Windows
Analysis Report
ACRMNT.pdf
Overview
General Information
Detection
Score: | 1 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 60% |
Signatures
Classification
Analysis Advice
Some HTTP requests failed (404). It is likely that the sample will exhibit less behavior. |
No malicious behavior found, analyze the document also on other version of Office / Acrobat |
- System is w10x64
- Acrobat.exe (PID: 7332 cmdline:
"C:\Progra m Files\Ad obe\Acroba t DC\Acrob at\Acrobat .exe" "C:\ Users\user \Desktop\A CRMNT.pdf" MD5: 24EAD1C46A47022347DC0F05F6EFBB8C) - AcroCEF.exe (PID: 7512 cmdline:
"C:\Progra m Files\Ad obe\Acroba t DC\Acrob at\acrocef _1\AcroCEF .exe" --ba ckgroundco lor=167772 15 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE) - AcroCEF.exe (PID: 7700 cmdline:
"C:\Progra m Files\Ad obe\Acroba t DC\Acrob at\acrocef _1\AcroCEF .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --log-seve rity=disab le --user- agent-prod uct="Reade rServices/ 23.6.20320 Chrome/10 5.0.0.0" - -lang=en-U S --user-d ata-dir="C :\Users\us er\AppData \Local\CEF \User Data " --log-fi le="C:\Pro gram Files \Adobe\Acr obat DC\Ac robat\acro cef_1\debu g.log" --m ojo-platfo rm-channel -handle=20 84 --field -trial-han dle=1620,i ,224543448 7977849350 ,111740407 4893898555 ,131072 -- disable-fe atures=Bac kForwardCa che,Calcul ateNativeW inOcclusio n,WinUseBr owserSpell Checker /p refetch:8 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE)
- chrome.exe (PID: 8684 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "https ://public- usa.mkt.dy namics.com /api/orgs/ 52f527c8-5 afd-ee11-9 048-000d3a 106837/r/z YThiUJLBU2 JHNZGgAw1q wEAAAA" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 8904 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2288 --fi eld-trial- handle=222 4,i,143756 3798667600 2986,80354 9457524575 0603,26214 4 /prefetc h:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
There are no malicious signatures, click here to show all signatures.
Source: | ML Model on OCR Text: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: |
Source: | JA3 fingerprint: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Initial sample: |
Source: | File created: | Jump to behavior |
Source: | File created: | Jump to behavior |
Source: | Key opened: | Jump to behavior |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Source: | Initial sample: | ||
Source: | Initial sample: |
Source: | Initial sample: |
Source: | Initial sample: |
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | 1 Spearphishing Link | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Masquerading | OS Credential Dumping | 1 System Information Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 4 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 5 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | ReversingLabs | |||
2% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Virustotal | Browse |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
part-0013.t-0009.t-msedge.net | 13.107.246.41 | true | false |
| unknown |
prdia888eus0aks.mkt.dynamics.com | 52.146.76.30 | true | false | high | |
www.google.com | 142.250.189.132 | true | false | high | |
public-usa.mkt.dynamics.com | unknown | unknown | false | high | |
assets-usa.mkt.dynamics.com | unknown | unknown | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false | high |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
13.107.246.41 | part-0013.t-0009.t-msedge.net | United States | 8068 | MICROSOFT-CORP-MSN-AS-BLOCKUS | false | |
142.250.189.132 | www.google.com | United States | 15169 | GOOGLEUS | false | |
52.146.76.30 | prdia888eus0aks.mkt.dynamics.com | United States | 8075 | MICROSOFT-CORP-MSN-AS-BLOCKUS | false | |
104.94.108.142 | unknown | United States | 16625 | AKAMAI-ASUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false |
IP |
---|
192.168.2.16 |
192.168.2.4 |
192.168.2.23 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1432278 |
Start date and time: | 2024-04-26 19:15:30 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 6m 3s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultwindowspdfcookbook.jbs |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 14 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Sample name: | ACRMNT.pdf |
Detection: | CLEAN |
Classification: | clean1.winPDF@40/58@10/8 |
EGA Information: | Failed |
HCA Information: |
|
Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, WmiPrvSE.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 23.221.212.219, 23.221.212.204, 23.204.76.141, 162.159.61.3, 172.64.41.3, 54.227.187.23, 52.202.204.11, 52.5.13.197, 23.22.254.206, 199.232.210.172, 192.229.211.108, 172.217.165.195, 142.250.189.142, 142.251.107.84, 34.104.35.123, 142.250.64.170, 142.250.64.138, 142.250.189.138, 172.217.2.202, 142.250.217.202, 172.217.165.202, 142.251.35.234, 142.250.217.234, 192.178.50.42, 142.250.64.234, 142.250.217.170, 192.178.50.74, 172.217.3.74, 172.217.15.202, 172.217.2.195, 192.178.50.46
- Excluded domains from analysis (whitelisted): e4578.dscg.akamaiedge.net, chrome.cloudflare-dns.com, slscr.update.microsoft.com, assets-mkt-usa.azureedge.net, clientservices.googleapis.com, acroipm2.adobe.com, cxppusa1im4t7x7z5iubq.trafficmanager.net, clients2.google.com, ocsp.digicert.com, ssl-delivery.adobe.com.edgekey.net, a122.dscd.akamai.net, update.googleapis.com, assets-mkt-usa.afd.azureedge.net, optimizationguide-pa.googleapis.com, clients1.google.com, fs.microsoft.com, accounts.google.com, acroipm2.adobe.com.edgesuite.net, ctldl.windowsupdate.com, p13n.adobe.io, fe3cr.delivery.mp.microsoft.com, edgedl.me.gvt1.com, azureedge-t-prod.trafficmanager.net, cxppusa1formui01cdnsa01-endpoint.azureedge.net, clients.l.google.com, geo2.adobe.com, cxppusa1formui01cdnsa01-endpoint.afd.azureedge.net
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
13.107.246.41 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
239.255.255.250 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | MicroClip | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Captcha Phish | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, SectopRAT, Stealc, Vidar, zgRAT | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Captcha Phish | Browse | |||
52.146.76.30 | Get hash | malicious | HtmlDropper, HTMLPhisher | Browse | ||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Fake Captcha, HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
104.94.108.142 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | NetSupport RAT | Browse | |||
Get hash | malicious | NetSupport RAT | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | ScreenConnect Tool | Browse | |||
Get hash | malicious | Unknown | Browse |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
part-0013.t-0009.t-msedge.net | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
prdia888eus0aks.mkt.dynamics.com | Get hash | malicious | HtmlDropper, HTMLPhisher | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Fake Captcha, HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
AKAMAI-ASUS | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Vidar | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HtmlDropper, HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | HtmlDropper, HTMLPhisher | Browse |
| ||
MICROSOFT-CORP-MSN-AS-BLOCKUS | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, SectopRAT, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, Stealc, Vidar, zgRAT | Browse |
| ||
MICROSOFT-CORP-MSN-AS-BLOCKUS | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, SectopRAT, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, Stealc, Vidar, zgRAT | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
28a2c9bd18a11de089ef85a160da29e4 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | MicroClip | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Captcha Phish | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Mars Stealer, PureLog Stealer, RedLine, SectopRAT, Stealc, Vidar, zgRAT | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Captcha Phish | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
|
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 292 |
Entropy (8bit): | 5.288518249181711 |
Encrypted: | false |
SSDEEP: | 6:Gd+q2Pwkn2nKuAl9OmbnIFUt8LJSXZmw+LJS3VkwOwkn2nKuAl9OmbjLJ:GYvYfHAahFUt8LAX/+LAF5JfHAaSJ |
MD5: | 8E92265E419A085F9A6823FFB54A7C0E |
SHA1: | A87E518B369C5321A8B7CA3BF31247B11CD15177 |
SHA-256: | 9A5C6886031942937E54E4E76598506867C6458F35A5420E6153D9A64A6D88AB |
SHA-512: | BA9FEB90491E45DEE6695C4962C743529D0870390D19ADD7AC30A90C128FF756BA6C91C0A28F62C0255B191CC3106D9C22F93594537BCFB36844E095776A19D9 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 292 |
Entropy (8bit): | 5.288518249181711 |
Encrypted: | false |
SSDEEP: | 6:Gd+q2Pwkn2nKuAl9OmbnIFUt8LJSXZmw+LJS3VkwOwkn2nKuAl9OmbjLJ:GYvYfHAahFUt8LAX/+LAF5JfHAaSJ |
MD5: | 8E92265E419A085F9A6823FFB54A7C0E |
SHA1: | A87E518B369C5321A8B7CA3BF31247B11CD15177 |
SHA-256: | 9A5C6886031942937E54E4E76598506867C6458F35A5420E6153D9A64A6D88AB |
SHA-512: | BA9FEB90491E45DEE6695C4962C743529D0870390D19ADD7AC30A90C128FF756BA6C91C0A28F62C0255B191CC3106D9C22F93594537BCFB36844E095776A19D9 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 336 |
Entropy (8bit): | 5.2285677145156235 |
Encrypted: | false |
SSDEEP: | 6:GAp+q2Pwkn2nKuAl9Ombzo2jMGIFUt8LRZZmw+LBVkwOwkn2nKuAl9Ombzo2jMmd:GlvYfHAa8uFUt8LRZ/+LP5JfHAa8RJ |
MD5: | DBD1B719A67D0639810AFCC3E553E2BE |
SHA1: | 73B0101418B708AD8A96A378A047030E35D3FBEB |
SHA-256: | 0D85AB541BDDD7E062B9C709B881D38F5440C8B1586FA84456155D72EF3C75AA |
SHA-512: | 820D1E55055E848BADCE3F74529EE44F930424DC1BDA10A7A2B1A02945CD6AE587C5F218C7CEEDC8CFEF49B30FE7DA21021BA78A2895A6C45A04C49C9A9B8F94 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old (copy)
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 336 |
Entropy (8bit): | 5.2285677145156235 |
Encrypted: | false |
SSDEEP: | 6:GAp+q2Pwkn2nKuAl9Ombzo2jMGIFUt8LRZZmw+LBVkwOwkn2nKuAl9Ombzo2jMmd:GlvYfHAa8uFUt8LRZ/+LP5JfHAa8RJ |
MD5: | DBD1B719A67D0639810AFCC3E553E2BE |
SHA1: | 73B0101418B708AD8A96A378A047030E35D3FBEB |
SHA-256: | 0D85AB541BDDD7E062B9C709B881D38F5440C8B1586FA84456155D72EF3C75AA |
SHA-512: | 820D1E55055E848BADCE3F74529EE44F930424DC1BDA10A7A2B1A02945CD6AE587C5F218C7CEEDC8CFEF49B30FE7DA21021BA78A2895A6C45A04C49C9A9B8F94 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\04a66e01-8fda-4a7c-a117-d2536b3f9cd9.tmp
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 475 |
Entropy (8bit): | 4.966127851787609 |
Encrypted: | false |
SSDEEP: | 12:YH/um3RA8sqZQ5eSsBdOg2HKaYZcaq3QYiubInP7E4T3y:Y2sRdsroXdMHK/g3QYhbG7nby |
MD5: | 6FBFCAFD8CD202ADE32A2BDB8F5C31F9 |
SHA1: | 11574896DB7F946563BC0DD68BAE2998A05E6381 |
SHA-256: | 3FC7C4B2975C48EB23B9D24FE0CFA7F5FEB30DC3FDB888C6641A0B29E8D91FE5 |
SHA-512: | C95EA21F0EED2CF6AC0F48A11E88E2A9EEE8DC2788C6DC99919EDD8F18115710BDE3EA128E2A5631F479076BDF76056910978C30FA6B0A86CF930BEF853A9371 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State (copy)
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 475 |
Entropy (8bit): | 4.966127851787609 |
Encrypted: | false |
SSDEEP: | 12:YH/um3RA8sqZQ5eSsBdOg2HKaYZcaq3QYiubInP7E4T3y:Y2sRdsroXdMHK/g3QYhbG7nby |
MD5: | 6FBFCAFD8CD202ADE32A2BDB8F5C31F9 |
SHA1: | 11574896DB7F946563BC0DD68BAE2998A05E6381 |
SHA-256: | 3FC7C4B2975C48EB23B9D24FE0CFA7F5FEB30DC3FDB888C6641A0B29E8D91FE5 |
SHA-512: | C95EA21F0EED2CF6AC0F48A11E88E2A9EEE8DC2788C6DC99919EDD8F18115710BDE3EA128E2A5631F479076BDF76056910978C30FA6B0A86CF930BEF853A9371 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4730 |
Entropy (8bit): | 5.258234714701456 |
Encrypted: | false |
SSDEEP: | 96:etJCV4FAsszrNamjTN/2rjYMta02fDtehgO7BtTgo7xqz8pzZ:etJCV4FiN/jTN/2r8Mta02fEhgO73goD |
MD5: | 5918C74E1178FF6D67B9390CAE8960EF |
SHA1: | 128D15ABF4CD07ABE194966EB0B090755C2A0E04 |
SHA-256: | 5E0587EA1C8F3818F69F521CB898A84EDB20F0A260749874C67B37493DAE13B0 |
SHA-512: | 0FDC1CCD97CCEC3280B76BD0A2677D54D765BE652C946D821EFCC665EEC1E1E5D1C5AAFA4A41DCF0B749460B56BEFBB8ABFB536FB0D3D8F36277AD06C9098188 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 324 |
Entropy (8bit): | 5.183126183278774 |
Encrypted: | false |
SSDEEP: | 6:90N+q2Pwkn2nKuAl9OmbzNMxIFUt8KrvZmw+KrvVkwOwkn2nKuAl9OmbzNMFLJ:9tvYfHAa8jFUt8Krv/+Kr95JfHAa84J |
MD5: | 687C2F4BA8D352BAD52EBC6158F9D207 |
SHA1: | 9052E11717358FE34F12DC15BC664F79188A6527 |
SHA-256: | 05B5B97F560FF475E9E977A38D03FFABD6C6A7D9575A847D890179AAAFE61571 |
SHA-512: | 8EBC995256CADC78E0A8C9068C29595D3B5AB321E069DB43FD3890ABF06CC2655044B1B85C6A8F1C863D644396B77C9685A7E6B03DFC687CF0BC8B3207F761BC |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old (copy)
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 324 |
Entropy (8bit): | 5.183126183278774 |
Encrypted: | false |
SSDEEP: | 6:90N+q2Pwkn2nKuAl9OmbzNMxIFUt8KrvZmw+KrvVkwOwkn2nKuAl9OmbzNMFLJ:9tvYfHAa8jFUt8Krv/+Kr95JfHAa84J |
MD5: | 687C2F4BA8D352BAD52EBC6158F9D207 |
SHA1: | 9052E11717358FE34F12DC15BC664F79188A6527 |
SHA-256: | 05B5B97F560FF475E9E977A38D03FFABD6C6A7D9575A847D890179AAAFE61571 |
SHA-512: | 8EBC995256CADC78E0A8C9068C29595D3B5AB321E069DB43FD3890ABF06CC2655044B1B85C6A8F1C863D644396B77C9685A7E6B03DFC687CF0BC8B3207F761BC |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-240426171628Z-166.bmp
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 71190 |
Entropy (8bit): | 1.036464961456313 |
Encrypted: | false |
SSDEEP: | 96:+z7umV0owgcEe3xjDYhbR6JqXqySA7fFLNzh1XOGU:+qLowgne3R6R6ty/9h1ed |
MD5: | A68BE5E26220AA6CB1D7D283A1790B92 |
SHA1: | 170D65F4095A68B476356252BA7D07FFD95C2DF8 |
SHA-256: | 1EEDABB97F3783E681B1F8613699F441300A06DB538C48BBEAD75060B972B7AC |
SHA-512: | A3526B3758AE17CF1BAFD8555E04039A984776AC30410501DC42F61169F0F41C3A67544DF4B0E9EC500E3C483B5088F1FB7E7236E0942D4774801D171ACF9597 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 86016 |
Entropy (8bit): | 4.445372840115458 |
Encrypted: | false |
SSDEEP: | 384:yezci5tOiBA7aDQPsknQ0UNCFOa14ocOUw6zyFzqFkdZ+EUTTcdUZ5yDQhJL:rhs3OazzU89UTTgUL |
MD5: | 10AB4C30D33614D52DB8F574030EC2AA |
SHA1: | 352A318FE6A96AC64282DCFA37EAE61E903B6F64 |
SHA-256: | 82EC788011854F7EA2AD3D908A66531E55F93AD9B3F7C16A75111F16B17DFE5A |
SHA-512: | 5A0AA1E676BB089A08C2D2219010BAE1C262324ECFF567E8516603DB79352A712A93210DD30538EB3592535B89FA8D2819B5FE38C49A65321DCFD6090EC7323C |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8720 |
Entropy (8bit): | 3.7774945775733553 |
Encrypted: | false |
SSDEEP: | 48:7MOp/E2ioyVxDioy9oWoy1Cwoy1owKOioy1noy1AYoy1Wioy1hioybioyCsoy1nL:7NpjuhFQXKQwdb9IVXEBodRBkL |
MD5: | 490B9B41358145FACA4F5C7E0C2C9FA6 |
SHA1: | DCFFE6DBEEDF9628C8AA1E2D4FFC1E05DA8A5010 |
SHA-256: | A505E445FC970523886285A7753F9C7F2D838386712194EB56FC68231971825C |
SHA-512: | 654C7687F4DC55297F04300174951F77D28556AF1BCC41C826B7E5C3868A305C926A10695A370EFE8A3AECB63D2E1D454CD0A1A65A54B0E2F983D967BA61E796 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 185099 |
Entropy (8bit): | 5.182478651346149 |
Encrypted: | false |
SSDEEP: | 1536:JsVoWFMWQNk1KUQII5J5lZRT95tFiQibVJDS+Stu/3IVQBrp3Mv9df0CXLhNHqTM:bViyFXE07ZmandGCyN2mM7IgOP0gC |
MD5: | 94185C5850C26B3C6FC24ABC385CDA58 |
SHA1: | 42F042285037B0C35BC4226D387F88C770AB5CAA |
SHA-256: | 1D9979A98F7C4B3073BC03EE9D974CCE9FE265A1E2F8E9EE26A4A5528419E808 |
SHA-512: | 652657C00DD6AED1A132E1DFD0B97B8DF233CDC257DA8F75AC9F2428F2F7715186EA8B3B24F8350D409CC3D49AFDD36E904B077E28B4AD3E4D08B4DBD5714344 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 185099 |
Entropy (8bit): | 5.182478651346149 |
Encrypted: | false |
SSDEEP: | 1536:JsVoWFMWQNk1KUQII5J5lZRT95tFiQibVJDS+Stu/3IVQBrp3Mv9df0CXLhNHqTM:bViyFXE07ZmandGCyN2mM7IgOP0gC |
MD5: | 94185C5850C26B3C6FC24ABC385CDA58 |
SHA1: | 42F042285037B0C35BC4226D387F88C770AB5CAA |
SHA-256: | 1D9979A98F7C4B3073BC03EE9D974CCE9FE265A1E2F8E9EE26A4A5528419E808 |
SHA-512: | 652657C00DD6AED1A132E1DFD0B97B8DF233CDC257DA8F75AC9F2428F2F7715186EA8B3B24F8350D409CC3D49AFDD36E904B077E28B4AD3E4D08B4DBD5714344 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 243196 |
Entropy (8bit): | 3.3450692389394283 |
Encrypted: | false |
SSDEEP: | 1536:vKPCPiyzDtrh1cK3XEivK7VK/3AYvYwgqErRo+RQn:yPClJ/3AYvYwghFo+RQn |
MD5: | F5567C4FF4AB049B696D3BE0DD72A793 |
SHA1: | EBEADDE9FF0AF2C201A5F7CC747C9EA61CFA6916 |
SHA-256: | D8DBFE71873929825A420F73821F3FF0254D51984FAAA82E1B89D31188F77C04 |
SHA-512: | E769735991E5B1331E259608854D00CDA4F3E92285FDC500158CBD09CBCCEAD8A387F78256A43919B13EBE70C995D19242377C315B0CCBBD4F813251608C1D56 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\ACROBAT_READER_MASTER_SURFACEID
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 295 |
Entropy (8bit): | 5.371107634233088 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJM3g98kUwPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGMbLUkee9 |
MD5: | 2C32FEAC4D9E0280C2CE74A08E93FDD4 |
SHA1: | 0461BF2A401DF40CB655F283F4CD54EF533B2240 |
SHA-256: | 2655D02C6FFE53DB2CE441CC40A8B09CAA0D8F3BB262F176AD0F9E05014AD912 |
SHA-512: | C236543206383B56C7C19B96C132B9D7AC09996BDE0D0247F82A678C1E9CEFDF35B25421367092ABDAA2801FB74044DF9807EE7632898137F49AF54C95F02DA3 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Home_View_Surface
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 294 |
Entropy (8bit): | 5.321840005844044 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfBoTfXpnrPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGWTfXcUkee9 |
MD5: | C158F05C9B07A3ED5EAAB76A0C329A6A |
SHA1: | 2725D59AF8B75B8C66EE9A01872601F121327512 |
SHA-256: | AA08BF8FB3214C75CE7072B158B51E0FBB9DFB4C6C2984ED6A937BE5B003505B |
SHA-512: | B1564357B2CE38134F7114E4DC0ECF91E4AB7414361567DD830A2EDCEAABC7856CB6FC45BF84D5A5CE4539C0D1D134862C208B5BB55D978EA3E29DAD1A1F57B9 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Right_Sec_Surface
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 294 |
Entropy (8bit): | 5.301326574981446 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfBD2G6UpnrPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGR22cUkee9 |
MD5: | 1CD618DF9E4B545916DF97874AA9B47F |
SHA1: | 0A7011145B6EE4329FC09FF744A79461615A0E03 |
SHA-256: | 9368CA2885C94E78A18F32E77063BFA60AB731AB916BF0DDA6AF760CC1CB9C55 |
SHA-512: | D309F5C33D0863865CDDC57D10167249356ECA285E8F38288528F49825DD0672140AB6EADA59B3EC7404F907322673156D542F7F391E4FF5C1C2F27CD57FDFBB |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_READER_LAUNCH_CARD
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 285 |
Entropy (8bit): | 5.358389868425296 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfPmwrPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGH56Ukee9 |
MD5: | 9E908883A3F5D6AD11FF0691DDA265E2 |
SHA1: | AE7D909B6E9388F01C443EA9E3C60BF8DE84A3E5 |
SHA-256: | AC0677FC1BFCF0E10C2307ACF7F938ECDBB870CBE1C5238D7060441F4EB203BA |
SHA-512: | 5E98F003626C79C6D55D137052BCC566EBBA8FFFB27C1AF5AED9B92AF1BD71DB48483F58221E10D6550C08B9EB1025ECD0D5D4829F228C75FF38B616B9CA7600 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Convert_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 292 |
Entropy (8bit): | 5.317066515450081 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfJWCtMdPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGBS8Ukee9 |
MD5: | 67E379A680306995F910890426EB908F |
SHA1: | 078E37B1FEF876555E7A81F18BD47278B0B3FE74 |
SHA-256: | 509E0039B6F3EE90980D38D692F5D445D4DB2577EA72CF13CB43E48886B2CEEB |
SHA-512: | 587DF9D10CBA1305A5A853A656B112F255F8A60907FD2E9BF268B452ABC02B011FE9AE4D0ECC7E0C8436F0CA1E32DC715A8AE8F9728DC1A3A27AB9F0D0E8F600 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 289 |
Entropy (8bit): | 5.305082148703519 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJf8dPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGU8Ukee9 |
MD5: | 1BAA3A77020A1F2C9A95482F0386C47D |
SHA1: | E313F84F16E53F1930CA75AAF615528784226CD8 |
SHA-256: | A5D8DE3E5EEEE86A37788A2CFA1F15A787AA015A7F08D17259DCBF3A45F4501A |
SHA-512: | 94AA7AA1361A301E94FEDFECD64607153F2EB0AEC687E690E96C5D5C2187D96C525FFD4E4D507285D7CABB0738F7A326F73913EDCE1B39432251A2E98923B03E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Retention
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 292 |
Entropy (8bit): | 5.308930570471311 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfQ1rPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGY16Ukee9 |
MD5: | 610838AF75AF76DB98903353E14A766D |
SHA1: | 96F22B2257C63F51A2E3CDFE707F8EB637381DFE |
SHA-256: | BF6481A679108E84C38D031D4D9D03B5D456F0CFC056CF27E73850D3E2AD4666 |
SHA-512: | CB8C959F7E89FF260B5BE04FE63C2FB2790D445E42D05FEE62C2C107FF28BBDE8FA78E3F76CF9672D68B399B1AC84D579521FD71F4F6BA38F5E31E64EEF39464 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Edit_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 289 |
Entropy (8bit): | 5.313329378632362 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfFldPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGz8Ukee9 |
MD5: | B8EE7442B070183C6BD05FFBF756B812 |
SHA1: | 308DCE50683B996876B3FF96800D534FA410A447 |
SHA-256: | FAD5F8857AEE923DDE11EC29AE9A5170202BA3213476DF1724E0E374118E2169 |
SHA-512: | 0F9D6DB4552A7B965A440F0D01B2B9317D10D4B2A22E5D55E0C14FE435B4F4436AB001CC94B846F4E29CCE40B277370A953DE76B6A9CB00A1F7B9730AF341102 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Home_LHP_Trial_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1372 |
Entropy (8bit): | 5.740474309111011 |
Encrypted: | false |
SSDEEP: | 24:Yv6XUXiUk9VEzvdyKLgENRcbrZbq00iCCBrwJo++ns8ct4mFJN9:YvtX3GuAEgigrNt0wSJn+ns8cvFJ3 |
MD5: | 6033246F61797F065A633F75392CE847 |
SHA1: | E4EDF0EB837C769FEFEC34CD129F4DD1D074B736 |
SHA-256: | 51BE3860E7710DA63D7E62FBE93CF597476EC77AAE16E13D3A1C2B98CCAEB32D |
SHA-512: | 6D47C0506D5C33F2AA7D51BDB50BDB8541C2E37DDBC28909204C35E5FF3B9A52F6D9C1465F55984517C7750E73F6BDE7E75661080C0838F1A3F70743335A40A7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_More_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 289 |
Entropy (8bit): | 5.3103169754488215 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfYdPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGg8Ukee9 |
MD5: | 4C2EE824CAA0C38B6EDEA0F5EF35EA84 |
SHA1: | CF6819B57E1089208CDF6159C652DDC52FCAAEB5 |
SHA-256: | 4CE559F6C95ACC15A173ABEC96EB5F6C3AB493A2206031DF0B714E775F4953FB |
SHA-512: | C620707D09F7471CE73E1E4A4920DB2426BD36F54DB2E422BF72CA987E9009329DFC1C1C00DF51C9061CE934E8ED82DCC075EF8BDB9FE33C47B4FD358BF6FFFE |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1395 |
Entropy (8bit): | 5.778313928883832 |
Encrypted: | false |
SSDEEP: | 24:Yv6XUXiUk9VEzvdxrLgEGOc93W2JeFmaR7CQzttgBcu141CjrWpHfRzVCV9FJN1:YvtX3GuPHgDv3W2aYQfgB5OUupHrQ9F9 |
MD5: | 87F2B1E0E4B7EA9AC3E375A92F801A2B |
SHA1: | C682FF45F02573B4E04D33F2D65D2B5EE2B992CE |
SHA-256: | F90D5F01FC342C62E15A33860F57A8C900940C810C7AA4D48CC2F84EC208A98F |
SHA-512: | 68F75CED44107C7B9F94CFC714596F9E1DFAA84009682B373A83DBAC80D25E7EF0E253DCA267FC25ED69FFD929A2CE28BD0A63D65C1C4628DCCC56B2DAB5ABF7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Intent_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 291 |
Entropy (8bit): | 5.293793166074926 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfbPtdPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGDV8Ukee9 |
MD5: | 017ADA21B563C34BD27C99E4C77BDF40 |
SHA1: | BC3B0515974E0E8C6ED67A8A0E1D34A283F80033 |
SHA-256: | 536D35DCDBE19C6F36E42D1E8E0BA6451D2BA8102F4AA3045E9EE1A25A9779DE |
SHA-512: | 5AC7BB23AD0C9C0E107F33193CDDA27F71CDC58ED80A461431F8C7C36B45D2540CF39FDAE21D5FD57BCEFA67C4770A0B558A06C11832ACEE0C11FC0CB72DE9F6 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Retention
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 287 |
Entropy (8bit): | 5.298587421058204 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJf21rPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmG+16Ukee9 |
MD5: | C703E3A688ADBD94070AF25515589A32 |
SHA1: | F28B6063B5E0C218824C6759D200350A5F82D339 |
SHA-256: | 92D5EA3B26A5318E9DECECB4A6639DEF61C21C7BD21375D41E9ACDE9F1F11CDB |
SHA-512: | 7D7CA623751DB6803104BAF911C973B5B285AB5E3B5B64FCD7C55D03CD594212A445619BF807E2137C5453CF2F6B72C9CB6088403D480EEEA6611ECF4693052E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Sign_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 289 |
Entropy (8bit): | 5.317152104206969 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfbpatdPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGVat8Ukee9 |
MD5: | DF365A19DA3189C19713461E30F2605A |
SHA1: | 9D94DF484B9FC9E1669BEF9CD6332D9344B5959F |
SHA-256: | 584AA4567093943E56098F62FDA1301D547C566167DDE403B39FC90D70E16C2F |
SHA-512: | 666E222300FC7354B3635CC1AC63D8031D578FE1ACBE4A72806A9419FD1A72D5C3320B0F2420DCA1EF8AA73C362171D46107B717CCBA9A134D6389EE635C3FFA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Upsell_Cards
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 286 |
Entropy (8bit): | 5.274265091761626 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXP8XiUyNoaHV9VoZcg1vRcR0YoJoAvJfshHHrPeUkwRe9:YvXKXUXiUyNFHVEZc0vdmGUUUkee9 |
MD5: | 3F147CB842EC6E178C0B769A4B93F562 |
SHA1: | 91E4BEA28F5ED18EFE2523A2C57BDDD4B082DC7F |
SHA-256: | 77C68A77C200A6FE4FA74F67480A58D2D286CEF8A3AA34CADA7340CA874A8744 |
SHA-512: | F7F90E67B3BE0945BA360111D7BB1323C976E62DB820EFCFCD92DF6D9AFCBFE4925149795325611241AE41FE79DB2AA60092B9FFC022F941E02F090858A91828 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 782 |
Entropy (8bit): | 5.370501024519475 |
Encrypted: | false |
SSDEEP: | 24:Yv6XUXiUk9VEzvdA168CgEXX5kcIfANhw:YvtX3Gu+88Cgs5Fvw |
MD5: | 55A4240639C95BB28AFBD37BB937636E |
SHA1: | BA7385EE5A60CBA674FD326CF7887060E69AE521 |
SHA-256: | C238572F231C4B8ABB07E7F498F17F002CC328FB98A1EEE0936AD2A197FCB585 |
SHA-512: | ACCB3A45D12B7F9E45F6744F67BBAB97E6C0D05E54E3D9AA080598242280E4DA2FA85C133B248D4A42349991D1909A39FCA9E8B8AA122E5729F39D1952873791 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4 |
Entropy (8bit): | 0.8112781244591328 |
Encrypted: | false |
SSDEEP: | 3:e:e |
MD5: | DC84B0D741E5BEAE8070013ADDCC8C28 |
SHA1: | 802F4A6A20CBF157AAF6C4E07E4301578D5936A2 |
SHA-256: | 81FF65EFC4487853BDB4625559E69AB44F19E0F5EFBD6D5B2AF5E3AB267C8E06 |
SHA-512: | 65D5F2A173A43ED2089E3934EB48EA02DD9CCE160D539A47D33A616F29554DBD7AF5D62672DA1637E0466333A78AAA023CBD95846A50AC994947DC888AB6AB71 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2814 |
Entropy (8bit): | 5.129941803683339 |
Encrypted: | false |
SSDEEP: | 48:YBc1yzJgKVSARK0uDKgtxla5KszaloZrGR9pV:XmgKVSIujXlmKBStGvH |
MD5: | 2243BBBEB1EE6843ADA6CF8571B15363 |
SHA1: | 76D8929F7831C47C3683D8B639D551D980E1B735 |
SHA-256: | A3B52322C1A445479900DF65B5C4F279F8582DADC5B4724D97423BB489C38C9F |
SHA-512: | CB601C79CF68BB9C540B798442E93FE863188F7CA9A5D4A224BFBF2F39888B6EACE8361E7F0DE4091998710B85D662211352911E6DEE9F5BD108E2B7750A41BC |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 12288 |
Entropy (8bit): | 1.1876536513128806 |
Encrypted: | false |
SSDEEP: | 48:TGufl2GL7msEHUUUUUUUU/SvR9H9vxFGiDIAEkGVvpr:lNVmswUUUUUUUU/+FGSItf |
MD5: | BA8AA45025EAC3AD53A11F4A699565AB |
SHA1: | 91EF91ECD3CBE8D23C47DC689F0CC63058032B6B |
SHA-256: | 5A0F07985C96B1284AEABD386889D36904D8D2E58F717185FA0205DDA2699D86 |
SHA-512: | FFA4F67377AD607387F03DD2AE8CA544C73773F9AE8021BCDB1858D07C49BB3261A1E7363001F0FBD7EF00BA87EFDAD49E4BCC27165C3225C9733C854C7C6BCF |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8720 |
Entropy (8bit): | 1.6073911864452748 |
Encrypted: | false |
SSDEEP: | 48:7MIKUUUUUUUUUUDvR9H9vxFGiDIAEkGVvnqFl2GL7msm:7IUUUUUUUUUUTFGSItxKVmsm |
MD5: | 54AE1C06F9769F8C27F873B4BC128B1B |
SHA1: | 7F4E1E306ECC1F86F5CA9CE9E2E09A1CDA1F54B4 |
SHA-256: | D28ACADD7D5F8211CEE2A669F260232717830651907A5D515161127B0D80E620 |
SHA-512: | FCD983F4834029D4C5F98F671FFE9B9286D9DFE65BC2BFA5626E37D97069AE487D5D191C4AE2D4CDD348D976A426533273AE80B70A8A19D9CC5AA839EFA28D8F |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 246 |
Entropy (8bit): | 3.5274671434738973 |
Encrypted: | false |
SSDEEP: | 6:Qgl946caEbiQLxuZUQu+lEbYnuoblv2K8mdWajcflH:Qw946cPbiOxDlbYnuRKvVcflH |
MD5: | EC9A2C5D8F56B6280F89F3BD323E7BE6 |
SHA1: | 74A65A1B65126D978D08928F783E212E2AB1942F |
SHA-256: | 5B4B03841BE82E7CAD0B2E0C91D20C5F2CFF4357A7A1ECD0AAF29DCA593B7E6B |
SHA-512: | 4BC142C4EE17752824C7CC569AC4940E591FA82C35CE42271446AAF162BEEEAA35D8858402B758D8B9D3C36795F291E3A34AEC25BA3C2761783B7CD46EAD29CD |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2024-04-26 19-16-26-739.log
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16525 |
Entropy (8bit): | 5.345946398610936 |
Encrypted: | false |
SSDEEP: | 384:zHIq8qrq0qoq/qUILImCIrImI9IWdFdDdoPtPTPtP7ygyAydy0yGV///X/J/VokV:nNW |
MD5: | 8947C10F5AB6CFFFAE64BCA79B5A0BE3 |
SHA1: | 70F87EEB71BA1BE43D2ABAB7563F94C73AB5F778 |
SHA-256: | 4F3449101521DA7DF6B58A2C856592E1359BA8BD1ACD0688ECF4292BA5388485 |
SHA-512: | B76DB9EF3AE758F00CAF0C1705105C875838C7801F7265B17396466EECDA4BCD915DA4611155C5F2AD1C82A800C1BEC855E52E2203421815F915B77AA7331CA0 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6.log
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16603 |
Entropy (8bit): | 5.352900235423584 |
Encrypted: | false |
SSDEEP: | 384:aYixaUPkXy4UfVjVw76L9er3kBDDsMcHk/z1t9TrwoXjRRPl0sL1g1cRjxr9oAt/:WLr |
MD5: | 39A871432A5080367DE00A7070E04A58 |
SHA1: | B7D8666315B9A8B40D705DD1E3071991482F040E |
SHA-256: | BE14FBB5D6BFD764585C4F9F11B971303E38225B819B7BFB76EDAF9667193032 |
SHA-512: | 32EA5AAEFE2B5729BA7605932133FE9CEF54D236F22F19F63B8574CCF75174AFB160E475D6FE44A54322DA1C5E0345118188EA99EDA231B854D83436346A34F2 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 29845 |
Entropy (8bit): | 5.398422874769609 |
Encrypted: | false |
SSDEEP: | 768:anddBuBYZwcfCnwZCnR8Bu5hx18HoCnLlAY+iCBuzhLCnx1CnPrRRFS10l8gT2rr:H |
MD5: | 926C4153094950E34F15745B86E66210 |
SHA1: | 4A69139A57C4718E6BB16318FC49E5A3FDAD6883 |
SHA-256: | 66EFA11C59E90D0E7095294F575B6B00005B6924A56DB17EACF4F148F0943CD0 |
SHA-512: | E2DCEF4B309EAD9B18784FAA00D241E139F9FA75EE95CB50DD39F775297FB6593CEE57846ABFBD27E03881855B9738603F0B5205DBA957A054EA41FFECA73DDF |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1407294 |
Entropy (8bit): | 7.97605879016224 |
Encrypted: | false |
SSDEEP: | 24576:/xA7o5dpy6mlind9j2kvhsfFXpAXDgrFBU2/R07/WLaGZDwYIGNPJe:JVB3mlind9i4ufFXpAXkrfUs0jWLaGZo |
MD5: | A0CFC77914D9BFBDD8BC1B1154A7B364 |
SHA1: | 54962BFDF3797C95DC2A4C8B29E873743811AD30 |
SHA-256: | 81E45F94FE27B1D7D61DBC0DAFC005A1816D238D594B443BF4F0EE3241FB9685 |
SHA-512: | 74A8F6D96E004B8AFB4B635C0150355CEF5D7127972EA90683900B60560AA9C7F8DE780D1D5A4A944AF92B63C69F80DCDE09249AB99696932F1955F9EED443BE |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 386528 |
Entropy (8bit): | 7.9736851559892425 |
Encrypted: | false |
SSDEEP: | 6144:8OSTJJJJEQ6T9UkRm1lBgI81ReWQ53+sQ36X/FLYVbxrr/IxktOQZ1mau4yBwsOo:sTJJJJv+9UZX+Tegs661ybxrr/IxkB1m |
MD5: | 5C48B0AD2FEF800949466AE872E1F1E2 |
SHA1: | 337D617AE142815EDDACB48484628C1F16692A2F |
SHA-256: | F40E3C96D4ED2F7A299027B37B2C0C03EAEEE22CF79C6B300E5F23ACB1EB31FE |
SHA-512: | 44210CE41F6365298BFBB14F6D850E59841FF555EBA00B51C6B024A12F458E91E43FDA3FA1A10AAC857D4BA7CA6992CCD891C02678DCA33FA1F409DE08859324 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 758601 |
Entropy (8bit): | 7.98639316555857 |
Encrypted: | false |
SSDEEP: | 12288:ONh3P65+Tegs6121YSWBlkipdjuv1ybxrr/IxkB1mabFhOXZ/fEa+vTJJJJv+9U0:O3Pjegf121YS8lkipdjMMNB1DofjgJJg |
MD5: | 3A49135134665364308390AC398006F1 |
SHA1: | 28EF4CE5690BF8A9E048AF7D30688120DAC6F126 |
SHA-256: | D1858851B2DC86BA23C0710FE8526292F0F69E100CEBFA7F260890BD41F5F42B |
SHA-512: | BE2C3C39CA57425B28DC36E669DA33B5FF6C7184509756B62832B5E2BFBCE46C9E62EAA88274187F7EE45474DCA98CD8084257EA2EBE6AB36932E28B857743E5 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1419751 |
Entropy (8bit): | 7.976496077007677 |
Encrypted: | false |
SSDEEP: | 24576:/xA7owWLaGZDwYIGNPJodpy6mlind9j2kvhsfFXpAXDgrFBU2/R07D:JVwWLaGZDwZGk3mlind9i4ufFXpAXkru |
MD5: | 18E3D04537AF72FDBEB3760B2D10C80E |
SHA1: | B313CD0B25E41E5CF0DFB83B33AB3E3C7678D5CC |
SHA-256: | BBEF113A2057EE7EAC911DC960D36D4A62C262DAE5B1379257908228243BD6F4 |
SHA-512: | 2A5B9B0A5DC98151AD2346055DF2F7BFDE62F6069A4A6A9AB3377B644D61AE31609B9FC73BEE4A0E929F84BF30DA4C1CDE628915AC37C7542FD170D12DE41298 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 29591 |
Entropy (8bit): | 4.436202631900466 |
Encrypted: | false |
SSDEEP: | 192:lHVYB4GEwZT1TpSGCeRH8u/Lj7Ma9xPcjBsvLNrqbVb+6JknFjlirg1qaR3H0ZP7:Y4V4iCqaRXTAC6 |
MD5: | BE7692F169C3A96A3E547E97775D722C |
SHA1: | A732463A49B3F6A07ABCF6B462866C98C3766354 |
SHA-256: | 52AFB16A4A7772F60E8D5683CBD6DC28515753995771E34EF708B53A86082D6E |
SHA-512: | 11C551790290196CF4C61CA5EE2DE3E79DE34CA4DA7D222716121F406501AB61AA692767C8BC9E5D2F5BF2D560AFDC06952D368929F2A194A3CD960DE0F7E5B2 |
Malicious: | false |
URL: | https://assets-usa.mkt.dynamics.com/52f527c8-5afd-ee11-9048-000d3a106837/digitalassets/forms/b99e27b7-9f00-ef11-a1fd-6045bddb1daa |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 29591 |
Entropy (8bit): | 4.436202631900466 |
Encrypted: | false |
SSDEEP: | 192:lHVYB4GEwZT1TpSGCeRH8u/Lj7Ma9xPcjBsvLNrqbVb+6JknFjlirg1qaR3H0ZP7:Y4V4iCqaRXTAC6 |
MD5: | BE7692F169C3A96A3E547E97775D722C |
SHA1: | A732463A49B3F6A07ABCF6B462866C98C3766354 |
SHA-256: | 52AFB16A4A7772F60E8D5683CBD6DC28515753995771E34EF708B53A86082D6E |
SHA-512: | 11C551790290196CF4C61CA5EE2DE3E79DE34CA4DA7D222716121F406501AB61AA692767C8BC9E5D2F5BF2D560AFDC06952D368929F2A194A3CD960DE0F7E5B2 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1304 |
Entropy (8bit): | 4.68425644587903 |
Encrypted: | false |
SSDEEP: | 24:mioTJODICcnv8cKoexKc846vgBie9ZY8mlvOq8RvLNHVENggeGg:micaIPU7oeoc8xYBfmlgRjNOen |
MD5: | DBAC2EBFBE18E8C7CF3830AF4C420E77 |
SHA1: | 78ADD1C663DD8B4AD6BBF89E48376015EA08A85A |
SHA-256: | 491377DB69C365D489C88BD4AC641D341B52E6A70B034390A5FC3D161268BCA5 |
SHA-512: | 7DBFFD0FB6EC417AB7481919357D20D78224C9B97D180B603CFCD8F8808EA8FD54A4D15103178C15A985C563BE80CBBB6391E58D06C42F1062DF0948E79F7880 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 548 |
Entropy (8bit): | 4.688532577858027 |
Encrypted: | false |
SSDEEP: | 12:TjeRHVIdtklI5r8INGlTF5TF5TF5TF5TF5TFK:neRH68DTPTPTPTPTPTc |
MD5: | 370E16C3B7DBA286CFF055F93B9A94D8 |
SHA1: | 65F3537C3C798F7DA146C55AEF536F7B5D0CB943 |
SHA-256: | D465172175D35D493FB1633E237700022BD849FA123164790B168B8318ACB090 |
SHA-512: | 75CD6A0AC7D6081D35140ABBEA018D1A2608DD936E2E21F61BF69E063F6FA16DD31C62392F5703D7A7C828EE3D4ECC838E73BFF029A98CED8986ACB5C8364966 |
Malicious: | false |
URL: | https://assets-usa.mkt.dynamics.com/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1304 |
Entropy (8bit): | 4.68425644587903 |
Encrypted: | false |
SSDEEP: | 24:mioTJODICcnv8cKoexKc846vgBie9ZY8mlvOq8RvLNHVENggeGg:micaIPU7oeoc8xYBfmlgRjNOen |
MD5: | DBAC2EBFBE18E8C7CF3830AF4C420E77 |
SHA1: | 78ADD1C663DD8B4AD6BBF89E48376015EA08A85A |
SHA-256: | 491377DB69C365D489C88BD4AC641D341B52E6A70B034390A5FC3D161268BCA5 |
SHA-512: | 7DBFFD0FB6EC417AB7481919357D20D78224C9B97D180B603CFCD8F8808EA8FD54A4D15103178C15A985C563BE80CBBB6391E58D06C42F1062DF0948E79F7880 |
Malicious: | false |
URL: | https://cxppusa1formui01cdnsa01-endpoint.azureedge.net/usa/FormLoader/public/locales/en-us/translation.json |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 491 |
Entropy (8bit): | 5.056844075174177 |
Encrypted: | false |
SSDEEP: | 12:s8+zaYiE8//qvShdeoi22d6eyzaYch6BAdexMAdb:WXy/ivmdeop2dNiVAdexbb |
MD5: | 11BD5E37248199B16D03E2421C1EBAE2 |
SHA1: | 91F7220D2AAC7172F0EBF2096D8DB69BA3FD0694 |
SHA-256: | D672D2E402207FD53AB65E60BF65B2FC671BC4B873A7F4F50C34D18DD7922336 |
SHA-512: | 506B3F55241C55CCE625E44FCDBB020A7923043C0103DDCB0573FC9F75491B9FFF9F40078CF3A11D049630F2BEC5DB28D30705B7ECFF1501A828BAAC499AC2F9 |
Malicious: | false |
URL: | https://assets-usa.mkt.dynamics.com/52f527c8-5afd-ee11-9048-000d3a106837/digitalassets/standaloneforms/b99e27b7-9f00-ef11-a1fd-6045bddb1daa |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 5802 |
Entropy (8bit): | 7.938400902817674 |
Encrypted: | false |
SSDEEP: | 96:47hYQimms93/8gB0I0LMIlXeuitz5iMhOw2WwyvZeNqrthpCH9gkBbg7:+GH/vI0LdtIzfsw2WJZSqrBCdVBG |
MD5: | CB9FCB4735E5BCDB4E78B9C4CD9DCD87 |
SHA1: | 4EEB2133259EB73F3FEC9538394F4757A14B8591 |
SHA-256: | 4A3456E5E51B4086FF5F1163245120E3148E11AD8733C51311ED4DDDD660D206 |
SHA-512: | 15CEA6A90EAF4B1C970CAF25BC9E755077DD85C5CD6236FD60DC17A807D2DCD1DFF06E5886233DC2D589CDA7A74AB29D1EE2012C1884082E21CE401659AD89F3 |
Malicious: | false |
URL: | https://assets-usa.mkt.dynamics.com/52f527c8-5afd-ee11-9048-000d3a106837/digitalassets/images/d28a00ec-9e00-ef11-a1fd-6045bddb1daa?ts=638493836057785250 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 5802 |
Entropy (8bit): | 7.938400902817674 |
Encrypted: | false |
SSDEEP: | 96:47hYQimms93/8gB0I0LMIlXeuitz5iMhOw2WwyvZeNqrthpCH9gkBbg7:+GH/vI0LdtIzfsw2WJZSqrBCdVBG |
MD5: | CB9FCB4735E5BCDB4E78B9C4CD9DCD87 |
SHA1: | 4EEB2133259EB73F3FEC9538394F4757A14B8591 |
SHA-256: | 4A3456E5E51B4086FF5F1163245120E3148E11AD8733C51311ED4DDDD660D206 |
SHA-512: | 15CEA6A90EAF4B1C970CAF25BC9E755077DD85C5CD6236FD60DC17A807D2DCD1DFF06E5886233DC2D589CDA7A74AB29D1EE2012C1884082E21CE401659AD89F3 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 711081 |
Entropy (8bit): | 5.444336573525724 |
Encrypted: | false |
SSDEEP: | 3072:Ns0tPO7ZVKF61InSjikH0Gu0r2ee6PnBdHQdU1HECHttsMkO3bBqMG/+9coZukG6:N7tPOCWPQdUzCO3bBL9jZVGiMRlRhxkR |
MD5: | FDC2BE4EB54FF521EB5F6CA57AEDAE03 |
SHA1: | 580FEFB1274BB5A21E34DC206D3F042512CA2EDC |
SHA-256: | 36C366BC39F4B2EB17CC2EAC87B9B94199CB4DFC0FF9F3D8A2F4C2EADE1BB9C3 |
SHA-512: | 42939CBF474C6593774F5B5FF13A5E9FCDDE7CAAE05229CBE9804C1368337B892EB3ED96CA85133A34AC0551696B4995EA203773B474BF31E50780BF9BDD53C2 |
Malicious: | false |
URL: | https://cxppusa1formui01cdnsa01-endpoint.azureedge.net/usa/FormLoader/FormLoader.bundle.js |
Preview: |
File type: | |
Entropy (8bit): | 7.977854623222528 |
TrID: |
|
File name: | ACRMNT.pdf |
File size: | 143'638 bytes |
MD5: | 44159aca23f90b1cabf0005a7975f77c |
SHA1: | 8fe88115faaa0c3bda916d9e375588443fc10199 |
SHA256: | 01109b3bc2fa06f9c6d47bda68d49ffed38556b9b18d978ef2fc576704df31ae |
SHA512: | 498597fa1b92c9862d7d0b1a59c27e1353ee7e154301203ba77bc64ade9dc11faf0e954648eb46ea63a6f272da5d3ab6e478a34fb080d0deb097b4a2bc09c5d2 |
SSDEEP: | 3072:lP3YuN0HLCNhtbC0CrZXcgcfjfZ7kqzXW3lYnXp/ahi2Xofbvi:Z3YudNm0CdpcfjfZhXW3lYnXp6i24zK |
TLSH: | 88E302A8E109981DF690CA53A92638CBBD5C73D305C934C23574DA5EF607960AB337EB |
File Content Preview: | %PDF-1.3.%............3 0 obj.<< /Filter /FlateDecode /Length 1862 >>.stream.x..Y...6.}.W(.....jE].4.%.C........b. -v.&i....|wv<i0...e...!)...I....$.H8...1..a|-..F.......(......^..?.?qG....++H..kA.I....i..................<K...~...n..w...............$.>... |
Icon Hash: | 62cc8caeb29e8ae0 |
General | |
---|---|
Header: | %PDF-1.3 |
Total Entropy: | 7.977855 |
Total Bytes: | 143638 |
Stream Entropy: | 7.996395 |
Stream Bytes: | 135336 |
Entropy outside Streams: | 5.131631 |
Bytes outside Streams: | 8302 |
Number of EOF found: | 1 |
Bytes after EOF: |
Name | Count |
---|---|
obj | 49 |
endobj | 49 |
stream | 24 |
endstream | 24 |
xref | 1 |
trailer | 1 |
startxref | 1 |
/Page | 1 |
/Encrypt | 0 |
/ObjStm | 0 |
/URI | 2 |
/JS | 0 |
/JavaScript | 0 |
/AA | 0 |
/OpenAction | 0 |
/AcroForm | 0 |
/JBIG2Decode | 0 |
/RichMedia | 0 |
/Launch | 0 |
/EmbeddedFile | 0 |
Image Streams |
---|
ID | DHASH | MD5 | Preview |
---|---|---|---|
5 | 0000000000000000 | 9c6da10117896a9337ef124f3eca38f0 | |
23 | 0000000000000000 | d04c7799b8e8387ba6e8cbf142c66529 | |
24 | 0000000000000000 | 56f3dc58f5a04c8ab5a527809a1efc58 | |
25 | 0000000000000000 | c1ed9b7c235033e21c3d1c2ba27a3425 | |
26 | a0a0a1a0a0a080a2 | 6f6d56c74d77e9828138d59a4cf9b941 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 19:16:19.564377069 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 19:16:29.306142092 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Apr 26, 2024 19:16:32.542345047 CEST | 49738 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:32.542380095 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:32.542474985 CEST | 49738 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:32.544454098 CEST | 49738 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:32.544466972 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:32.808928967 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:32.809031010 CEST | 49738 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:32.812242985 CEST | 49738 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:32.812258959 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:32.812572956 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:32.847299099 CEST | 49738 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:32.888135910 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:33.051238060 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:33.051312923 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:33.051439047 CEST | 49738 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:34.248541117 CEST | 49738 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:34.248564959 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:34.248585939 CEST | 49738 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:34.248590946 CEST | 443 | 49738 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:34.629024982 CEST | 49739 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:34.629066944 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:34.629196882 CEST | 49739 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:34.630219936 CEST | 49739 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:34.630234957 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:34.893832922 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:34.894072056 CEST | 49739 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:34.917165041 CEST | 49739 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:34.917184114 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:34.918119907 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:34.919121027 CEST | 49739 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:34.960122108 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:35.142760992 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:35.142868042 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:35.142936945 CEST | 49739 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:35.143786907 CEST | 49739 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:35.143814087 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:35.143826008 CEST | 49739 | 443 | 192.168.2.4 | 23.204.76.112 |
Apr 26, 2024 19:16:35.143832922 CEST | 443 | 49739 | 23.204.76.112 | 192.168.2.4 |
Apr 26, 2024 19:16:36.063812971 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.063858032 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.063950062 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.064146042 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.064155102 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.461498022 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.461791992 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.461811066 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.462830067 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.462932110 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.469221115 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.469296932 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.469507933 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.469523907 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.510474920 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.632328987 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.632414103 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.632631063 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.632900000 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.632900000 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:36.632930040 CEST | 443 | 49740 | 104.94.108.142 | 192.168.2.4 |
Apr 26, 2024 19:16:36.633104086 CEST | 49740 | 443 | 192.168.2.4 | 104.94.108.142 |
Apr 26, 2024 19:16:41.904505968 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:41.904542923 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:41.904623032 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:41.905829906 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:41.905842066 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:42.529988050 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:42.530086040 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:42.532545090 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:42.532555103 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:42.532846928 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:42.572974920 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:42.989480972 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:42.997692108 CEST | 49723 | 80 | 192.168.2.4 | 23.45.182.102 |
Apr 26, 2024 19:16:43.036117077 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.125773907 CEST | 80 | 49723 | 23.45.182.102 | 192.168.2.4 |
Apr 26, 2024 19:16:43.125893116 CEST | 49723 | 80 | 192.168.2.4 | 23.45.182.102 |
Apr 26, 2024 19:16:43.430260897 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.430326939 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.430349112 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.430387974 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.430442095 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.430474043 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:43.430501938 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.430514097 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:43.430543900 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:43.430607080 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.430696011 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:43.430702925 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.430820942 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.430883884 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:43.450938940 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:43.450978994 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:43.450995922 CEST | 49741 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:16:43.451004028 CEST | 443 | 49741 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:16:51.915466070 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:51.915481091 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:51.915544987 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:51.916512966 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:51.916524887 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:52.389409065 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:52.389780045 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:52.389795065 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:52.391315937 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:52.391459942 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:52.392813921 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:52.392899036 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:52.393064022 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:52.393069029 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:52.443619013 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:55.738158941 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:55.738234043 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:55.738281965 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:55.749993086 CEST | 49749 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:16:55.750011921 CEST | 443 | 49749 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:16:55.931727886 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:55.931770086 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:55.931843042 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:55.932048082 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:55.932065010 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:56.024115086 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:16:56.024156094 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:16:56.024241924 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:16:56.024419069 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:16:56.024431944 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:16:56.337172985 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:56.337531090 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:56.337563992 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:56.338826895 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:56.338888884 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:56.339947939 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:56.340018034 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:56.340146065 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:56.340153933 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:56.367866039 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:16:56.368103981 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:16:56.368117094 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:16:56.369540930 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:16:56.369601011 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:16:56.370584011 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:16:56.370673895 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:16:56.392334938 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:56.423163891 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:16:56.423188925 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:16:56.469372034 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:16:57.785814047 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:57.786042929 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:57.786145926 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:57.787148952 CEST | 49751 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:57.787188053 CEST | 443 | 49751 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:57.976454973 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:57.976502895 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:57.976594925 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:57.976833105 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:57.976847887 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.377536058 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.379196882 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.379223108 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.380367994 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.380446911 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.381519079 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.381593943 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.381726027 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.381738901 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.422517061 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.785356998 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.785423994 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.785475016 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.785500050 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.785505056 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.785531044 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.785540104 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.785554886 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.785607100 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.785619974 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.785674095 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.786329985 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.786359072 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.786401033 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.786413908 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.786427021 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.786448956 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.915584087 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.915611029 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.915699005 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.915721893 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.915806055 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.916373014 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.916402102 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.916441917 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.916449070 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.916467905 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.916486979 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.917098045 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.917118073 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.917166948 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:58.917172909 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:58.917212963 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.037029028 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.037066936 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.037175894 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.037199974 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.037242889 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.042128086 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.042188883 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.042212963 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.042232037 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.042247057 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.042275906 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.042531967 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.042551994 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.042582035 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.042588949 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.042612076 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.042632103 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.043045044 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.043065071 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.043103933 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.043109894 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.043133974 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.043155909 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.043428898 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.043451071 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.043489933 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.043494940 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.043519020 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.043534040 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.043839931 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.043859959 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.043891907 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.043898106 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.043921947 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.043936968 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.044411898 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.044431925 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.044488907 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.044496059 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.044536114 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.162499905 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.162535906 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.162836075 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.162858963 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.162918091 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.166083097 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.166114092 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.166166067 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.166178942 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.166197062 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.166213989 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.173230886 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.173259974 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.173300028 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.173316002 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.173342943 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.173358917 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.174504042 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.174529076 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.174581051 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.174591064 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.174616098 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.174637079 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.175620079 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.175642014 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.175683022 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.175693035 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.175717115 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.175734997 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.176500082 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.176525116 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.176563978 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.176573038 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.176625967 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.176625967 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.177601099 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.177623987 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.177680016 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.177692890 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.177747965 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.178392887 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.178412914 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.178464890 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.178474903 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.178510904 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.178528070 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.179312944 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.179336071 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.179378986 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.179389000 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.179424047 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.180417061 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.180439949 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.180504084 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.180517912 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.180556059 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.181447029 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.181467056 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.181499958 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.181510925 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.181533098 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.181549072 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.182634115 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.182657957 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.182689905 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.182699919 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.182723045 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.182735920 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.183626890 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.183650970 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.183686018 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.183693886 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.183722019 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.183728933 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.184514046 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.184536934 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.184577942 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.184583902 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.184608936 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.184624910 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.287540913 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.287570953 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.287620068 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.287633896 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.287663937 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.287691116 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.287823915 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.287854910 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.287882090 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.287890911 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.287916899 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.287939072 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.292557955 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.292577028 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.292640924 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.292649031 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.292671919 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.292685032 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.292769909 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.292788982 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.292834997 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.292841911 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.292881012 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.298213005 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.298232079 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.298305988 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.298314095 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.298363924 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.298979044 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.299005985 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.299047947 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.299055099 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.299074888 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.299098015 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.299643040 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.299662113 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.299707890 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.299715996 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.299762964 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.300400972 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.300421000 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.300532103 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.300544024 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.300580978 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.300580978 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.301399946 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.301419020 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.301476002 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.301482916 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.301533937 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.302192926 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.302220106 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.302243948 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.302249908 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.302268982 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.302293062 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.302858114 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.302876949 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.302917004 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.302922010 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.302946091 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.302964926 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.303471088 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.303489923 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.303528070 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.303534985 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.303555012 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.303576946 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.304081917 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.304110050 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.304131031 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.304136038 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.304155111 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.304177046 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.304908037 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.304927111 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.304989100 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.304996014 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.305032015 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.305663109 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.305681944 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.305720091 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.305726051 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.305742979 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.305766106 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.306094885 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.306113958 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.306144953 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.306152105 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.306174040 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.306194067 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.306529999 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.306554079 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.306587934 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.306593895 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.306617022 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.306636095 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.306649923 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.306698084 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.306703091 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.306742907 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.306747913 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.306788921 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.307203054 CEST | 49753 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.307220936 CEST | 443 | 49753 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.330478907 CEST | 49754 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.330521107 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.330619097 CEST | 49754 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.330946922 CEST | 49754 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.330957890 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.336705923 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.336745977 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.336816072 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.337508917 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.337526083 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.353493929 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.353585005 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.353684902 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.353935003 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.353971958 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.715048075 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.722878933 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.733335018 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:16:59.768162012 CEST | 49754 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.768168926 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:16:59.783776045 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.838655949 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.838720083 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.838747025 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.838782072 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.838932037 CEST | 49754 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.838956118 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.839301109 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.839868069 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.840029955 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.840096951 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.840922117 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.841021061 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.841191053 CEST | 49754 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.841383934 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.841423035 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.841495991 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.842160940 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.842243910 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.842252016 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.842259884 CEST | 49754 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:00.884121895 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.884126902 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:00.894639969 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.025434971 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.025744915 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.025877953 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.070888996 CEST | 49755 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.070897102 CEST | 443 | 49755 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.161339045 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.161425114 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.161523104 CEST | 49754 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.194433928 CEST | 49754 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.194463015 CEST | 443 | 49754 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.260570049 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.260623932 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.260711908 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.270632982 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.270661116 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.650808096 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.651179075 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.651206970 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.652221918 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.652333975 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.652601957 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.652650118 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.652753115 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.652760029 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.668930054 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.668957949 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.668966055 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.668997049 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.669027090 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.669081926 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.669095039 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.669161081 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.669668913 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.669699907 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.669723034 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.669728041 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.669743061 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.669745922 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.669763088 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.669790030 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.670890093 CEST | 49756 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.670902967 CEST | 443 | 49756 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.678919077 CEST | 49758 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.678951979 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.679160118 CEST | 49758 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.679220915 CEST | 49758 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.679234028 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.680340052 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:01.680361986 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:01.680428982 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:01.680932045 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:01.680943012 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:01.699203014 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.846548080 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.846591949 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:01.846681118 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.846895933 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:01.846908092 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.062747955 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.063133001 CEST | 49758 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.063158035 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.063492060 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.063836098 CEST | 49758 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.063899994 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.064009905 CEST | 49758 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.094067097 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.094147921 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.094234943 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.095619917 CEST | 49757 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.095638990 CEST | 443 | 49757 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.104108095 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.141907930 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:02.142146111 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:02.142158031 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:02.143198967 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:02.143260956 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:02.143654108 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:02.143712044 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:02.143852949 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:02.143858910 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:02.188316107 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:02.229886055 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.230232000 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.230252028 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.231275082 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.231333017 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.231662989 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.231722116 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.231810093 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.231816053 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.282022953 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.736217022 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.736249924 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.736259937 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.736277103 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.736310959 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.736352921 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.736382008 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.736394882 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.736428976 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.736882925 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.736943007 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.738358021 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.738429070 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.738435030 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.738468885 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:02.738509893 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.738598108 CEST | 49760 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:02.738611937 CEST | 443 | 49760 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:03.140336037 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:03.140562057 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:03.140748978 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.140980959 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.141001940 CEST | 443 | 49759 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:03.141015053 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.141052961 CEST | 49759 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.142364025 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.142385006 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:03.142452955 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.142771006 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.142782927 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:03.609498978 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:03.655723095 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.655751944 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:03.656435013 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:03.703880072 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.715348005 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.715533018 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:03.766402006 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.843096018 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:03.884123087 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:04.336982965 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:04.337093115 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:04.337150097 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:04.732960939 CEST | 49761 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:04.732988119 CEST | 443 | 49761 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:04.917599916 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:04.917638063 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:04.917697906 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:04.917932034 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:04.917944908 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:05.007260084 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.007292032 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.007328033 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.007365942 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.007405996 CEST | 49758 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.007430077 CEST | 49758 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.034152985 CEST | 49758 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.034188986 CEST | 443 | 49758 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.268475056 CEST | 49763 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.268523932 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.268599987 CEST | 49763 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.268879890 CEST | 49763 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.268910885 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.380727053 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:05.381079912 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:05.381104946 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:05.382586002 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:05.382658005 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:05.382991076 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:05.383066893 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:05.383120060 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:05.383126020 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:05.438029051 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:05.544076920 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:05.544187069 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:05.544279099 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:05.544816017 CEST | 49762 | 443 | 192.168.2.4 | 52.146.76.30 |
Apr 26, 2024 19:17:05.544826031 CEST | 443 | 49762 | 52.146.76.30 | 192.168.2.4 |
Apr 26, 2024 19:17:05.649175882 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.649557114 CEST | 49763 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.649590015 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.649938107 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.650248051 CEST | 49763 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.650336981 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.650434017 CEST | 49763 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.692118883 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.902117014 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.902152061 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.902194977 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.902225971 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:05.902286053 CEST | 49763 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.902306080 CEST | 49763 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.903629065 CEST | 49763 | 443 | 192.168.2.4 | 13.107.246.41 |
Apr 26, 2024 19:17:05.903646946 CEST | 443 | 49763 | 13.107.246.41 | 192.168.2.4 |
Apr 26, 2024 19:17:06.366010904 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:17:06.366091013 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:17:06.366170883 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:17:06.641949892 CEST | 49752 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:17:06.641988993 CEST | 443 | 49752 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:17:20.964040041 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:20.964081049 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:20.964175940 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:20.964585066 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:20.964600086 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:21.579583883 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:21.579653978 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:21.584186077 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:21.584204912 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:21.584429026 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:21.594180107 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:21.640115976 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:22.185189009 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:22.185215950 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:22.185234070 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:22.185451984 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:22.185482025 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:22.185615063 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:22.190092087 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:22.190125942 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:22.190139055 CEST | 49771 | 443 | 192.168.2.4 | 20.114.59.183 |
Apr 26, 2024 19:17:22.190145016 CEST | 443 | 49771 | 20.114.59.183 | 192.168.2.4 |
Apr 26, 2024 19:17:55.956273079 CEST | 49773 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:17:55.956321955 CEST | 443 | 49773 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:17:55.956404924 CEST | 49773 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:17:55.956666946 CEST | 49773 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:17:55.956685066 CEST | 443 | 49773 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:17:56.286442041 CEST | 443 | 49773 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:17:56.286747932 CEST | 49773 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:17:56.286765099 CEST | 443 | 49773 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:17:56.287221909 CEST | 443 | 49773 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:17:56.287518024 CEST | 49773 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:17:56.287605047 CEST | 443 | 49773 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:17:56.328790903 CEST | 49773 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:18:06.275794983 CEST | 443 | 49773 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:18:06.275901079 CEST | 443 | 49773 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:18:06.275986910 CEST | 49773 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:18:08.105245113 CEST | 49773 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:18:08.105278015 CEST | 443 | 49773 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:18:56.012377024 CEST | 49775 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:18:56.012428999 CEST | 443 | 49775 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:18:56.012522936 CEST | 49775 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:18:56.012857914 CEST | 49775 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:18:56.012868881 CEST | 443 | 49775 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:18:56.343533039 CEST | 443 | 49775 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:18:56.344341040 CEST | 49775 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:18:56.344369888 CEST | 443 | 49775 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:18:56.344705105 CEST | 443 | 49775 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:18:56.345613956 CEST | 49775 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:18:56.345676899 CEST | 443 | 49775 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:18:56.399952888 CEST | 49775 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:19:06.357028008 CEST | 443 | 49775 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:19:06.357115984 CEST | 443 | 49775 | 142.250.189.132 | 192.168.2.4 |
Apr 26, 2024 19:19:06.357211113 CEST | 49775 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:19:08.107634068 CEST | 49775 | 443 | 192.168.2.4 | 142.250.189.132 |
Apr 26, 2024 19:19:08.107660055 CEST | 443 | 49775 | 142.250.189.132 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 26, 2024 19:16:43.548587084 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Apr 26, 2024 19:16:51.669594049 CEST | 59721 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:16:51.669969082 CEST | 49975 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:16:51.795423031 CEST | 53 | 54543 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:16:51.819345951 CEST | 53 | 61032 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:16:52.748346090 CEST | 53 | 60604 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:16:55.762533903 CEST | 49834 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:16:55.762533903 CEST | 53477 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:16:55.897049904 CEST | 50031 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:16:55.897399902 CEST | 61699 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:16:56.022670031 CEST | 53 | 50031 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:16:56.023099899 CEST | 53 | 61699 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:17:01.678230047 CEST | 50244 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:17:01.678421021 CEST | 56256 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:17:04.759613991 CEST | 56217 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:17:04.759762049 CEST | 59578 | 53 | 192.168.2.4 | 1.1.1.1 |
Apr 26, 2024 19:17:06.768456936 CEST | 53 | 51847 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:17:11.396409988 CEST | 53 | 59588 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:17:30.273169994 CEST | 53 | 61799 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:17:51.647015095 CEST | 53 | 65003 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:17:53.129440069 CEST | 53 | 63291 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:18:19.653497934 CEST | 53 | 52128 | 1.1.1.1 | 192.168.2.4 |
Apr 26, 2024 19:19:05.043214083 CEST | 53 | 55793 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Checksum | Code | Type |
---|---|---|---|---|---|
Apr 26, 2024 19:17:04.989425898 CEST | 192.168.2.4 | 1.1.1.1 | c2bd | (Port unreachable) | Destination Unreachable |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 26, 2024 19:16:51.669594049 CEST | 192.168.2.4 | 1.1.1.1 | 0xb612 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 19:16:51.669969082 CEST | 192.168.2.4 | 1.1.1.1 | 0x8475 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 19:16:55.762533903 CEST | 192.168.2.4 | 1.1.1.1 | 0x8044 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 19:16:55.762533903 CEST | 192.168.2.4 | 1.1.1.1 | 0x845a | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 19:16:55.897049904 CEST | 192.168.2.4 | 1.1.1.1 | 0xde52 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 19:16:55.897399902 CEST | 192.168.2.4 | 1.1.1.1 | 0xf163 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 19:17:01.678230047 CEST | 192.168.2.4 | 1.1.1.1 | 0x4928 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 19:17:01.678421021 CEST | 192.168.2.4 | 1.1.1.1 | 0xa619 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 26, 2024 19:17:04.759613991 CEST | 192.168.2.4 | 1.1.1.1 | 0xa783 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 26, 2024 19:17:04.759762049 CEST | 192.168.2.4 | 1.1.1.1 | 0xd485 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 26, 2024 19:16:51.882383108 CEST | 1.1.1.1 | 192.168.2.4 | 0x8475 | No error (0) | cxppusa1im4t7x7z5iubq.trafficmanager.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:51.882383108 CEST | 1.1.1.1 | 192.168.2.4 | 0x8475 | No error (0) | prdia888eus0aks.mkt.dynamics.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:51.909508944 CEST | 1.1.1.1 | 192.168.2.4 | 0xb612 | No error (0) | cxppusa1im4t7x7z5iubq.trafficmanager.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:51.909508944 CEST | 1.1.1.1 | 192.168.2.4 | 0xb612 | No error (0) | prdia888eus0aks.mkt.dynamics.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:51.909508944 CEST | 1.1.1.1 | 192.168.2.4 | 0xb612 | No error (0) | 52.146.76.30 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:55.889184952 CEST | 1.1.1.1 | 192.168.2.4 | 0x8044 | No error (0) | assets-mkt-usa.azureedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:55.889184952 CEST | 1.1.1.1 | 192.168.2.4 | 0x8044 | No error (0) | part-0013.t-0009.t-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:55.889184952 CEST | 1.1.1.1 | 192.168.2.4 | 0x8044 | No error (0) | 13.107.246.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:55.889184952 CEST | 1.1.1.1 | 192.168.2.4 | 0x8044 | No error (0) | 13.107.213.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:55.929430008 CEST | 1.1.1.1 | 192.168.2.4 | 0x845a | No error (0) | assets-mkt-usa.azureedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:56.022670031 CEST | 1.1.1.1 | 192.168.2.4 | 0xde52 | No error (0) | 142.250.189.132 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:56.023099899 CEST | 1.1.1.1 | 192.168.2.4 | 0xf163 | No error (0) | 65 | IN (0x0001) | false | |||
Apr 26, 2024 19:16:57.975872993 CEST | 1.1.1.1 | 192.168.2.4 | 0x1cb | No error (0) | part-0013.t-0009.t-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:57.975872993 CEST | 1.1.1.1 | 192.168.2.4 | 0x1cb | No error (0) | 13.107.246.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:16:57.975872993 CEST | 1.1.1.1 | 192.168.2.4 | 0x1cb | No error (0) | 13.107.213.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:01.253418922 CEST | 1.1.1.1 | 192.168.2.4 | 0xb70c | No error (0) | part-0013.t-0009.t-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:01.253418922 CEST | 1.1.1.1 | 192.168.2.4 | 0xb70c | No error (0) | 13.107.246.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:01.253418922 CEST | 1.1.1.1 | 192.168.2.4 | 0xb70c | No error (0) | 13.107.213.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:01.844679117 CEST | 1.1.1.1 | 192.168.2.4 | 0x4928 | No error (0) | assets-mkt-usa.azureedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:01.844679117 CEST | 1.1.1.1 | 192.168.2.4 | 0x4928 | No error (0) | part-0013.t-0009.t-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:01.844679117 CEST | 1.1.1.1 | 192.168.2.4 | 0x4928 | No error (0) | 13.107.246.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:01.844679117 CEST | 1.1.1.1 | 192.168.2.4 | 0x4928 | No error (0) | 13.107.213.41 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:01.845983982 CEST | 1.1.1.1 | 192.168.2.4 | 0xa619 | No error (0) | assets-mkt-usa.azureedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:04.886209011 CEST | 1.1.1.1 | 192.168.2.4 | 0xa783 | No error (0) | cxppusa1im4t7x7z5iubq.trafficmanager.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:04.886209011 CEST | 1.1.1.1 | 192.168.2.4 | 0xa783 | No error (0) | prdia888eus0aks.mkt.dynamics.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:04.886209011 CEST | 1.1.1.1 | 192.168.2.4 | 0xa783 | No error (0) | 52.146.76.30 | A (IP address) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:04.989305019 CEST | 1.1.1.1 | 192.168.2.4 | 0xd485 | No error (0) | cxppusa1im4t7x7z5iubq.trafficmanager.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 26, 2024 19:17:04.989305019 CEST | 1.1.1.1 | 192.168.2.4 | 0xd485 | No error (0) | prdia888eus0aks.mkt.dynamics.com | CNAME (Canonical name) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49738 | 23.204.76.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:16:32 UTC | 161 | OUT | |
2024-04-26 17:16:33 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49739 | 23.204.76.112 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:16:34 UTC | 239 | OUT | |
2024-04-26 17:16:35 UTC | 530 | IN | |
2024-04-26 17:16:35 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49740 | 104.94.108.142 | 443 | 7700 | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:16:36 UTC | 475 | OUT | |
2024-04-26 17:16:36 UTC | 198 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49741 | 20.114.59.183 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:16:42 UTC | 306 | OUT | |
2024-04-26 17:16:43 UTC | 560 | IN | |
2024-04-26 17:16:43 UTC | 15824 | IN | |
2024-04-26 17:16:43 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49749 | 52.146.76.30 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:16:52 UTC | 745 | OUT | |
2024-04-26 17:16:55 UTC | 460 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49751 | 13.107.246.41 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:16:56 UTC | 773 | OUT | |
2024-04-26 17:16:57 UTC | 495 | IN | |
2024-04-26 17:16:57 UTC | 491 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49753 | 13.107.246.41 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:16:58 UTC | 592 | OUT | |
2024-04-26 17:16:58 UTC | 636 | IN | |
2024-04-26 17:16:58 UTC | 15748 | IN | |
2024-04-26 17:16:58 UTC | 16384 | IN | |
2024-04-26 17:16:58 UTC | 16384 | IN | |
2024-04-26 17:16:58 UTC | 16384 | IN | |
2024-04-26 17:16:58 UTC | 16384 | IN | |
2024-04-26 17:16:59 UTC | 16384 | IN | |
2024-04-26 17:16:59 UTC | 16384 | IN | |
2024-04-26 17:16:59 UTC | 16384 | IN | |
2024-04-26 17:16:59 UTC | 16384 | IN | |
2024-04-26 17:16:59 UTC | 16384 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49756 | 13.107.246.41 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:00 UTC | 738 | OUT | |
2024-04-26 17:17:01 UTC | 589 | IN | |
2024-04-26 17:17:01 UTC | 15795 | IN | |
2024-04-26 17:17:01 UTC | 13796 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49755 | 13.107.246.41 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:00 UTC | 650 | OUT | |
2024-04-26 17:17:01 UTC | 608 | IN | |
2024-04-26 17:17:01 UTC | 1304 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.4 | 49754 | 13.107.246.41 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:00 UTC | 713 | OUT | |
2024-04-26 17:17:01 UTC | 313 | IN | |
2024-04-26 17:17:01 UTC | 548 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.4 | 49757 | 13.107.246.41 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:01 UTC | 422 | OUT | |
2024-04-26 17:17:02 UTC | 615 | IN | |
2024-04-26 17:17:02 UTC | 1304 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.4 | 49758 | 13.107.246.41 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:02 UTC | 668 | OUT | |
2024-04-26 17:17:05 UTC | 483 | IN | |
2024-04-26 17:17:05 UTC | 5802 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
12 | 192.168.2.4 | 49759 | 52.146.76.30 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:02 UTC | 605 | OUT | |
2024-04-26 17:17:03 UTC | 383 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
13 | 192.168.2.4 | 49760 | 13.107.246.41 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:02 UTC | 444 | OUT | |
2024-04-26 17:17:02 UTC | 589 | IN | |
2024-04-26 17:17:02 UTC | 15795 | IN | |
2024-04-26 17:17:02 UTC | 13796 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
14 | 192.168.2.4 | 49761 | 52.146.76.30 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:03 UTC | 715 | OUT | |
2024-04-26 17:17:03 UTC | 215 | OUT | |
2024-04-26 17:17:04 UTC | 366 | IN | |
2024-04-26 17:17:04 UTC | 54 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
15 | 192.168.2.4 | 49762 | 52.146.76.30 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:05 UTC | 468 | OUT | |
2024-04-26 17:17:05 UTC | 218 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
16 | 192.168.2.4 | 49763 | 13.107.246.41 | 443 | 8904 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:05 UTC | 467 | OUT | |
2024-04-26 17:17:05 UTC | 503 | IN | |
2024-04-26 17:17:05 UTC | 5802 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
17 | 192.168.2.4 | 49771 | 20.114.59.183 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-26 17:17:21 UTC | 306 | OUT | |
2024-04-26 17:17:22 UTC | 560 | IN | |
2024-04-26 17:17:22 UTC | 15824 | IN | |
2024-04-26 17:17:22 UTC | 9633 | IN |
Click to jump to process
Click to jump to process
back
Click to dive into process behavior distribution
Click to jump to process
Target ID: | 0 |
Start time: | 19:16:22 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6bc1b0000 |
File size: | 5'641'176 bytes |
MD5 hash: | 24EAD1C46A47022347DC0F05F6EFBB8C |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | moderate |
Has exited: | true |
Target ID: | 1 |
Start time: | 19:16:23 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff74bb60000 |
File size: | 3'581'912 bytes |
MD5 hash: | 9B38E8E8B6DD9622D24B53E095C5D9BE |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | moderate |
Has exited: | true |
Target ID: | 3 |
Start time: | 19:16:23 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff74bb60000 |
File size: | 3'581'912 bytes |
MD5 hash: | 9B38E8E8B6DD9622D24B53E095C5D9BE |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | moderate |
Has exited: | true |
Target ID: | 9 |
Start time: | 19:16:48 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | false |
Target ID: | 10 |
Start time: | 19:16:50 |
Start date: | 26/04/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | false |