Windows
Analysis Report
http://tm-sdk.platinumai.net
Overview
Detection
Score: | 0 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 4500 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 3320 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2088 --fi eld-trial- handle=201 6,i,126008 4168261093 2039,11488 9727678351 07359,2621 44 --disab le-feature s=Optimiza tionGuideM odelDownlo ading,Opti mizationHi nts,Optimi zationHint sFetching, Optimizati onTargetPr ediction / prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 3004 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t http:/// MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 6600 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2148 --fi eld-trial- handle=203 6,i,314638 7557290978 444,172360 3349620163 5949,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 1744 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t http://% 3cfnc1%3e( 5)%3cfnc1% 3e(%02)/ MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 6904 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =1700 --fi eld-trial- handle=147 2,i,108976 3993963566 7128,31002 0669020151 8955,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6832 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt p://tm-sdk .platinuma i.net" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
There are no malicious signatures, click here to show all signatures.
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Virustotal | Browse |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
bg.microsoft.map.fastly.net | 199.232.214.172 | true | false | unknown | |
maxcdn.bootstrapcdn.com | 104.18.11.207 | true | false | high | |
www.google.com | 142.250.217.196 | true | false | high | |
fp2e7a.wpc.phicdn.net | 192.229.211.108 | true | false | unknown | |
tm-sdk.platinumai.net | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false | unknown | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
104.18.11.207 | maxcdn.bootstrapcdn.com | United States | 13335 | CLOUDFLARENETUS | false | |
142.250.217.196 | www.google.com | United States | 15169 | GOOGLEUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false |
IP |
---|
192.168.2.14 |
192.168.2.4 |
192.168.2.5 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1432268 |
Start date and time: | 2024-04-26 18:46:16 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 20s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | http://tm-sdk.platinumai.net |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 12 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | CLEAN |
Classification: | clean0.win@29/6@8/6 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 142.250.64.195, 142.250.217.238, 173.194.212.84, 34.104.35.123, 13.65.85.146, 199.232.214.172, 192.229.211.108, 20.166.126.56, 13.85.23.206, 142.250.217.227
- Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, clientservices.googleapis.com, ctldl.windowsupdate.com, wu-bg-shim.trafficmanager.net, fe3cr.delivery.mp.microsoft.com, waws-prod-sn1-065.southcentralus.cloudapp.azure.com, pla-prod-tm-ingest-01.trafficmanager.net, fe3.delivery.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, ocsp.digicert.com, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, update.googleapis.com, clients.l.google.com
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 788 |
Entropy (8bit): | 5.149065480896726 |
Encrypted: | false |
SSDEEP: | 24:BR6jl2Q6Fv7fxBHslgT9lCuABuoB7HHHHHHHYqmffffffo:BR6jkQ6txKlgZ01BuSEqmffffffo |
MD5: | B3EF781BF2139F28BA6AD17C6C6C3ACC |
SHA1: | 73FC4124378F119B8A55D16EDB36BC1924D3869A |
SHA-256: | 529D2D545766AF196DDDC845B2A61B2621A128A5CE5242F79B218ED235202991 |
SHA-512: | 3043545354898D15F0F9AB455BC37F4A03DE8FDA7ABEA0566BBD245138445C2F734B8852B04F90CDB5FBE15417D34FB47FD55FA5B31393C7F6CD30C9DB847881 |
Malicious: | false |
Reputation: | low |
URL: | https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&oft=1&pgcl=20&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 6441 |
Entropy (8bit): | 4.15311664623378 |
Encrypted: | false |
SSDEEP: | 96:/x1uibsRwFA0frC2KD90O3ufMFFeW3L01lFxy53h7yiIs5YdvBWU2EZ:/jrbQD993ufUjL01Z0hmdugvd2S |
MD5: | 478A349070537D8AD7DD560B65E4A0AA |
SHA1: | 96477773E0447FC230E16C9BB16F37CC0C0DC151 |
SHA-256: | BEEA07A1517592D704C3ADD971626DA76C370A2A6106826A61A2FBDCEAB9A94E |
SHA-512: | 265C1383B9C2B2B6B1ECEEB653B3590587B593246F845E391D55F89E7587E6011805F9728C0D1F1352C799CE9D8E0BFC3D08B965D7FB78961A8E4DF5490A803E |
Malicious: | false |
Reputation: | low |
URL: | https://tm-sdk.platinumai.net/ |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 29063 |
Entropy (8bit): | 4.755267089852831 |
Encrypted: | false |
SSDEEP: | 384:Uu5yWeTUKW+KlkJ5de2UYDyVfwYUas8l8yQ/8dwwdG:flr+Klk3Yi+fwYUf8l8yQ/eC |
MD5: | 4083F5D376EB849A458CC790B53BA080 |
SHA1: | FB5B49426DEE7F1508500E698D1B3C6B04C8FCCE |
SHA-256: | 008A1D103902F15FDB1C191FCB1CE8954330E7B8DE43D09ABB08555BA609F420 |
SHA-512: | E2E1991E96C3962371880BFF43364DA3FC9BD85B405FEAA20DBEF2A415A211D2505FC3EE829F0CEA297949190DF2342B0CB5AC877AEB3C349745FDC3C0560CEA |
Malicious: | false |
Reputation: | low |
URL: | https://maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 18:47:01.279290915 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 18:47:10.888292074 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 18:47:15.682267904 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:15.682308912 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:15.682388067 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:15.684812069 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:15.684839964 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:15.684984922 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:15.685015917 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:15.685017109 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:15.685062885 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:15.696183920 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:15.696213007 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:15.696471930 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:15.696491957 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:15.696697950 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:15.696727991 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.035878897 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.037395000 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.037422895 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.038561106 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.038634062 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.039652109 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.039721012 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.039891005 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.039897919 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.072344065 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.072391987 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.072483063 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.072757959 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.072798014 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.072895050 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.073276997 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.073293924 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.073460102 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.073477983 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.086652040 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.086947918 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.087004900 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.087028980 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.087151051 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.087172031 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.088076115 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.088144064 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.088489056 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.088553905 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.088663101 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.088671923 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.088681936 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.088731050 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.089093924 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.089200974 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.089260101 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.200983047 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.201004028 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.201024055 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.269553900 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.379822969 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.379971027 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.380080938 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.380115986 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.382567883 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.382725954 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.385855913 CEST | 49733 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.385874987 CEST | 443 | 49733 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.387089968 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.387135983 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.387200117 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.387439966 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.387451887 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.397988081 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.408960104 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.409250021 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.409312963 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.409661055 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.410671949 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.410752058 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.410813093 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.452125072 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.462384939 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.462781906 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.462802887 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.463140965 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.463540077 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.463711977 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.463718891 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.464277983 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.497194052 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.672130108 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.672187090 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.686779976 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.686892033 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.686913967 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.687242031 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.687298059 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.723078966 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.804996014 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.844324112 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.844382048 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.844477892 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.844496012 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.848031044 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.848992109 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.924552917 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.924663067 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.924689054 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.924725056 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.925106049 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.961329937 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.961417913 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:16.961445093 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.961458921 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:16.961529016 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:17.923017025 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:17.923053026 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:17.923559904 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:17.924441099 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:17.924523115 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:17.986685038 CEST | 49736 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:17.986722946 CEST | 443 | 49736 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:17.987268925 CEST | 49734 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:17.987297058 CEST | 443 | 49734 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:17.988183975 CEST | 49735 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:17.988214970 CEST | 443 | 49735 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.009743929 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.057755947 CEST | 49737 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.057791948 CEST | 443 | 49737 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.060697079 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.060743093 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.060808897 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.062900066 CEST | 49745 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.062942982 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.062997103 CEST | 49745 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.063674927 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.064165115 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.064177036 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.064372063 CEST | 49745 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.064388037 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.108130932 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.235471010 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.235523939 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.235554934 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.235570908 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.235589981 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.235622883 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.235872984 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.235919952 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.235955000 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.392762899 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.397016048 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.439091921 CEST | 49745 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.439095974 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.439109087 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.439127922 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.439616919 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.439688921 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.440289021 CEST | 49740 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.440320015 CEST | 443 | 49740 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.441498041 CEST | 49745 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.441597939 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.442096949 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.442204952 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.443123102 CEST | 49745 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.443183899 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.488121986 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.488142014 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.723207951 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.723257065 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.723297119 CEST | 49745 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.723309994 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.723377943 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.723422050 CEST | 49745 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.728545904 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.728604078 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.728634119 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.728657961 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.728674889 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.728708982 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.729320049 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.729382992 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.729424000 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.816498041 CEST | 49745 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.816526890 CEST | 443 | 49745 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.817473888 CEST | 49744 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.817506075 CEST | 443 | 49744 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.884674072 CEST | 49748 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.884720087 CEST | 443 | 49748 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:18.884797096 CEST | 49748 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.893496990 CEST | 49748 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:18.893532991 CEST | 443 | 49748 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:19.226504087 CEST | 443 | 49748 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:19.395791054 CEST | 49748 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:19.787776947 CEST | 49748 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:19.787811995 CEST | 443 | 49748 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:19.788341999 CEST | 443 | 49748 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:19.792064905 CEST | 49748 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:19.792150021 CEST | 443 | 49748 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:19.991492987 CEST | 49748 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:21.728060961 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:21.728163004 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:21.728251934 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:21.728462934 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:21.728501081 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:21.989582062 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:21.990442991 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:21.990469933 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:21.991492033 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:21.991559982 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.110548973 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.110734940 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.111354113 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.111402988 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.199353933 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.286897898 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.286957026 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.286978960 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.287022114 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.287046909 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.287103891 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.287318945 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.287741899 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.287806034 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.287820101 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.287853956 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.287925959 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.287940025 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.288135052 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.288187027 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.288201094 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.288317919 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.288422108 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.288435936 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.288866997 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.288969994 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.288983107 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.289522886 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.289586067 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.289598942 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.290441990 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.290468931 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.290524960 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.290545940 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.290599108 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.290625095 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.290923119 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.290972948 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.290985107 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.291017056 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:22.291071892 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.311613083 CEST | 49750 | 443 | 192.168.2.4 | 104.18.11.207 |
Apr 26, 2024 18:47:22.311642885 CEST | 443 | 49750 | 104.18.11.207 | 192.168.2.4 |
Apr 26, 2024 18:47:25.050719976 CEST | 49672 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 18:47:25.050797939 CEST | 443 | 49672 | 173.222.162.32 | 192.168.2.4 |
Apr 26, 2024 18:47:25.108459949 CEST | 49752 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.108530045 CEST | 443 | 49752 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.108602047 CEST | 49752 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.110671997 CEST | 49752 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.110693932 CEST | 443 | 49752 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.292501926 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:25.292557001 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:25.292840958 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:25.293862104 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:25.293885946 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:25.369558096 CEST | 443 | 49752 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.369678974 CEST | 49752 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.394043922 CEST | 49752 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.394098043 CEST | 443 | 49752 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.394416094 CEST | 443 | 49752 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.457325935 CEST | 49752 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.500127077 CEST | 443 | 49752 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.615731001 CEST | 443 | 49752 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.615828991 CEST | 443 | 49752 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.615901947 CEST | 49752 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.619292021 CEST | 49752 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.619309902 CEST | 443 | 49752 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.731245041 CEST | 49754 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.731292009 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.731462955 CEST | 49754 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.732566118 CEST | 49754 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.732589960 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.987421036 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:25.987497091 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:25.989509106 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:25.989579916 CEST | 49754 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:25.995635986 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:25.995656013 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:25.995899916 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:26.010931015 CEST | 49754 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:26.010951996 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:26.011312962 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:26.012701035 CEST | 49754 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:26.060113907 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:26.090190887 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:26.240864038 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:26.240958929 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:26.241038084 CEST | 49754 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:26.264179945 CEST | 49754 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:26.264190912 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:26.264225006 CEST | 49754 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 18:47:26.264230013 CEST | 443 | 49754 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 18:47:26.734747887 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:26.780114889 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.192414999 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.192472935 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.192482948 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.192517042 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.192532063 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.192543983 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.192560911 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:27.192583084 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.192629099 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:27.193614006 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.193628073 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.193685055 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:27.193691015 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.193733931 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.194061995 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:27.627748013 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:27.627784014 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:27.627796888 CEST | 49753 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:47:27.627809048 CEST | 443 | 49753 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:47:28.616293907 CEST | 49723 | 80 | 192.168.2.4 | 72.21.81.240 |
Apr 26, 2024 18:47:28.740799904 CEST | 80 | 49723 | 72.21.81.240 | 192.168.2.4 |
Apr 26, 2024 18:47:28.740880013 CEST | 49723 | 80 | 192.168.2.4 | 72.21.81.240 |
Apr 26, 2024 18:47:29.223541021 CEST | 443 | 49748 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:29.223720074 CEST | 443 | 49748 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:47:29.223781109 CEST | 49748 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:30.186005116 CEST | 49748 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:47:30.186072111 CEST | 443 | 49748 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:48:03.996232986 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:03.996339083 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:03.996414900 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:03.996987104 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:03.997030020 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:04.698218107 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:04.698538065 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:04.702538013 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:04.702559948 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:04.702950001 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:04.711327076 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:04.752135038 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.377281904 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.377394915 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.377438068 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.377475023 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:05.377501011 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.377521038 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:05.377546072 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:05.377675056 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.377737999 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:05.377743006 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.377756119 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.377794027 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:05.377799034 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.377963066 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.378011942 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:05.382643938 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:05.382663012 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:05.382672071 CEST | 49760 | 443 | 192.168.2.4 | 40.127.169.103 |
Apr 26, 2024 18:48:05.382677078 CEST | 443 | 49760 | 40.127.169.103 | 192.168.2.4 |
Apr 26, 2024 18:48:18.044428110 CEST | 49724 | 80 | 192.168.2.4 | 72.21.81.240 |
Apr 26, 2024 18:48:18.169296980 CEST | 80 | 49724 | 72.21.81.240 | 192.168.2.4 |
Apr 26, 2024 18:48:18.169390917 CEST | 49724 | 80 | 192.168.2.4 | 72.21.81.240 |
Apr 26, 2024 18:48:19.068006039 CEST | 49762 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:48:19.068061113 CEST | 443 | 49762 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:48:19.068144083 CEST | 49762 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:48:19.069525957 CEST | 49762 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:48:19.069542885 CEST | 443 | 49762 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:48:19.466110945 CEST | 443 | 49762 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:48:19.466954947 CEST | 49762 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:48:19.466989994 CEST | 443 | 49762 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:48:19.468204021 CEST | 443 | 49762 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:48:19.468724012 CEST | 49762 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:48:19.468900919 CEST | 443 | 49762 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:48:19.512968063 CEST | 49762 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:48:29.453439951 CEST | 443 | 49762 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:48:29.453634024 CEST | 443 | 49762 | 142.250.217.196 | 192.168.2.4 |
Apr 26, 2024 18:48:29.453689098 CEST | 49762 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:48:30.227785110 CEST | 49762 | 443 | 192.168.2.4 | 142.250.217.196 |
Apr 26, 2024 18:48:30.227824926 CEST | 443 | 49762 | 142.250.217.196 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 18:47:14.732779980 CEST | 53 | 58216 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:47:14.778712034 CEST | 53 | 51733 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:47:15.550487041 CEST | 55949 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:47:15.550709963 CEST | 52292 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:47:15.676265001 CEST | 53 | 52292 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:47:15.676446915 CEST | 53 | 55949 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:47:16.207389116 CEST | 53 | 57418 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:47:16.219661951 CEST | 51866 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:47:16.220359087 CEST | 49676 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:47:18.061810970 CEST | 51466 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:47:18.062263966 CEST | 49182 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:47:21.601771116 CEST | 54629 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:47:21.602190018 CEST | 62371 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 18:47:21.727355957 CEST | 53 | 62371 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:47:21.727607965 CEST | 53 | 54629 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:47:29.628165007 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Apr 26, 2024 18:47:36.329312086 CEST | 53 | 63172 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:47:55.452240944 CEST | 53 | 62977 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:48:14.578238010 CEST | 53 | 63559 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 18:48:17.834364891 CEST | 53 | 64472 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Checksum | Code | Type |
---|---|---|---|---|---|
Apr 26, 2024 18:47:16.535610914 CEST | 192.168.2.4 | 1.1.1.1 | c316 | (Port unreachable) | Destination Unreachable |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 26, 2024 18:47:15.550487041 CEST | 192.168.2.4 | 1.1.1.1 | 0x8022 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:47:15.550709963 CEST | 192.168.2.4 | 1.1.1.1 | 0x7f1b | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 18:47:16.219661951 CEST | 192.168.2.4 | 1.1.1.1 | 0x23c9 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:47:16.220359087 CEST | 192.168.2.4 | 1.1.1.1 | 0x5e4 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 18:47:18.061810970 CEST | 192.168.2.4 | 1.1.1.1 | 0x4243 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:47:18.062263966 CEST | 192.168.2.4 | 1.1.1.1 | 0xf39f | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 18:47:21.601771116 CEST | 192.168.2.4 | 1.1.1.1 | 0x51fa | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 18:47:21.602190018 CEST | 192.168.2.4 | 1.1.1.1 | 0x1145 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 26, 2024 18:47:15.676265001 CEST | 1.1.1.1 | 192.168.2.4 | 0x7f1b | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 18:47:15.676446915 CEST | 1.1.1.1 | 192.168.2.4 | 0x8022 | No error (0) | 142.250.217.196 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:16.346973896 CEST | 1.1.1.1 | 192.168.2.4 | 0x23c9 | No error (0) | pla-prod-tm-ingest-01.trafficmanager.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:16.346973896 CEST | 1.1.1.1 | 192.168.2.4 | 0x23c9 | No error (0) | waws-prod-sn1-065.sip.azurewebsites.windows.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:16.346973896 CEST | 1.1.1.1 | 192.168.2.4 | 0x23c9 | No error (0) | waws-prod-sn1-065.southcentralus.cloudapp.azure.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:16.535536051 CEST | 1.1.1.1 | 192.168.2.4 | 0x5e4 | No error (0) | pla-prod-tm-ingest-01.trafficmanager.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:16.535536051 CEST | 1.1.1.1 | 192.168.2.4 | 0x5e4 | No error (0) | waws-prod-sn1-065.sip.azurewebsites.windows.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:16.535536051 CEST | 1.1.1.1 | 192.168.2.4 | 0x5e4 | No error (0) | waws-prod-sn1-065.southcentralus.cloudapp.azure.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:18.307630062 CEST | 1.1.1.1 | 192.168.2.4 | 0x4243 | No error (0) | pla-prod-tm-ingest-01.trafficmanager.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:18.307630062 CEST | 1.1.1.1 | 192.168.2.4 | 0x4243 | No error (0) | waws-prod-sn1-065.sip.azurewebsites.windows.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:18.307630062 CEST | 1.1.1.1 | 192.168.2.4 | 0x4243 | No error (0) | waws-prod-sn1-065.southcentralus.cloudapp.azure.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:18.367027998 CEST | 1.1.1.1 | 192.168.2.4 | 0xf39f | No error (0) | pla-prod-tm-ingest-01.trafficmanager.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:18.367027998 CEST | 1.1.1.1 | 192.168.2.4 | 0xf39f | No error (0) | waws-prod-sn1-065.sip.azurewebsites.windows.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:18.367027998 CEST | 1.1.1.1 | 192.168.2.4 | 0xf39f | No error (0) | waws-prod-sn1-065.southcentralus.cloudapp.azure.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:21.727355957 CEST | 1.1.1.1 | 192.168.2.4 | 0x1145 | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 18:47:21.727607965 CEST | 1.1.1.1 | 192.168.2.4 | 0x51fa | No error (0) | 104.18.11.207 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:21.727607965 CEST | 1.1.1.1 | 192.168.2.4 | 0x51fa | No error (0) | 104.18.10.207 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:26.447444916 CEST | 1.1.1.1 | 192.168.2.4 | 0x593d | No error (0) | 199.232.214.172 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:26.447444916 CEST | 1.1.1.1 | 192.168.2.4 | 0x593d | No error (0) | 199.232.210.172 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:26.870697975 CEST | 1.1.1.1 | 192.168.2.4 | 0x5623 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:26.870697975 CEST | 1.1.1.1 | 192.168.2.4 | 0x5623 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:40.939208031 CEST | 1.1.1.1 | 192.168.2.4 | 0x277d | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:47:40.939208031 CEST | 1.1.1.1 | 192.168.2.4 | 0x277d | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:48:10.498739004 CEST | 1.1.1.1 | 192.168.2.4 | 0x2e29 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:48:10.498739004 CEST | 1.1.1.1 | 192.168.2.4 | 0x2e29 | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 18:48:27.454355001 CEST | 1.1.1.1 | 192.168.2.4 | 0x912f | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 18:48:27.454355001 CEST | 1.1.1.1 | 192.168.2.4 | 0x912f | No error (0) | 192.229.211.108 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49733 | 142.250.217.196 | 443 | 3320 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:16 UTC | 607 | OUT | |
2024-04-26 16:47:16 UTC | 1703 | IN | |
2024-04-26 16:47:16 UTC | 795 | IN | |
2024-04-26 16:47:16 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49735 | 142.250.217.196 | 443 | 3320 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:16 UTC | 510 | OUT | |
2024-04-26 16:47:16 UTC | 1843 | IN | |
2024-04-26 16:47:16 UTC | 458 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49734 | 142.250.217.196 | 443 | 3320 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:16 UTC | 353 | OUT | |
2024-04-26 16:47:16 UTC | 1816 | IN | |
2024-04-26 16:47:16 UTC | 427 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49736 | 142.250.217.196 | 443 | 3320 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:16 UTC | 353 | OUT | |
2024-04-26 16:47:16 UTC | 1761 | IN | |
2024-04-26 16:47:16 UTC | 417 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49737 | 142.250.217.196 | 443 | 3320 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:16 UTC | 607 | OUT | |
2024-04-26 16:47:16 UTC | 1703 | IN | |
2024-04-26 16:47:16 UTC | 795 | IN | |
2024-04-26 16:47:16 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49740 | 142.250.217.196 | 443 | 3320 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:18 UTC | 738 | OUT | |
2024-04-26 16:47:18 UTC | 356 | IN | |
2024-04-26 16:47:18 UTC | 899 | IN | |
2024-04-26 16:47:18 UTC | 1255 | IN | |
2024-04-26 16:47:18 UTC | 960 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49745 | 142.250.217.196 | 443 | 3320 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:18 UTC | 742 | OUT | |
2024-04-26 16:47:18 UTC | 356 | IN | |
2024-04-26 16:47:18 UTC | 899 | IN | |
2024-04-26 16:47:18 UTC | 1255 | IN | |
2024-04-26 16:47:18 UTC | 978 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49744 | 142.250.217.196 | 443 | 3320 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:18 UTC | 912 | OUT | |
2024-04-26 16:47:18 UTC | 356 | IN | |
2024-04-26 16:47:18 UTC | 899 | IN | |
2024-04-26 16:47:18 UTC | 1255 | IN | |
2024-04-26 16:47:18 UTC | 1032 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49750 | 104.18.11.207 | 443 | 3320 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:22 UTC | 585 | OUT | |
2024-04-26 16:47:22 UTC | 931 | IN | |
2024-04-26 16:47:22 UTC | 438 | IN | |
2024-04-26 16:47:22 UTC | 1369 | IN | |
2024-04-26 16:47:22 UTC | 1369 | IN | |
2024-04-26 16:47:22 UTC | 1369 | IN | |
2024-04-26 16:47:22 UTC | 1369 | IN | |
2024-04-26 16:47:22 UTC | 1369 | IN | |
2024-04-26 16:47:22 UTC | 1369 | IN | |
2024-04-26 16:47:22 UTC | 1369 | IN | |
2024-04-26 16:47:22 UTC | 1369 | IN | |
2024-04-26 16:47:22 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.4 | 49752 | 23.204.76.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:25 UTC | 161 | OUT | |
2024-04-26 16:47:25 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.4 | 49754 | 23.204.76.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:26 UTC | 239 | OUT | |
2024-04-26 16:47:26 UTC | 530 | IN | |
2024-04-26 16:47:26 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.4 | 49753 | 40.127.169.103 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:47:26 UTC | 306 | OUT | |
2024-04-26 16:47:27 UTC | 560 | IN | |
2024-04-26 16:47:27 UTC | 15824 | IN | |
2024-04-26 16:47:27 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
12 | 192.168.2.4 | 49760 | 40.127.169.103 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 16:48:04 UTC | 306 | OUT | |
2024-04-26 16:48:05 UTC | 560 | IN | |
2024-04-26 16:48:05 UTC | 15824 | IN | |
2024-04-26 16:48:05 UTC | 9633 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 18:47:04 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 18:47:13 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 18:47:13 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 4 |
Start time: | 18:47:13 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 5 |
Start time: | 18:47:14 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 6 |
Start time: | 18:47:15 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |
Target ID: | 7 |
Start time: | 18:47:15 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |