 CEST | 192.168.2.4 | 1.1.1.1 | 0xaaf9 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:00:03.269450903 CEST | 192.168.2.4 | 1.1.1.1 | 0x5a16 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 18:00:10.467087030 CEST | 192.168.2.4 | 1.1.1.1 | 0x4c43 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:00:10.467571974 CEST | 192.168.2.4 | 1.1.1.1 | 0x2a04 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 18:00:11.643925905 CEST | 192.168.2.4 | 1.1.1.1 | 0x81be | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:00:11.644314051 CEST | 192.168.2.4 | 1.1.1.1 | 0xfe94 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 18:03:02.436532021 CEST | 192.168.2.4 | 1.1.1.1 | 0x3ecc | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:03:02.436954021 CEST | 192.168.2.4 | 1.1.1.1 | 0xbaf9 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 26, 2024 17:59:58.517038107 CEST | 1.1.1.1 | 192.168.2.4 | 0x385b | No error (0) | 185.216.70.216 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 17:59:58.957237959 CEST | 1.1.1.1 | 192.168.2.4 | 0xd9c | No error (0) | 192.178.50.46 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 17:59:59.006037951 CEST | 8.8.8.8 | 192.168.2.4 | 0x8a88 | No error (0) | 142.250.113.102 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 17:59:59.006037951 CEST | 8.8.8.8 | 192.168.2.4 | 0x8a88 | No error (0) | 142.250.113.113 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 17:59:59.006037951 CEST | 8.8.8.8 | 192.168.2.4 | 0x8a88 | No error (0) | 142.250.113.139 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 17:59:59.006037951 CEST | 8.8.8.8 | 192.168.2.4 | 0x8a88 | No error (0) | 142.250.113.138 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 17:59:59.006037951 CEST | 8.8.8.8 | 192.168.2.4 | 0x8a88 | No error (0) | 142.250.113.100 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 17:59:59.006037951 CEST | 8.8.8.8 | 192.168.2.4 | 0x8a88 | No error (0) | 142.250.113.101 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:02.419946909 CEST | 1.1.1.1 | 192.168.2.4 | 0x7039 | No error (0) | 142.250.217.196 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:02.419971943 CEST | 1.1.1.1 | 192.168.2.4 | 0xfcda | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 18:00:02.464616060 CEST | 1.1.1.1 | 192.168.2.4 | 0x6b09 | No error (0) | 104.17.24.14 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:02.464616060 CEST | 1.1.1.1 | 192.168.2.4 | 0x6b09 | No error (0) | 104.17.25.14 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:02.464639902 CEST | 1.1.1.1 | 192.168.2.4 | 0xab3 | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 18:00:03.345784903 CEST | 1.1.1.1 | 192.168.2.4 | 0x1f7e | No error (0) | cs1100.wpc.omegacdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:03.345784903 CEST | 1.1.1.1 | 192.168.2.4 | 0x1f7e | No error (0) | 152.199.4.44 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:03.345824957 CEST | 1.1.1.1 | 192.168.2.4 | 0x9b44 | No error (0) | cs1100.wpc.omegacdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:03.663496017 CEST | 1.1.1.1 | 192.168.2.4 | 0xaaf9 | No error (0) | 185.216.70.6 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:10.592050076 CEST | 1.1.1.1 | 192.168.2.4 | 0x4c43 | No error (0) | cs1100.wpc.omegacdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:10.592050076 CEST | 1.1.1.1 | 192.168.2.4 | 0x4c43 | No error (0) | 152.199.4.44 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:10.592962027 CEST | 1.1.1.1 | 192.168.2.4 | 0x2a04 | No error (0) | cs1100.wpc.omegacdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:00:11.903247118 CEST | 1.1.1.1 | 192.168.2.4 | 0x81be | No error (0) | 185.216.70.6 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:03:02.564662933 CEST | 1.1.1.1 | 192.168.2.4 | 0x3ecc | No error (0) | 142.250.64.196 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:03:02.564719915 CEST | 1.1.1.1 | 192.168.2.4 | 0xbaf9 | No error (0) | 65 | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49733 | 185.216.70.216 | 443 | 5316 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 15:59:59 UTC | 595 | OUT | |
2024-04-26 15:59:59 UTC | 289 | IN | |
2024-04-26 15:59:59 UTC | 16384 | IN | |
2024-04-26 15:59:59 UTC | 16384 | IN | |
2024-04-26 16:00:00 UTC | 16384 | IN | |
2024-04-26 16:00:00 UTC | 16384 | IN | |
2024-04-26 16:00:00 UTC | 16384 | IN | |
2024-04-26 16:00:00 UTC | 16384 | IN | |
2024-04-26 16:00:00 UTC | 16384 | IN | |
2024-04-26 16:00:00 UTC | 9568 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49739 | 104.17.24.14 | 443 | 5316 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:02 UTC | 608 | OUT | |
2024-04-26 16:00:03 UTC | 961 | IN | |
2024-04-26 16:00:03 UTC | 408 | IN | |
2024-04-26 16:00:03 UTC | 1369 | IN | |
2024-04-26 16:00:03 UTC | 1369 | IN | |
2024-04-26 16:00:03 UTC | 1369 | IN | |
2024-04-26 16:00:03 UTC | 1369 | IN | |
2024-04-26 16:00:03 UTC | 1369 | IN | |
2024-04-26 16:00:03 UTC | 1369 | IN | |
2024-04-26 16:00:03 UTC | 1369 | IN | |
2024-04-26 16:00:03 UTC | 1369 | IN | |
2024-04-26 16:00:03 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49742 | 152.199.4.44 | 443 | 5316 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:03 UTC | 606 | OUT | |
2024-04-26 16:00:03 UTC | 719 | IN | |
2024-04-26 16:00:03 UTC | 16383 | IN | |
2024-04-26 16:00:03 UTC | 791 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49743 | 185.216.70.6 | 443 | 5316 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:06 UTC | 473 | OUT | |
2024-04-26 16:00:06 UTC | 390 | IN | |
2024-04-26 16:00:06 UTC | 2 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49744 | 185.216.70.6 | 443 | 5316 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:10 UTC | 613 | OUT | |
2024-04-26 16:00:10 UTC | 183 | OUT | |
2024-04-26 16:00:10 UTC | 216 | IN | |
2024-04-26 16:00:11 UTC | 84 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49746 | 23.204.76.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:10 UTC | 161 | OUT | |
2024-04-26 16:00:11 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49747 | 152.199.4.44 | 443 | 5316 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:10 UTC | 406 | OUT | |
2024-04-26 16:00:11 UTC | 719 | IN | |
2024-04-26 16:00:11 UTC | 16383 | IN | |
2024-04-26 16:00:11 UTC | 791 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49749 | 23.204.76.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:11 UTC | 239 | OUT | |
2024-04-26 16:00:11 UTC | 530 | IN | |
2024-04-26 16:00:11 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49753 | 185.216.70.6 | 443 | 5316 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:13 UTC | 366 | OUT | |
2024-04-26 16:00:13 UTC | 173 | IN | |
2024-04-26 16:00:14 UTC | 31 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.4 | 49755 | 20.114.59.183 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:17 UTC | 306 | OUT | |
2024-04-26 16:00:18 UTC | 560 | IN | |
2024-04-26 16:00:18 UTC | 15824 | IN | |
2024-04-26 16:00:18 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.4 | 49764 | 20.114.59.183 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:00:56 UTC | 306 | OUT | |
2024-04-26 16:00:56 UTC | 560 | IN | |
2024-04-26 16:00:56 UTC | 15824 | IN | |
2024-04-26 16:00:56 UTC | 9633 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 17:59:50 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | false |
Target ID: | 1 |
Start time: | 17:59:56 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | false |
Target ID: | 3 |
Start time: | 17:59:57 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |
Target ID: | 4 |
Start time: | 17:59:57 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |