Edit tour
Windows
Analysis Report
DEKONT.exe
Overview
General Information
Detection
PureLog Stealer, Snake Keylogger
Score: | 100 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Antivirus detection for URL or domain
Found malware configuration
Malicious sample detected (through community Yara rule)
Multi AV Scanner detection for domain / URL
Multi AV Scanner detection for submitted file
Yara detected PureLog Stealer
Yara detected Snake Keylogger
.NET source code contains method to dynamically call methods (often used by packers)
.NET source code contains potential unpacker
.NET source code contains very large array initializations
Injects a PE file into a foreign processes
Machine Learning detection for sample
Tries to harvest and steal browser information (history, passwords, etc)
Tries to steal Mail credentials (via file / registry access)
Yara detected Generic Downloader
Allocates memory with a write watch (potentially for evading sandboxes)
Binary contains a suspicious time stamp
Contains functionality to access loader functionality (e.g. LdrGetProcedureAddress)
Contains long sleeps (>= 3 min)
Creates a process in suspended mode (likely to inject code)
Detected potential crypto function
Enables debug privileges
Found a high number of Window / User specific system calls (may be a loop to detect user behavior)
Found inlined nop instructions (likely shell or obfuscated code)
HTTP GET or POST without a user agent
IP address seen in connection with other malware
JA3 SSL client fingerprint seen in connection with other malware
May sleep (evasive loops) to hinder dynamic analysis
Monitors certain registry keys / values for changes (often done to protect autostart functionality)
Queries the volume information (name, serial number etc) of a device
Sample file is different than original file name gathered from version info
Uses 32bit PE files
Uses code obfuscation techniques (call, push, ret)
Uses insecure TLS / SSL version for HTTPS connection
Yara detected Credential Stealer
Yara signature match
Classification
- System is w10x64
- DEKONT.exe (PID: 1708 cmdline:
"C:\Users\ user\Deskt op\DEKONT. exe" MD5: C766A45151C2A9B0879095062DC566FE) - DEKONT.exe (PID: 7100 cmdline:
"C:\Users\ user\Deskt op\DEKONT. exe" MD5: C766A45151C2A9B0879095062DC566FE)
- chrome.exe (PID: 5412 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t http://5 4593070215 8920859543 5570344804 0151787232 8570392444 5936413958 38190185/ MD5: 5BBFA6CBDF4C254EB368D534F9E23C92) - chrome.exe (PID: 6728 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2084 --fi eld-trial- handle=198 4,i,514770 1504775830 983,442634 7062554679 01,262144 --disable- features=O ptimizatio nGuideMode lDownloadi ng,Optimiz ationHints ,Optimizat ionHintsFe tching,Opt imizationT argetPredi ction /pre fetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
- cleanup
Name | Description | Attribution | Blogpost URLs | Link |
---|---|---|---|---|
404 Keylogger, Snake Keylogger | Snake Keylogger (aka 404 Keylogger) is a subscription-based keylogger that has many capabilities. The infostealer can steal a victims sensitive information, log keyboard strokes, take screenshots and extract information from the system clipboard. It was initially released on a Russian hacking forum in August 2019. It is notable for its relatively unusual methods of data exfiltration, including via email, FTP, SMTP, Pastebin or the messaging app Telegram. | No Attribution |
{"Exfil Mode": "SMTP", "Username": "info@eraslangroup.net", "Password": "aHZAyjDK", "Host": "mail.eraslangroup.net", "Port": "587"}
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_SnakeKeylogger | Yara detected Snake Keylogger | Joe Security | ||
JoeSecurity_PureLogStealer | Yara detected PureLog Stealer | Joe Security | ||
JoeSecurity_CredentialStealer | Yara detected Credential Stealer | Joe Security | ||
JoeSecurity_SnakeKeylogger | Yara detected Snake Keylogger | Joe Security | ||
Windows_Trojan_SnakeKeylogger_af3faa65 | unknown | unknown |
| |
Click to see the 15 entries |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_PureLogStealer | Yara detected PureLog Stealer | Joe Security | ||
JoeSecurity_PureLogStealer | Yara detected PureLog Stealer | Joe Security | ||
JoeSecurity_CredentialStealer | Yara detected Credential Stealer | Joe Security | ||
JoeSecurity_SnakeKeylogger | Yara detected Snake Keylogger | Joe Security | ||
Windows_Trojan_SnakeKeylogger_af3faa65 | unknown | unknown |
| |
Click to see the 31 entries |
⊘No Sigma rule has matched
⊘No Snort rule has matched
Click to jump to signature section
Show All Signature Results
AV Detection |
---|
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: |
Source: | Malware Configuration Extractor: |
Source: | Virustotal: | Perma Link | ||
Source: | Virustotal: | Perma Link | ||
Source: | Virustotal: | Perma Link | ||
Source: | Virustotal: | Perma Link |
Source: | ReversingLabs: | |||
Source: | Virustotal: | Perma Link |
Source: | Joe Sandbox ML: |
Source: | HTTP Parser: |
Source: | Static PE information: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Static PE information: |
Source: | Binary string: | ||
Source: | Binary string: |
Source: | Code function: | 0_2_0748A076 | |
Source: | Code function: | 3_2_00A40C60 | |
Source: | Code function: | 3_2_00A40040 | |
Source: | Code function: | 3_2_00A40040 | |
Source: | Code function: | 3_2_00A41DE0 | |
Source: | Code function: | 3_2_00A4D6C0 | |
Source: | Code function: | 3_2_00A42240 | |
Source: | Code function: | 3_2_00A410C0 | |
Source: | Code function: | 3_2_00A4F0D0 | |
Source: | Code function: | 3_2_00A4E820 | |
Source: | Code function: | 3_2_00A4EC78 | |
Source: | Code function: | 3_2_00A4C9B8 | |
Source: | Code function: | 3_2_00A42586 | |
Source: | Code function: | 3_2_00A4F980 | |
Source: | Code function: | 3_2_00A41980 | |
Source: | Code function: | 3_2_00A41520 | |
Source: | Code function: | 3_2_00A4F528 | |
Source: | Code function: | 3_2_00A4C108 | |
Source: | Code function: | 3_2_00A4C560 | |
Source: | Code function: | 3_2_00A4223B | |
Source: | Code function: | 3_2_00A4CE10 | |
Source: | Code function: | 3_2_00A4D268 | |
Source: | Code function: | 3_2_00A4E3C8 | |
Source: | Code function: | 3_2_00A4DB18 | |
Source: | Code function: | 3_2_00A4DF70 | |
Source: | Code function: | 3_2_00A58A58 | |
Source: | Code function: | 3_2_00A56BC8 | |
Source: | Code function: | 3_2_00A574A0 | |
Source: | Code function: | 3_2_00A50498 | |
Source: | Code function: | 3_2_00A508F0 | |
Source: | Code function: | 3_2_00A578F8 | |
Source: | Code function: | 3_2_00A57020 | |
Source: | Code function: | 3_2_00A53800 | |
Source: | Code function: | 3_2_00A53808 | |
Source: | Code function: | 3_2_00A50040 | |
Source: | Code function: | 3_2_00A511A0 | |
Source: | Code function: | 3_2_00A581A8 | |
Source: | Code function: | 3_2_00A555E8 | |
Source: | Code function: | 3_2_00A50D48 | |
Source: | Code function: | 3_2_00A57D50 | |
Source: | Code function: | 3_2_00A55EC0 | |
Source: | Code function: | 3_2_00A58600 | |
Source: | Code function: | 3_2_00A55A68 | |
Source: | Code function: | 3_2_00A53B1E | |
Source: | Code function: | 3_2_00A56318 | |
Source: | Code function: | 3_2_00A56770 | |
Source: | Code function: | 3_2_00DAF4E8 | |
Source: | Code function: | 3_2_00DAF941 | |
Source: | Code function: | 3_2_00DAEA08 |
Networking |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: |
Source: | JA3 fingerprint: | ||
Source: | JA3 fingerprint: | ||
Source: | JA3 fingerprint: | ||
Source: | JA3 fingerprint: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
System Summary |
---|
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: |
Source: | Large array initialization: | ||
Source: | Large array initialization: |
Source: | Code function: | 0_2_013DDCD4 | |
Source: | Code function: | 0_2_05640040 | |
Source: | Code function: | 0_2_0564001A | |
Source: | Code function: | 0_2_05CA2409 | |
Source: | Code function: | 0_2_05CA2418 | |
Source: | Code function: | 0_2_05CA2791 | |
Source: | Code function: | 0_2_05CA27A0 | |
Source: | Code function: | 0_2_05CAF108 | |
Source: | Code function: | 0_2_05CAD018 | |
Source: | Code function: | 0_2_07482E28 | |
Source: | Code function: | 0_2_0748BE38 | |
Source: | Code function: | 0_2_074885E8 | |
Source: | Code function: | 0_2_07486318 | |
Source: | Code function: | 0_2_07488018 | |
Source: | Code function: | 0_2_07482E18 | |
Source: | Code function: | 0_2_07485EE0 | |
Source: | Code function: | 0_2_07485AA8 | |
Source: | Code function: | 0_2_05CA9160 | |
Source: | Code function: | 3_2_00A49080 | |
Source: | Code function: | 3_2_00A44490 | |
Source: | Code function: | 3_2_00A40C60 | |
Source: | Code function: | 3_2_00A40040 | |
Source: | Code function: | 3_2_00A489B0 | |
Source: | Code function: | 3_2_00A41DE0 | |
Source: | Code function: | 3_2_00A4D6C0 | |
Source: | Code function: | 3_2_00A410B0 | |
Source: | Code function: | 3_2_00A44480 | |
Source: | Code function: | 3_2_00A4C0F7 | |
Source: | Code function: | 3_2_00A410C0 | |
Source: | Code function: | 3_2_00A4F0C0 | |
Source: | Code function: | 3_2_00A4F0D0 | |
Source: | Code function: | 3_2_00A4E820 | |
Source: | Code function: | 3_2_00A48008 | |
Source: | Code function: | 3_2_00A40011 | |
Source: | Code function: | 3_2_00A4E811 | |
Source: | Code function: | 3_2_00A4EC69 | |
Source: | Code function: | 3_2_00A4906B | |
Source: | Code function: | 3_2_00A4EC78 | |
Source: | Code function: | 3_2_00A40C50 | |
Source: | Code function: | 3_2_00A4C9A9 | |
Source: | Code function: | 3_2_00A4C9B8 | |
Source: | Code function: | 3_2_00A4F980 | |
Source: | Code function: | 3_2_00A41980 | |
Source: | Code function: | 3_2_00A41DD0 | |
Source: | Code function: | 3_2_00A41520 | |
Source: | Code function: | 3_2_00A4F528 | |
Source: | Code function: | 3_2_00A4C108 | |
Source: | Code function: | 3_2_00A41510 | |
Source: | Code function: | 3_2_00A4F518 | |
Source: | Code function: | 3_2_00A4C560 | |
Source: | Code function: | 3_2_00A4F975 | |
Source: | Code function: | 3_2_00A41970 | |
Source: | Code function: | 3_2_00A4C550 | |
Source: | Code function: | 3_2_00A4D6B0 | |
Source: | Code function: | 3_2_00A4CE01 | |
Source: | Code function: | 3_2_00A4CE10 | |
Source: | Code function: | 3_2_00A4D268 | |
Source: | Code function: | 3_2_00A4D258 | |
Source: | Code function: | 3_2_00A4E3BC | |
Source: | Code function: | 3_2_00A47FF8 | |
Source: | Code function: | 3_2_00A4E3C8 | |
Source: | Code function: | 3_2_00A4DB09 | |
Source: | Code function: | 3_2_00A4DB18 | |
Source: | Code function: | 3_2_00A4DF60 | |
Source: | Code function: | 3_2_00A4DF70 | |
Source: | Code function: | 3_2_00A590A1 | |
Source: | Code function: | 3_2_00A5B4F0 | |
Source: | Code function: | 3_2_00A5D478 | |
Source: | Code function: | 3_2_00A5A858 | |
Source: | Code function: | 3_2_00A5C188 | |
Source: | Code function: | 3_2_00A515F8 | |
Source: | Code function: | 3_2_00A5AEA8 | |
Source: | Code function: | 3_2_00A5DAC0 | |
Source: | Code function: | 3_2_00A5CE28 | |
Source: | Code function: | 3_2_00A58A58 | |
Source: | Code function: | 3_2_00A56BC8 | |
Source: | Code function: | 3_2_00A5C7D8 | |
Source: | Code function: | 3_2_00A5BB38 | |
Source: | Code function: | 3_2_00A574A0 | |
Source: | Code function: | 3_2_00A54880 | |
Source: | Code function: | 3_2_00A50488 | |
Source: | Code function: | 3_2_00A57490 | |
Source: | Code function: | 3_2_00A50498 | |
Source: | Code function: | 3_2_00A578E7 | |
Source: | Code function: | 3_2_00A508E1 | |
Source: | Code function: | 3_2_00A5B4E0 | |
Source: | Code function: | 3_2_00A508F0 | |
Source: | Code function: | 3_2_00A578F8 | |
Source: | Code function: | 3_2_00A57020 | |
Source: | Code function: | 3_2_00A53800 | |
Source: | Code function: | 3_2_00A53808 | |
Source: | Code function: | 3_2_00A50015 | |
Source: | Code function: | 3_2_00A57010 | |
Source: | Code function: | 3_2_00A5D473 | |
Source: | Code function: | 3_2_00A50040 | |
Source: | Code function: | 3_2_00A5A848 | |
Source: | Code function: | 3_2_00A52C57 | |
Source: | Code function: | 3_2_00A511A0 | |
Source: | Code function: | 3_2_00A581A8 | |
Source: | Code function: | 3_2_00A51191 | |
Source: | Code function: | 3_2_00A5819B | |
Source: | Code function: | 3_2_00A555E8 | |
Source: | Code function: | 3_2_00A585F1 | |
Source: | Code function: | 3_2_00A555D9 | |
Source: | Code function: | 3_2_00A50D38 | |
Source: | Code function: | 3_2_00A52D00 | |
Source: | Code function: | 3_2_00A5C178 | |
Source: | Code function: | 3_2_00A57D40 | |
Source: | Code function: | 3_2_00A50D48 | |
Source: | Code function: | 3_2_00A57D50 | |
Source: | Code function: | 3_2_00A5DAB7 | |
Source: | Code function: | 3_2_00A55EB1 | |
Source: | Code function: | 3_2_00A55EC0 | |
Source: | Code function: | 3_2_00A5CE24 | |
Source: | Code function: | 3_2_00A58600 | |
Source: | Code function: | 3_2_00A55A68 | |
Source: | Code function: | 3_2_00A58A48 | |
Source: | Code function: | 3_2_00A55A58 | |
Source: | Code function: | 3_2_00A56BB8 | |
Source: | Code function: | 3_2_00A53B80 | |
Source: | Code function: | 3_2_00A5C7C9 | |
Source: | Code function: | 3_2_00A5BB27 | |
Source: | Code function: | 3_2_00A56308 | |
Source: | Code function: | 3_2_00A56318 | |
Source: | Code function: | 3_2_00A56760 | |
Source: | Code function: | 3_2_00A56770 | |
Source: | Code function: | 3_2_00C4ACC0 | |
Source: | Code function: | 3_2_00C4DC48 | |
Source: | Code function: | 3_2_00C4BFEC | |
Source: | Code function: | 3_2_00DAC1F0 | |
Source: | Code function: | 3_2_00DA6168 | |
Source: | Code function: | 3_2_00DAB388 | |
Source: | Code function: | 3_2_00DAC4D0 | |
Source: | Code function: | 3_2_00DA6790 | |
Source: | Code function: | 3_2_00DAC7B1 | |
Source: | Code function: | 3_2_00DA98B8 | |
Source: | Code function: | 3_2_00DACA91 | |
Source: | Code function: | 3_2_00DA4B31 | |
Source: | Code function: | 3_2_00DABC32 | |
Source: | Code function: | 3_2_00DAF4E8 | |
Source: | Code function: | 3_2_00DA35C8 | |
Source: | Code function: | 3_2_00DAB552 | |
Source: | Code function: | 3_2_00DAE9F8 | |
Source: | Code function: | 3_2_00DAF941 | |
Source: | Code function: | 3_2_00DAEA08 |
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: |
Source: | Static PE information: |
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: |
Source: | Static PE information: |
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: |
Source: | Security API names: | ||
Source: | Security API names: | ||
Source: | Security API names: | ||
Source: | Security API names: | ||
Source: | Security API names: | ||
Source: | Security API names: | ||
Source: | Security API names: | ||
Source: | Security API names: |
Source: | Classification label: |
Source: | File created: | Jump to behavior |
Source: | Mutant created: |
Source: | Static PE information: |
Source: | Static file information: |
Source: | Key opened: | Jump to behavior |
Source: | Binary or memory string: |
Source: | ReversingLabs: | ||
Source: | Virustotal: |
Source: | File read: | Jump to behavior |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior |
Source: | Key value queried: | Jump to behavior |
Source: | File opened: | Jump to behavior |
Source: | Key opened: | Jump to behavior |
Source: | Static PE information: |
Source: | Static PE information: |
Source: | Static PE information: |
Source: | Binary string: | ||
Source: | Binary string: |
Data Obfuscation |
---|
Source: | .Net Code: |
Source: | .Net Code: | ||
Source: | .Net Code: | ||
Source: | .Net Code: | ||
Source: | .Net Code: | ||
Source: | .Net Code: |
Source: | Static PE information: |
Source: | Code function: | 0_2_013DF1D1 | |
Source: | Code function: | 0_2_0564DB59 | |
Source: | Code function: | 0_2_0748B0B9 | |
Source: | Code function: | 3_2_00DAB112 | |
Source: | Code function: | 3_2_00DA2517 | |
Source: | Code function: | 3_2_00DA9771 |
Source: | Static PE information: |
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: | ||
Source: | High entropy of concatenated method names: |
Source: | Registry key monitored for changes: | Jump to behavior | ||
Source: | Registry key monitored for changes: | Jump to behavior |
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior |
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior |
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior |
Source: | Window / User API: | Jump to behavior | ||
Source: | Window / User API: | Jump to behavior |
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep count: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep count: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep count: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior |
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior |
Source: | Binary or memory string: |
Source: | Process information queried: | Jump to behavior |
Source: | Code function: | 3_2_00A489B0 |
Source: | Process token adjusted: | Jump to behavior |
Source: | Memory allocated: | Jump to behavior |
HIPS / PFW / Operating System Protection Evasion |
---|
Source: | Memory written: | Jump to behavior |
Source: | Process created: | Jump to behavior |
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior |
Source: | Key value queried: | Jump to behavior |
Stealing of Sensitive Information |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior |
Source: | File opened: | Jump to behavior | ||
Source: | Key opened: | Jump to behavior |
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Remote Access Functionality |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | 1 DLL Side-Loading | 111 Process Injection | 1 Masquerading | 1 OS Credential Dumping | 1 Query Registry | Remote Services | 1 Email Collection | 11 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | 1 DLL Side-Loading | 1 Disable or Modify Tools | LSASS Memory | 1 Security Software Discovery | Remote Desktop Protocol | 11 Archive Collected Data | 1 Ingress Tool Transfer | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 31 Virtualization/Sandbox Evasion | Security Account Manager | 1 Process Discovery | SMB/Windows Admin Shares | 1 Data from Local System | 3 Non-Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | 111 Process Injection | NTDS | 31 Virtualization/Sandbox Evasion | Distributed Component Object Model | Input Capture | 4 Application Layer Protocol | Traffic Duplication | Data Destruction |
Gather Victim Network Information | Server | Cloud Accounts | Launchd | Network Logon Script | Network Logon Script | 1 Deobfuscate/Decode Files or Information | LSA Secrets | 1 Application Window Discovery | SSH | Keylogging | Fallback Channels | Scheduled Transfer | Data Encrypted for Impact |
Domain Properties | Botnet | Replication Through Removable Media | Scheduled Task | RC Scripts | RC Scripts | 3 Obfuscated Files or Information | Cached Domain Credentials | 13 System Information Discovery | VNC | GUI Input Capture | Multiband Communication | Data Transfer Size Limits | Service Stop |
DNS | Web Services | External Remote Services | Systemd Timers | Startup Items | Startup Items | 22 Software Packing | DCSync | Remote System Discovery | Windows Remote Management | Web Portal Capture | Commonly Used Port | Exfiltration Over C2 Channel | Inhibit System Recovery |
Network Trust Dependencies | Serverless | Drive-by Compromise | Container Orchestration Job | Scheduled Task/Job | Scheduled Task/Job | 1 Timestomp | Proc Filesystem | System Owner/User Discovery | Cloud Services | Credential API Hooking | Application Layer Protocol | Exfiltration Over Alternative Protocol | Defacement |
Network Topology | Malvertising | Exploit Public-Facing Application | Command and Scripting Interpreter | At | At | 1 DLL Side-Loading | /etc/passwd and /etc/shadow | Network Sniffing | Direct Cloud VM Connections | Data Staged | Web Protocols | Exfiltration Over Symmetric Encrypted Non-C2 Protocol | Internal Defacement |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
61% | ReversingLabs | ByteCode-MSIL.Trojan.Taskun | ||
63% | Virustotal | Browse | ||
100% | Joe Sandbox ML |
⊘No Antivirus matches
⊘No Antivirus matches
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
2% | Virustotal | Browse | ||
17% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | Avira URL Cloud | safe | ||
100% | Avira URL Cloud | malware | ||
0% | Avira URL Cloud | safe | ||
100% | Avira URL Cloud | malware | ||
100% | Avira URL Cloud | malware | ||
16% | Virustotal | Browse | ||
17% | Virustotal | Browse | ||
16% | Virustotal | Browse |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
plus.l.google.com | 142.250.191.142 | true | false | high | |
www3.l.google.com | 142.250.191.110 | true | false | high | |
play.google.com | 142.250.190.46 | true | false | high | |
reallyfreegeoip.org | 172.67.177.134 | true | false |
| unknown |
www.google.com | 142.250.191.196 | true | false | high | |
scratchdreams.tk | 172.67.169.18 | true | false |
| unknown |
checkip.dyndns.com | 132.226.8.169 | true | false |
| unknown |
checkip.dyndns.org | unknown | unknown | true |
| unknown |
ogs.google.com | unknown | unknown | false | high | |
apis.google.com | unknown | unknown | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
| unknown | |
false | high | ||
false | high | ||
false | high | ||
false | high | ||
false |
| unknown | |
false | high | ||
false | high | ||
false |
| unknown | |
false | high |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false |
| unknown | ||
false | high | |||
false | high | |||
false |
| unknown | ||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false | high | |||
false |
| unknown | ||
false | high | |||
false | high | |||
false |
| unknown | ||
false | high | |||
false |
| unknown | ||
false | high | |||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
132.226.8.169 | checkip.dyndns.com | United States | 16989 | UTMEMUS | false | |
142.250.190.142 | unknown | United States | 15169 | GOOGLEUS | false | |
142.250.190.46 | play.google.com | United States | 15169 | GOOGLEUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
172.67.169.18 | scratchdreams.tk | United States | 13335 | CLOUDFLARENETUS | false | |
142.250.191.110 | www3.l.google.com | United States | 15169 | GOOGLEUS | false | |
142.250.191.142 | plus.l.google.com | United States | 15169 | GOOGLEUS | false | |
172.67.177.134 | reallyfreegeoip.org | United States | 13335 | CLOUDFLARENETUS | false | |
142.250.191.196 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.6 |
192.168.2.22 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1434016 |
Start date and time: | 2024-04-30 12:50:30 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 9m 9s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | default.jbs |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 9 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Sample name: | DEKONT.exe |
Detection: | MAL |
Classification: | mal100.troj.spyw.evad.winEXE@21/35@15/11 |
EGA Information: |
|
HCA Information: |
|
Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 142.250.191.131, 142.250.190.78, 142.250.111.84, 34.104.35.123, 142.250.191.163, 192.229.211.108, 199.232.214.172, 23.52.42.25, 142.250.190.110, 142.250.191.227, 142.250.191.99, 142.250.191.195
- Excluded domains from analysis (whitelisted): clients1.google.com, client.wns.windows.com, ssl.gstatic.com, fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, fonts.gstatic.com, ctldl.windowsupdate.com, clientservices.googleapis.com, fe3cr.delivery.mp.microsoft.com, clients2.google.com, ocsp.digicert.com, edgedl.me.gvt1.com, update.googleapis.com, clients.l.google.com, www.gstatic.com
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtOpenKeyEx calls found.
- Report size getting too big, too many NtQueryValueKey calls found.
- Report size getting too big, too many NtReadVirtualMemory calls found.
Time | Type | Description |
---|---|---|
12:51:16 | API Interceptor |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
132.226.8.169 | Get hash | malicious | Agent Tesla, AgentTesla | Browse |
| |
Get hash | malicious | Agent Tesla, AgentTesla | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, RedLine, Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, RedLine, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, RedLine, Snake Keylogger | Browse |
| ||
239.255.255.250 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse | |||
Get hash | malicious | AgentTesla | Browse | |||
Get hash | malicious | AgentTesla, GuLoader | Browse | |||
Get hash | malicious | PureLog Stealer, zgRAT | Browse | |||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse | |||
Get hash | malicious | Remcos | Browse | |||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse | |||
Get hash | malicious | FormBook, PureLog Stealer | Browse | |||
172.67.169.18 | Get hash | malicious | Snake Keylogger | Browse | ||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | PureLog Stealer, RedLine, Snake Keylogger | Browse | |||
Get hash | malicious | PureLog Stealer, RedLine, Snake Keylogger | Browse | |||
Get hash | malicious | PureLog Stealer, RedLine, Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
172.67.177.134 | Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse | ||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | PureLog Stealer, RedLine, Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | Snake Keylogger | Browse | |||
Get hash | malicious | PureLog Stealer, RedLine, Snake Keylogger | Browse |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
scratchdreams.tk | Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| |
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, RedLine, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
checkip.dyndns.com | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Agent Tesla, AgentTesla | Browse |
| ||
Get hash | malicious | Agent Tesla, AgentTesla | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | SeclesBot, TrojanRansom | Browse |
| ||
reallyfreegeoip.org | Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| |
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
UTMEMUS | Get hash | malicious | Mirai, Moobot, Okiru | Browse |
| |
Get hash | malicious | Mirai, Okiru | Browse |
| ||
Get hash | malicious | Agent Tesla, AgentTesla | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Agent Tesla, AgentTesla | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
CLOUDFLARENETUS | Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| |
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | PureLog Stealer, zgRAT | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | FormBook, PureLog Stealer | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
CLOUDFLARENETUS | Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| |
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | PureLog Stealer, zgRAT | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | FormBook, PureLog Stealer | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | Unknown | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
1138de370e523e824bbca92d049a3777 | Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| |
Get hash | malicious | AgentTesla | Browse |
| ||
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | FormBook, PureLog Stealer | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | AsyncRAT, PureLog Stealer, zgRAT | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
28a2c9bd18a11de089ef85a160da29e4 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | Remcos | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | FormBook, PureLog Stealer | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | Remcos, PureLog Stealer | Browse |
| ||
Get hash | malicious | FormBook, PureLog Stealer | Browse |
| ||
54328bd36c14bd82ddaa0c04b25ed9ad | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | AsyncRAT, DcRat | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Xehook Stealer | Browse |
| ||
Get hash | malicious | Xehook Stealer | Browse |
| ||
Get hash | malicious | Xehook Stealer | Browse |
| ||
Get hash | malicious | PureLog Stealer | Browse |
| ||
Get hash | malicious | Xehook Stealer | Browse |
| ||
3b5074b1b5d032e5620f69f9f700ff0e | Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| |
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla, GuLoader | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | AsyncRAT, PureLog Stealer, zgRAT | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | Remcos, PureLog Stealer | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
|
⊘No context
Process: | C:\Users\user\Desktop\DEKONT.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1216 |
Entropy (8bit): | 5.34331486778365 |
Encrypted: | false |
SSDEEP: | 24:MLUE4K5E4KH1qE4qXKDE4KhKiKhPKIE4oKNzKoZAE4Kze0E4x84j:MIHK5HKH1qHiYHKh3oPtHo6hAHKze0HJ |
MD5: | 1330C80CAAC9A0FB172F202485E9B1E8 |
SHA1: | 86BAFDA4E4AE68C7C3012714A33D85D2B6E1A492 |
SHA-256: | B6C63ECE799A8F7E497C2A158B1FFC2F5CB4F745A2F8E585F794572B7CF03560 |
SHA-512: | 75A17AB129FE97BBAB36AA2BD66D59F41DB5AFF44A705EF3E4D094EC5FCD056A3ED59992A0AC96C9D0D40E490F8596B07DCA9B60E606B67223867B061D9D0EB2 |
Malicious: | false |
Reputation: | high, very likely benign file |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 163891 |
Entropy (8bit): | 5.55061820245277 |
Encrypted: | false |
SSDEEP: | 3072:S0eiNiuzs8v4HHKWY8s1BgP4IDQ9GURWu8zylA/u8PemUPhDlaY/ADiZ65LpK629:S0eMhzvwHHKWY8s1BgP4IDQ9GURWu8UD |
MD5: | 0282D5C4C6038FCEB2FF8607EDAC81A4 |
SHA1: | 62EBF05C33F8A3115C208BB4D5CE9B38F6D06447 |
SHA-256: | AAAF17E8ED9C8DD5D1B69C8BBB617600A768256654C076F760E09C6047973371 |
SHA-512: | E21D25042E41527B62E80F9D9B82B85B915BA6D0698B2FFA5D8D59115F764770D1DE2108B72D82D57BFB7A8D4406FB53D091C1DC6D8BD03BED3BCA29CEFD0EAD |
Malicious: | false |
Reputation: | moderate, very likely benign file |
URL: | "https://www.gstatic.com/og/_/js/k=og.qtm.en_US.oT1FwJRCVC4.2019.O/rt=j/m=q_dnp,qmd,qcwid,qapid,qald,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTvBynad-nWEy1xIb9j1w6LpLOF6IQ" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1424 |
Entropy (8bit): | 5.365419328271021 |
Encrypted: | false |
SSDEEP: | 24:kWfS+wwY1tw8ojCYN/RfF2TeJYahii1VI47U6OG0gdIiGbvvGbquZPlVOkD1ZGI9:ZfS+zYwRmOfFiOF6CangdIiGbvvGbqST |
MD5: | 213A219F4D2C9272C9960409FC210C50 |
SHA1: | 0365479D56A9DBC3F4BA134F7B3402FB98A212C7 |
SHA-256: | AABDECF8E56A9C5DC95DBB5C85F4E72EF73AA87AB610CE3B3052FA3945323479 |
SHA-512: | 5A445B51BF88EBC6F6687AB140ACC09C08FF1AC8FADC4950B363F8A85ED9E4880F7C5D90511CAB57581BE071D65D5200C75A0FD605794B5EDBD74D560032219F |
Malicious: | false |
Reputation: | moderate, very likely benign file |
URL: | "https://www.gstatic.com/_/mss/boq-one-google/_/js/k=boq-one-google.OneGoogleWidgetUi.en.kIS1Dzh9gxA.es5.O/ck=boq-one-google.OneGoogleWidgetUi.eZwJ0ZMkLQk.L.B1.O/am=EDDobg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aDfbSd,aW3pY,aurFic,byfTOb,e5qFLc,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pw70Gc,s39S4,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,appwidgetnoauthview/ed=1/wt=2/ujg=1/rs=AM-SdHuEVLgSwmI8-zX--qE8zZAW45r2qw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:QIhFr;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=bm51tf" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 775 |
Entropy (8bit): | 5.119622264488485 |
Encrypted: | false |
SSDEEP: | 24:y9w6UIgPws1ihihBHslgT9lCuABuoB7HHHHHHHYqmffffffo:LVlwUiEhKlgZ01BuSEqmffffffo |
MD5: | D5328D5D22FB5A0BB9E64E49F88B166F |
SHA1: | 2A816E814F548BBEC9BCD7023D57A22A1D97B6A5 |
SHA-256: | 1260B093F27D3E5D89FEC270A6E3F57CF029C1FAAC18B5D7203AD51051C2AB4D |
SHA-512: | 753992156A9D03FB8EE2F80FCE87401208D21EDD63792AD2F791DEA664084D2852036B2170BB2979CBA4530A93B9C32C96984884CDAF1C301C37B222A6D696E9 |
Malicious: | false |
Reputation: | low |
URL: | https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&oft=1&pgcl=20&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 137432 |
Entropy (8bit): | 7.981759932974614 |
Encrypted: | false |
SSDEEP: | 3072:SWkkEsWBwvkw/2i4fhpATVmE6383x4L6EWL3UQ7lE7sPE:SVAwwswerUv3S4nhdPE |
MD5: | 387ED93F42803B1EC6697E3B57FBCEF0 |
SHA1: | 2EA8A5BFBF99144BD0EBAEBE60AC35406A8B613E |
SHA-256: | 982AAC952E2C938BD55550D0409ECE5F4430D38F370161D8318678FA25316587 |
SHA-512: | 7C90F69A53E49BAD03C4CEFD9868B4C4BA145E5738218E8C445FF6AE5347153E3A2F2B918CBE184B0366AFD53B984634D2894FEA6F31A4603E58CCB6BFA5C625 |
Malicious: | false |
Reputation: | moderate, very likely benign file |
URL: | https://ssl.gstatic.com/gb/images/sprites/p_2x_387ed93f4280.png |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 29 |
Entropy (8bit): | 3.9353986674667634 |
Encrypted: | false |
SSDEEP: | 3:VQAOx/1n:VQAOd1n |
MD5: | 6FED308183D5DFC421602548615204AF |
SHA1: | 0A3F484AAA41A60970BA92A9AC13523A1D79B4D5 |
SHA-256: | 4B8288C468BCFFF9B23B2A5FF38B58087CD8A6263315899DD3E249A3F7D4AB2D |
SHA-512: | A2F7627379F24FEC8DC2C472A9200F6736147172D36A77D71C7C1916C0F8BDD843E36E70D43B5DC5FAABAE8FDD01DD088D389D8AE56ED1F591101F09135D02F5 |
Malicious: | false |
URL: | https://www.google.com/async/newtab_promos |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 190128 |
Entropy (8bit): | 5.46262888843442 |
Encrypted: | false |
SSDEEP: | 3072:hAVyndZwj8remaLn9pgncCK1yrjRbC7lqUy+LPMP8eu:Xfl+DMcCfU7lPyb8eu |
MD5: | ECE5A05F800D0B5A4D49E592F97D6221 |
SHA1: | 36D04CCC18AF2086B8AF97960598EACB47C64555 |
SHA-256: | 91462491133671ACCA6E3544D55A3B0AA37EA37EFBB4B99A5BE0BC0659803EA7 |
SHA-512: | DB4FFCF8710AC0E2F1869345C8DDAD65F351694579AC3FD30CDECD5C9E5A677E6EFBFC2DAF0EA5589A658CB14BB9D772E9AC6DF3A0FEC9A9391660B835B32D68 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-one-google/_/js/k=boq-one-google.OneGoogleWidgetUi.en.kIS1Dzh9gxA.es5.O/am=EDDobg/d=1/excm=_b,_tp,appwidgetnoauthview/ed=1/dg=0/wt=2/ujg=1/rs=AM-SdHuyThiH5O_IWHh9JvmbKtpAOdwOgg/m=_b,_tp" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3505 |
Entropy (8bit): | 5.548487647979353 |
Encrypted: | false |
SSDEEP: | 96:8jibBNyKARx/7Bz+gtBF6fb6gRFrYFxUgzx:sibg7N7ITvs9 |
MD5: | 91FCA5681E4B2B65D9EC02DB312FDECE |
SHA1: | 78A6603F175119DDC4FECE015326F336D70F0139 |
SHA-256: | CB0D00367507EAD438F60A2DF6C68C8C03E06C9787D346883E0DBC1B57648465 |
SHA-512: | 38868DDD1D0D0BD0514E1475951DC57CF90181DA601229EC77CA9CD66B84842AEAC6C6AC86770EEEFCD147C93B0F55F17C20D4DC4952237C435F0BC7AC8F6C20 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-one-google/_/js/k=boq-one-google.OneGoogleWidgetUi.en.kIS1Dzh9gxA.es5.O/ck=boq-one-google.OneGoogleWidgetUi.eZwJ0ZMkLQk.L.B1.O/am=EDDobg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aDfbSd,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pw70Gc,s39S4,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,appwidgetnoauthview/ed=1/wt=2/ujg=1/rs=AM-SdHuEVLgSwmI8-zX--qE8zZAW45r2qw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:QIhFr;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 265366 |
Entropy (8bit): | 5.478763291765063 |
Encrypted: | false |
SSDEEP: | 3072:iSGf2afpjAIYvCLlCEg7jzClrmSx8ClPupqrk2Ec:rifpANRWlr9SU4Xc |
MD5: | 93851C21FBAD0812277315A6CA39D9A1 |
SHA1: | 830D5F42F1E43FC85E07224272F35DF4DEAC55A5 |
SHA-256: | 2BBA1E47C72CC7EE6E3D5434C1D527AF8F093931D7097129DB2FF71B0CFD638C |
SHA-512: | 86775FC51E3E54CFEAE306274744C6FA5C1EA8787A5890FBB5BEFD3791A48CA95D4D57F73BFB1864DAC09C7FFA2EC9BB0B38478F686EADE607EB8EF3260D4846 |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-one-google/_/js/k=boq-one-google.OneGoogleWidgetUi.en.kIS1Dzh9gxA.es5.O/ck=boq-one-google.OneGoogleWidgetUi.eZwJ0ZMkLQk.L.B1.O/am=EDDobg/d=1/exm=_b,_tp/excm=_b,_tp,appwidgetnoauthview/ed=1/wt=2/ujg=1/rs=AM-SdHuEVLgSwmI8-zX--qE8zZAW45r2qw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:QIhFr;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,GkRiKb,e5qFLc,IZT63,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,aDfbSd,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,s39S4,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,pw70Gc,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,QIhFr,ovKuLd,hKSk3e,yDVVkb,hc6Ubd,SpsfSb,KG2eXe,Z5uLle,MdUzUe,VwDzFe,zbML3c,A7fCU,zr1jrb,Uas9Hd,pjICDe" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 139819 |
Entropy (8bit): | 5.441077799178466 |
Encrypted: | false |
SSDEEP: | 1536:yMRA4abKJXjPInWWt/usD98kiHLnRA0zqevcZInhaV+trbbbhYxvdU:eRKJou8TMyeR0shCO |
MD5: | 820B0EEE09948938286057F1F615AC83 |
SHA1: | 7751130C42FA76F65280C112B34575386453D8F7 |
SHA-256: | 668D916252BB4DD53D3736A1D9C43E626A4B6CC4C010E7DA93AB0B45D16B05DA |
SHA-512: | 19E1190B1961FAD66F098D75316BA8D8CAB1F6955460314EA9DEB29526A0CE088A62D66A4724C7991F7088385FB4A7AB7B668ACE33331E6A1E670407F5317FAD |
Malicious: | false |
URL: | https://www.google.com/async/newtab_ogb?hl=en-US&async=fixed:0 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 137432 |
Entropy (8bit): | 7.981759932974614 |
Encrypted: | false |
SSDEEP: | 3072:SWkkEsWBwvkw/2i4fhpATVmE6383x4L6EWL3UQ7lE7sPE:SVAwwswerUv3S4nhdPE |
MD5: | 387ED93F42803B1EC6697E3B57FBCEF0 |
SHA1: | 2EA8A5BFBF99144BD0EBAEBE60AC35406A8B613E |
SHA-256: | 982AAC952E2C938BD55550D0409ECE5F4430D38F370161D8318678FA25316587 |
SHA-512: | 7C90F69A53E49BAD03C4CEFD9868B4C4BA145E5738218E8C445FF6AE5347153E3A2F2B918CBE184B0366AFD53B984634D2894FEA6F31A4603E58CCB6BFA5C625 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 15344 |
Entropy (8bit): | 7.984625225844861 |
Encrypted: | false |
SSDEEP: | 384:ctE5KIuhGO+DSdXwye6i9Xm81v4vMHCbppV0pr3Ll9/w:cqrVO++tw/9CICFbQLlxw |
MD5: | 5D4AEB4E5F5EF754E307D7FFAEF688BD |
SHA1: | 06DB651CDF354C64A7383EA9C77024EF4FB4CEF8 |
SHA-256: | 3E253B66056519AA065B00A453BAC37AC5ED8F3E6FE7B542E93A9DCDCC11D0BC |
SHA-512: | 7EB7C301DF79D35A6A521FAE9D3DCCC0A695D3480B4D34C7D262DD0C67ABEC8437ED40E2920625E98AAEAFBA1D908DEC69C3B07494EC7C29307DE49E91C2EF48 |
Malicious: | false |
URL: | https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3572 |
Entropy (8bit): | 5.150542995862274 |
Encrypted: | false |
SSDEEP: | 96:RJYrcoiktfqqMghOKTEzNx8BSIMw591g8IOl8u8i8DF+Ks:wkktfqqMghxlg8Ig8u78D2 |
MD5: | 88BC8C86A83B9BD8EDA6FDF225CDC8DD |
SHA1: | 473D84930F027A365278C15282725A69721F4B18 |
SHA-256: | 47D960E93D9E7AB4C760A09DA0AA5E6549A8355AD5C0BA8476D4269F4FBDB354 |
SHA-512: | 3BC486D908160D297AD3028C27177A9C41A1D87EF29A456058265FAF74A1DA069D3B0578F05A79F866C2DB752D5E0E42D179158BD62251D4FDA601A7CBA7CC4D |
Malicious: | false |
URL: | "https://www.gstatic.com/og/_/ss/k=og.qtm.T5bVtXo12IQ.L.W.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTssrVR1lBtzoy_MObv1DSp-vWG36A" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1660 |
Entropy (8bit): | 4.301517070642596 |
Encrypted: | false |
SSDEEP: | 48:A/S9VU5IDhYYmMqPLmumtrYW2DyZ/jTq9J:A2VUSDhYYmM5trYFw/jmD |
MD5: | 554640F465EB3ED903B543DAE0A1BCAC |
SHA1: | E0E6E2C8939008217EB76A3B3282CA75F3DC401A |
SHA-256: | 99BF4AA403643A6D41C028E5DB29C79C17CBC815B3E10CD5C6B8F90567A03E52 |
SHA-512: | 462198E2B69F72F1DC9743D0EA5EED7974A035F24600AA1C2DE0211D978FF0795370560CBF274CCC82C8AC97DC3706C753168D4B90B0B81AE84CC922C055CFF0 |
Malicious: | false |
URL: | https://www.gstatic.com/images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 121628 |
Entropy (8bit): | 5.506662476672723 |
Encrypted: | false |
SSDEEP: | 3072:QI9yvwslCsrCF9f/U2Dj3Fkk7rEehA5L1kx:l9ygsrieDkVaL1kx |
MD5: | F46ACD807A10216E6EEE8EA51E0F14D6 |
SHA1: | 4702F47070F7046689432DCF605F11364BC0FBED |
SHA-256: | D6B84873D27E7E83CF5184AAEF778F1CCB896467576CD8AF2CAD09B31B3C6086 |
SHA-512: | 811263DC85C8DAA3A6E5D8A002CCCB953CD01E6A77797109835FE8B07CABE0DEE7EB126274E84266229880A90782B3B016BA034E31F0E3B259BF9E66CA797028 |
Malicious: | false |
URL: | "https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1555 |
Entropy (8bit): | 5.249530958699059 |
Encrypted: | false |
SSDEEP: | 24:hY6svN/6zSU6pedQf3Zvcn1BZdAe1nCr1LTHI5z1sW:3qN/2+pUAew85zf |
MD5: | FBE36EB2EECF1B90451A3A72701E49D2 |
SHA1: | AE56EA57C52D1153CEC33CEF91CF935D2D3AF14D |
SHA-256: | E8F2DED5D74C0EE5F427A20B6715E65BC79ED5C4FC67FB00D89005515C8EFE63 |
SHA-512: | 7B1FD6CF34C26AF2436AF61A1DE16C9DBFB4C43579A9499F4852A7848F873BAC15BEEEA6124CF17F46A9F5DD632162364E0EC120ACA5F65E7C5615FF178A248F |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 18835 |
Entropy (8bit): | 5.412596337812619 |
Encrypted: | false |
SSDEEP: | 384:Fka3u8U7usfDsK/pD5DT8jZPjUOSslZ0p9NKwFNMb8XLUJiVW79QbQPSkMpQO:hU7usfDsK/pD5DT8jZPwZXUWAJicQbQW |
MD5: | BA095D761063DF6A9CED92ED2318C1F6 |
SHA1: | BBEE942F428AD8D26B2B84653700A0D1AB2008B5 |
SHA-256: | 3758F898639B1005289E3BA365A9FED0EE3051E53D7B29AEB2E3435B1EACD6E1 |
SHA-512: | 5DD9C6E7B929AC7A9984AAB29076C5339012FF8E900133CB2C099D3693E073D47B2B9199EB8561DE93859FCD674841AC0F9485FCAE10532D60AAF2B0F1C8DD1A |
Malicious: | false |
URL: | "https://www.gstatic.com/_/mss/boq-one-google/_/js/k=boq-one-google.OneGoogleWidgetUi.en.kIS1Dzh9gxA.es5.O/ck=boq-one-google.OneGoogleWidgetUi.eZwJ0ZMkLQk.L.B1.O/am=EDDobg/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aDfbSd,aW3pY,aurFic,byfTOb,e5qFLc,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pw70Gc,s39S4,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,appwidgetnoauthview/ed=1/wt=2/ujg=1/rs=AM-SdHuEVLgSwmI8-zX--qE8zZAW45r2qw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:QIhFr;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=RqjULd" |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 53715 |
Entropy (8bit): | 5.740913584945236 |
Encrypted: | false |
SSDEEP: | 768:t7EghhvpuIEJ1C/C52aFe04bl5SITuofIBQzFJ/N4YxhAyvO:w1CdT/VfI81vx/vO |
MD5: | 7CB0126CB5D8F3009CA102D09A88A73F |
SHA1: | 6CAFBD0A4DD018853919766606CBF6D2A1751394 |
SHA-256: | C43A40E0E24A68DC49A18F1579E7BC34BFAFB24AAD0404FF969847AF501824C3 |
SHA-512: | 2D68C0854CEF92969D47AD7870D252680062A4BE487699D331C809523D759C4A8E85C0158C6F959C2297EF415094EE04510E3CA08DD0C467E0108D4E941D8791 |
Malicious: | false |
URL: | https://ogs.google.com/widget/app/so?awwd=1&gm3=1&origin=chrome-untrusted%3A%2F%2Fnew-tab-page&origin=chrome%3A%2F%2Fnew-tab-page&cn=app&pid=1&spid=243&hl=en |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 19 |
Entropy (8bit): | 3.6818808028034042 |
Encrypted: | false |
SSDEEP: | 3:VQRWN:VQRWN |
MD5: | 9FAE2B6737B98261777262B14B586F28 |
SHA1: | 79C894898B2CED39335EB0003C18B27AA8C6DDCD |
SHA-256: | F55F6B26E77DF6647E544AE5B45892DCEA380B7A6D2BFAA1E023EA112CE81E73 |
SHA-512: | 29CB8E5462B15488B0C6D5FC1673E273FB47841E9C76A4AA5415CA93CEA31B87052BBA511680F2BC9E6543A29F1BBFBA9D06FCC08F5C65BEB115EE7A9E5EFF36 |
Malicious: | false |
URL: | https://www.google.com/async/ddljson?async=ntp:2 |
Preview: |
File type: | |
Entropy (8bit): | 7.275451290694234 |
TrID: |
|
File name: | DEKONT.exe |
File size: | 891'904 bytes |
MD5: | c766a45151c2a9b0879095062dc566fe |
SHA1: | c9587ac978a75933670dd94c3766e635afeed2e8 |
SHA256: | d46066c4c4bd510c11a5d4ee6e23ff0e2fdb7d5d716aceb9671caa3e679800b1 |
SHA512: | a4739518995fc074d493bfe392d752f130353b47704d20bed767283dc46996b09bbc15e31ce0570aca33d2b9d1790c462895c651ae7c751edc3c4cfa464fc67e |
SSDEEP: | 12288:M+DbgRB778Qep6Yqvc8kSUfc69rROSI6nlFu6kOnnOebN:lgRBIRKc8kSUfHHI56kx0 |
TLSH: | 98155DD1F1908D96EC6B4AF1AD2AA83015E37D9D54A4C10C5ADDBB5B36B3342209FE0F |
File Content Preview: | MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L...L.................0..............*... ...@....@.. ....................................@................................ |
Icon Hash: | aea4accc16a3d9be |
Entrypoint: | 0x492ab6 |
Entrypoint Section: | .text |
Digitally signed: | false |
Imagebase: | 0x400000 |
Subsystem: | windows gui |
Image File Characteristics: | EXECUTABLE_IMAGE, 32BIT_MACHINE |
DLL Characteristics: | DYNAMIC_BASE, NX_COMPAT, NO_SEH, TERMINAL_SERVER_AWARE |
Time Stamp: | 0xEFE3884C [Sun Jul 14 18:49:48 2097 UTC] |
TLS Callbacks: | |
CLR (.Net) Version: | |
OS Version Major: | 4 |
OS Version Minor: | 0 |
File Version Major: | 4 |
File Version Minor: | 0 |
Subsystem Version Major: | 4 |
Subsystem Version Minor: | 0 |
Import Hash: | f34d5f2d4577ed6d9ceec516c1f5a744 |
Instruction |
---|
jmp dword ptr [00402000h] |
inc ebx |
aaa |
xor eax, 52384335h |
pop edx |
dec eax |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [edx+39h], cl |
inc ebp |
pop edx |
dec eax |
xor eax, 34383234h |
xor al, 35h |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
add byte ptr [eax], al |
Name | Virtual Address | Virtual Size | Is in Section |
---|---|---|---|
IMAGE_DIRECTORY_ENTRY_EXPORT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_IMPORT | 0x92a61 | 0x4f | .text |
IMAGE_DIRECTORY_ENTRY_RESOURCE | 0x94000 | 0x48a94 | .rsrc |
IMAGE_DIRECTORY_ENTRY_EXCEPTION | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_SECURITY | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_BASERELOC | 0xde000 | 0xc | .reloc |
IMAGE_DIRECTORY_ENTRY_DEBUG | 0x90b3c | 0x70 | .text |
IMAGE_DIRECTORY_ENTRY_COPYRIGHT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_GLOBALPTR | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_TLS | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_IAT | 0x2000 | 0x8 | .text |
IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT | 0x0 | 0x0 | |
IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR | 0x2008 | 0x48 | .text |
IMAGE_DIRECTORY_ENTRY_RESERVED | 0x0 | 0x0 |
Name | Virtual Address | Virtual Size | Raw Size | MD5 | Xored PE | ZLIB Complexity | File Type | Entropy | Characteristics |
---|---|---|---|---|---|---|---|---|---|
.text | 0x2000 | 0x90adc | 0x90c00 | a7540a1825dccb44d57e7fa6953d684a | False | 0.9165536620250432 | OpenPGP Secret Key | 7.885218985687349 | IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ |
.rsrc | 0x94000 | 0x48a94 | 0x48c00 | 03a92fd32ef4482058308b194a7a731a | False | 0.0632215152491409 | data | 4.771696286118431 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ |
.reloc | 0xde000 | 0xc | 0x200 | 7bcd85fd293844bab26a2009ff0560b4 | False | 0.044921875 | data | 0.10191042566270775 | IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ |
Name | RVA | Size | Type | Language | Country | ZLIB Complexity |
---|---|---|---|---|---|---|
RT_ICON | 0x942e0 | 0x668 | Device independent bitmap graphic, 48 x 96 x 4, image size 0 | 0.1798780487804878 | ||
RT_ICON | 0x94948 | 0x2e8 | Device independent bitmap graphic, 32 x 64 x 4, image size 0 | 0.2513440860215054 | ||
RT_ICON | 0x94c30 | 0x128 | Device independent bitmap graphic, 16 x 32 x 4, image size 0 | 0.3918918918918919 | ||
RT_ICON | 0x94d58 | 0xea8 | Device independent bitmap graphic, 48 x 96 x 8, image size 0 | 0.3200959488272921 | ||
RT_ICON | 0x95c00 | 0x8a8 | Device independent bitmap graphic, 32 x 64 x 8, image size 0 | 0.33664259927797835 | ||
RT_ICON | 0x964a8 | 0x568 | Device independent bitmap graphic, 16 x 32 x 8, image size 0 | 0.2622832369942196 | ||
RT_ICON | 0x96a10 | 0x42028 | Device independent bitmap graphic, 256 x 512 x 32, image size 0 | 0.04393141403083114 | ||
RT_ICON | 0xd8a38 | 0x25a8 | Device independent bitmap graphic, 48 x 96 x 32, image size 0 | 0.18786307053941909 | ||
RT_ICON | 0xdafe0 | 0x10a8 | Device independent bitmap graphic, 32 x 64 x 32, image size 0 | 0.2453095684803002 | ||
RT_ICON | 0xdc088 | 0x468 | Device independent bitmap graphic, 16 x 32 x 32, image size 0 | 0.3484042553191489 | ||
RT_GROUP_ICON | 0xdc4f0 | 0x92 | data | 0.5753424657534246 | ||
RT_VERSION | 0xdc584 | 0x324 | data | 0.43283582089552236 | ||
RT_MANIFEST | 0xdc8a8 | 0x1ea | XML 1.0 document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators | 0.5489795918367347 |
DLL | Import |
---|---|
mscoree.dll | _CorExeMain |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 30, 2024 12:51:15.042556047 CEST | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:15.042557001 CEST | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:15.370673895 CEST | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:20.030128002 CEST | 49713 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:20.273825884 CEST | 80 | 49713 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:20.273894072 CEST | 49713 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:20.274347067 CEST | 49713 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:20.518069029 CEST | 80 | 49713 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:21.526313066 CEST | 80 | 49713 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:21.532094002 CEST | 49713 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:21.775975943 CEST | 80 | 49713 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:22.169831038 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.169919014 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.170002937 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.172671080 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.172727108 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.383172035 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.383261919 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.387142897 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.387157917 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.387607098 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.542752981 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.655478001 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.696151018 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.756115913 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.756198883 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.756658077 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.779031992 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.779125929 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.779169083 CEST | 49714 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:22.779189110 CEST | 443 | 49714 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:22.819672108 CEST | 80 | 49713 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:23.042525053 CEST | 49713 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:23.162062883 CEST | 49715 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:23.162111044 CEST | 443 | 49715 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:23.162343979 CEST | 49715 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:23.375461102 CEST | 49715 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:23.375498056 CEST | 443 | 49715 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:23.594944954 CEST | 443 | 49715 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:23.595021963 CEST | 49715 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:23.602633953 CEST | 49715 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:23.602654934 CEST | 443 | 49715 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:23.602982998 CEST | 443 | 49715 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:23.650068998 CEST | 49715 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:23.696090937 CEST | 49715 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:23.744127035 CEST | 443 | 49715 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:23.749830008 CEST | 49718 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:23.749866009 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:23.749967098 CEST | 49718 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:23.750890017 CEST | 49718 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:23.750910997 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:23.847408056 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.847443104 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:23.847548962 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.847599983 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.847640991 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:23.847860098 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.847886086 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.847970963 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:23.848069906 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.848082066 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.848120928 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:23.848170042 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.848349094 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.848362923 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:23.848625898 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.848680019 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:23.848910093 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.848922968 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:23.849248886 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:23.849266052 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:23.954523087 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:23.954611063 CEST | 49718 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:23.957348108 CEST | 49718 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:23.957362890 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:23.957683086 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:23.959125996 CEST | 49718 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:24.000119925 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:24.048036098 CEST | 443 | 49715 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:24.048141956 CEST | 443 | 49715 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:24.048211098 CEST | 49715 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:24.054088116 CEST | 49715 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:24.058571100 CEST | 49713 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:24.066947937 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.067262888 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.067296982 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.067922115 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.068075895 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.068090916 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.068397045 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.068455935 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.068686962 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.069145918 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.069164991 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.069744110 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.069884062 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.069905043 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.070008993 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.070064068 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.070307970 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.070377111 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.071086884 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.071150064 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.071472883 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.071541071 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.071561098 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.071568012 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.073112011 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.073132992 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.075599909 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.075789928 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.075804949 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.076993942 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.077050924 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.078656912 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.078794003 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.078856945 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.078862906 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.112118006 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.151437044 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.151449919 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.151468992 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.151494980 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.151505947 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.152892113 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:24.152970076 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:24.153039932 CEST | 49718 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:24.154207945 CEST | 49718 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:24.154226065 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:24.154234886 CEST | 49718 | 443 | 192.168.2.6 | 23.221.246.93 |
Apr 30, 2024 12:51:24.154242039 CEST | 443 | 49718 | 23.221.246.93 | 192.168.2.6 |
Apr 30, 2024 12:51:24.292845011 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.292921066 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.292941093 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.293775082 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.293855906 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.296161890 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.296299934 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.296350002 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.298748970 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.298885107 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.298937082 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.302342892 CEST | 80 | 49713 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:24.309238911 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.309294939 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.309330940 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.309350967 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.309362888 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.309447050 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.315923929 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.315958977 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.315982103 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.315989971 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.316121101 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.322885990 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.322916985 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.322945118 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.322957993 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.323110104 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.329938889 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.330490112 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.336818933 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.336855888 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.336894035 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.336901903 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.336951017 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.346571922 CEST | 49725 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.346612930 CEST | 443 | 49725 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.348526001 CEST | 49726 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.348551035 CEST | 443 | 49726 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.350027084 CEST | 49724 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.350055933 CEST | 443 | 49724 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.408958912 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.409006119 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.409073114 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.409095049 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.409137964 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.412240028 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.412307024 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.419171095 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.419203997 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.419226885 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.419238091 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.419286013 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.426126957 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.426161051 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.426197052 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.426215887 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.426312923 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.433108091 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.433154106 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.433161974 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.433182001 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.433279037 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.440349102 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.440506935 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.447050095 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.447099924 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.447225094 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.447240114 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.447427988 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.453872919 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.453933954 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.453939915 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.453953028 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.454036951 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.460304976 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.466764927 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.466803074 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.466820955 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.466840029 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.466975927 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.473112106 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.479528904 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.479612112 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.479628086 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.483027935 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.483099937 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.483118057 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.489033937 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.489115953 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.489125967 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.508979082 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.509130001 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.509154081 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.511287928 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.511348963 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.511369944 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.516356945 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.516424894 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.516442060 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.520795107 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.520904064 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.520921946 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.525346041 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.525444031 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.525466919 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.530009985 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.530097961 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.530112982 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.534590960 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.534708023 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.534717083 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.539163113 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.539309978 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.539316893 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.543688059 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.543761015 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.543771982 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.548007965 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.548124075 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.548136950 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.554779053 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.554847956 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.554856062 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.559241056 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.559323072 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.559329987 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.559361935 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.559406042 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.563792944 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.568360090 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.568425894 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.568434000 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.572829008 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.572892904 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.572913885 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.572921038 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.572961092 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.577358007 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.581908941 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.581981897 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.582000971 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.582007885 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.582052946 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.586286068 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.590620041 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.590641975 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.590703964 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.590713024 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.590811014 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.595055103 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.599397898 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.599523067 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.599534988 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.599565029 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.599670887 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.603562117 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.607551098 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.607611895 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.607623100 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.609720945 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.609817982 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.609827042 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.613802910 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.613893032 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.613900900 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.617839098 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.617937088 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.617944956 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.620589018 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.620655060 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.620668888 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.623151064 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.623292923 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.623301029 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.625701904 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.625865936 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.625873089 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.628336906 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.628460884 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.628479004 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.630776882 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.630847931 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.630861044 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.633260965 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.633343935 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.633356094 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.635690928 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.635756016 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.635771036 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.638176918 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.638286114 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.638309002 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.640590906 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.640660048 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.640683889 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.644041061 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.644083977 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.644140005 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.644164085 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.644215107 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.646397114 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.646548033 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:24.646620035 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:24.752430916 CEST | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:24.752435923 CEST | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:25.054084063 CEST | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:25.884124994 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:25.951500893 CEST | 49723 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:25.951528072 CEST | 443 | 49723 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:26.122996092 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.123044968 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.123130083 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.127226114 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.127242088 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.335064888 CEST | 443 | 49706 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:26.335167885 CEST | 49706 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:26.443090916 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.443157911 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.449575901 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.449599981 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.450027943 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.467118025 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.467199087 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.467210054 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.467396021 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.512125015 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.568852901 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.568995953 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.569051027 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.569222927 CEST | 49727 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:26.569250107 CEST | 443 | 49727 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:26.814997911 CEST | 80 | 49713 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:26.819905043 CEST | 49732 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:26.819973946 CEST | 443 | 49732 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:26.820046902 CEST | 49732 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:26.820580006 CEST | 49732 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:26.820594072 CEST | 443 | 49732 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:27.030716896 CEST | 443 | 49732 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:27.033610106 CEST | 49732 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:27.033648014 CEST | 443 | 49732 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:27.057065010 CEST | 49713 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:27.283216000 CEST | 443 | 49732 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:27.283349991 CEST | 443 | 49732 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:27.283428907 CEST | 49732 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:27.283916950 CEST | 49732 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:27.287642956 CEST | 49713 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:27.289124012 CEST | 49733 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:27.344459057 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.344551086 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.344660997 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.344863892 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.344898939 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.531344891 CEST | 80 | 49733 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:27.531373024 CEST | 80 | 49713 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:27.531474113 CEST | 49733 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:27.531524897 CEST | 49713 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:27.531687021 CEST | 49733 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:27.562696934 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.563047886 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.563060999 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.564310074 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.564369917 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.565429926 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.565491915 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.565694094 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.565700054 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.743571043 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.765254974 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.765353918 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.765441895 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.765465021 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.765495062 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.765548944 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.765584946 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.765594006 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.765722990 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.771697998 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.773600101 CEST | 80 | 49733 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:27.774719000 CEST | 80 | 49733 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:27.776832104 CEST | 49735 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:27.776896954 CEST | 443 | 49735 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:27.777035952 CEST | 49735 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:27.777574062 CEST | 49735 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:27.777604103 CEST | 443 | 49735 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:27.778631926 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.778700113 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.778712034 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.785655975 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.785717010 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.785727024 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.792560101 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.792876005 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.792907953 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.853389025 CEST | 49733 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:27.853487015 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.864903927 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.867269039 CEST | 49736 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:27.867310047 CEST | 443 | 49736 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:27.867405891 CEST | 49736 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:27.867641926 CEST | 49736 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:27.867655993 CEST | 443 | 49736 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:27.868032932 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.868063927 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.868119001 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.868153095 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.868210077 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.875065088 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.883893967 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.883925915 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.883970022 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.884004116 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.884361029 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.891132116 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.897906065 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.897984982 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.898020029 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.898045063 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.898092031 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.904848099 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.911626101 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.911653996 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.911696911 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.911732912 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.911778927 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.917088032 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.924729109 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.924818993 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.924833059 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.924854994 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.924933910 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.931085110 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.937650919 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.937728882 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.937747002 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.937777042 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.937849045 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.944504023 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.950531006 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.950558901 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.950587034 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.950608015 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.950653076 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.966732979 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.970073938 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.970113039 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.970211029 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.970237970 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.970292091 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.974101067 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.980616093 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.980669022 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.980684996 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.980714083 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.980808973 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.986692905 CEST | 443 | 49735 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:27.987103939 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.988830090 CEST | 49735 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:27.988861084 CEST | 443 | 49735 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:27.993596077 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.993664026 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.993691921 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.999522924 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:27.999581099 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:27.999607086 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.005048990 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.005150080 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.005167961 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.005196095 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.005240917 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.010602951 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.016345978 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.016415119 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.016443014 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.021739960 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.021821022 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.021848917 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.024538994 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.024620056 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.024638891 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.029959917 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.030030012 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.030045986 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.035240889 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.035300016 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.035326958 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.039885998 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.039992094 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.040005922 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.044485092 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.044545889 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.044564009 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.048862934 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.048974037 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.048990011 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.053102970 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.053158998 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.053178072 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.057497025 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.057733059 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.057766914 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.065248013 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.065310955 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.065370083 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.065423012 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.065819025 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.069072962 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.073272943 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.073307037 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.073334932 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.073354959 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.073623896 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.076936007 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.078085899 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.078150034 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.078165054 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.080611944 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.080662012 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.080676079 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.083007097 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.083066940 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.083079100 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.083369017 CEST | 443 | 49736 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:28.083659887 CEST | 49736 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:28.083693027 CEST | 443 | 49736 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:28.084196091 CEST | 443 | 49736 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:28.084506035 CEST | 49736 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:28.084597111 CEST | 443 | 49736 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:28.085380077 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.085572958 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.085597038 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.087790012 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.087836981 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.087853909 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.090207100 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.090292931 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.090302944 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.090344906 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.090536118 CEST | 49734 | 443 | 192.168.2.6 | 142.250.191.142 |
Apr 30, 2024 12:51:28.090549946 CEST | 443 | 49734 | 142.250.191.142 | 192.168.2.6 |
Apr 30, 2024 12:51:28.150307894 CEST | 49736 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:28.465714931 CEST | 443 | 49735 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:28.465877056 CEST | 443 | 49735 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:28.467704058 CEST | 49735 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:29.857872009 CEST | 49735 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:30.090159893 CEST | 49737 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:30.332145929 CEST | 80 | 49737 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:30.332252026 CEST | 49737 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:30.336999893 CEST | 49737 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:30.579622984 CEST | 80 | 49737 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:30.580637932 CEST | 80 | 49737 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:30.582109928 CEST | 49738 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:30.582151890 CEST | 443 | 49738 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:30.582446098 CEST | 49738 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:30.582532883 CEST | 49738 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:30.582547903 CEST | 443 | 49738 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:30.623853922 CEST | 49737 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:31.800751925 CEST | 443 | 49738 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:31.808820963 CEST | 49738 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:31.808847904 CEST | 443 | 49738 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:32.262720108 CEST | 443 | 49738 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:32.262835026 CEST | 443 | 49738 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:32.262909889 CEST | 49738 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:34.675893068 CEST | 49738 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:34.759924889 CEST | 49737 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:34.760641098 CEST | 49739 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:34.823268890 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:34.823302984 CEST | 443 | 49740 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:34.823367119 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:34.823944092 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:34.823956013 CEST | 443 | 49740 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:35.002048969 CEST | 80 | 49737 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:35.002162933 CEST | 49737 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:35.002377987 CEST | 80 | 49739 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:35.002444029 CEST | 49739 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:35.002600908 CEST | 49739 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:35.135077953 CEST | 443 | 49740 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:35.135158062 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:35.136856079 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:35.136867046 CEST | 443 | 49740 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:35.137115002 CEST | 443 | 49740 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:35.167356968 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:35.171235085 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:35.171247005 CEST | 443 | 49740 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:35.175051928 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:35.216120005 CEST | 443 | 49740 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:35.244524002 CEST | 80 | 49739 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:35.272438049 CEST | 443 | 49740 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:35.273447990 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:35.273471117 CEST | 443 | 49740 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:35.273493052 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:35.273525953 CEST | 49740 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:35.519268036 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:35.519309044 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:35.519414902 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:35.520690918 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:35.520703077 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.081065893 CEST | 49706 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.083013058 CEST | 49706 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.085803032 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.085843086 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.085896969 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.086253881 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.086266041 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.176989079 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.177059889 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.178875923 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.178894043 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.179258108 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.234282017 CEST | 443 | 49706 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.234309912 CEST | 443 | 49706 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.244411945 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.245115042 CEST | 80 | 49739 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:36.246427059 CEST | 49745 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:36.246470928 CEST | 443 | 49745 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:36.246532917 CEST | 49745 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:36.246886969 CEST | 49745 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:36.246898890 CEST | 443 | 49745 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:36.250339985 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.292109966 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.302504063 CEST | 49739 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:36.393539906 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.393615007 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.410289049 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.410303116 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.410722971 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.410798073 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.411241055 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.411262989 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.411412954 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.455936909 CEST | 443 | 49745 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:36.456109047 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.457691908 CEST | 49745 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:36.457726955 CEST | 443 | 49745 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:36.754040003 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.754265070 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.754395008 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.754470110 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.754565954 CEST | 443 | 49744 | 173.222.162.64 | 192.168.2.6 |
Apr 30, 2024 12:51:36.754692078 CEST | 49744 | 443 | 192.168.2.6 | 173.222.162.64 |
Apr 30, 2024 12:51:36.800199032 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800285101 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800306082 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800328016 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800337076 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.800359011 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800384045 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.800390005 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800410986 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800437927 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.800443888 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800467014 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.800561905 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800621033 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.800626993 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800782919 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.800869942 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.817023039 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.817040920 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.817079067 CEST | 49741 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:51:36.817084074 CEST | 443 | 49741 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:51:36.935405016 CEST | 443 | 49745 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:36.935533047 CEST | 443 | 49745 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:36.935708046 CEST | 49745 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:36.936031103 CEST | 49745 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:36.963100910 CEST | 49739 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:36.967107058 CEST | 49747 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:37.206021070 CEST | 80 | 49739 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:37.207691908 CEST | 49739 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:37.209009886 CEST | 80 | 49747 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:37.211457014 CEST | 49747 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:37.213282108 CEST | 49747 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:37.455080986 CEST | 80 | 49747 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:37.455585003 CEST | 80 | 49747 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:37.456940889 CEST | 49748 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:37.457015991 CEST | 443 | 49748 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:37.457132101 CEST | 49748 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:37.457367897 CEST | 49748 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:37.457396030 CEST | 443 | 49748 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:37.556574106 CEST | 49747 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:37.665524960 CEST | 443 | 49748 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:37.676063061 CEST | 49748 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:37.676117897 CEST | 443 | 49748 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:37.918797970 CEST | 443 | 49748 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:37.918943882 CEST | 443 | 49748 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:37.919017076 CEST | 49748 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:37.920201063 CEST | 49748 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:37.930263996 CEST | 49747 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:37.931539059 CEST | 49749 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:38.070923090 CEST | 443 | 49736 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:38.071000099 CEST | 443 | 49736 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:38.071149111 CEST | 49736 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:38.105870962 CEST | 49736 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:51:38.105907917 CEST | 443 | 49736 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:51:38.172111988 CEST | 80 | 49747 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:38.172173977 CEST | 49747 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:38.176378965 CEST | 80 | 49749 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:38.176454067 CEST | 49749 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:38.176748037 CEST | 49749 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:38.421556950 CEST | 80 | 49749 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:38.422015905 CEST | 80 | 49749 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:38.434855938 CEST | 49750 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:38.434910059 CEST | 443 | 49750 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:38.435152054 CEST | 49750 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:38.435451984 CEST | 49750 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:38.435463905 CEST | 443 | 49750 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:38.462389946 CEST | 49749 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:38.645117044 CEST | 443 | 49750 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:38.646796942 CEST | 49750 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:38.646826029 CEST | 443 | 49750 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:38.898468018 CEST | 443 | 49750 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:38.898587942 CEST | 443 | 49750 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:38.898741961 CEST | 49750 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:38.899233103 CEST | 49750 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:38.902782917 CEST | 49749 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:38.903898001 CEST | 49751 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:39.147649050 CEST | 80 | 49751 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:39.147737026 CEST | 80 | 49749 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:39.147835970 CEST | 49749 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:39.147852898 CEST | 49751 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:39.148032904 CEST | 49751 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:39.391576052 CEST | 80 | 49751 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:39.392138004 CEST | 80 | 49751 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:39.393647909 CEST | 49752 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:39.393687963 CEST | 443 | 49752 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:39.393759966 CEST | 49752 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:39.394042015 CEST | 49752 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:39.394058943 CEST | 443 | 49752 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:39.446732998 CEST | 49751 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:39.600709915 CEST | 443 | 49752 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:39.649882078 CEST | 49752 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:39.653718948 CEST | 49752 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:39.653743029 CEST | 443 | 49752 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:39.856918097 CEST | 443 | 49752 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:39.857037067 CEST | 443 | 49752 | 172.67.177.134 | 192.168.2.6 |
Apr 30, 2024 12:51:39.857170105 CEST | 49752 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:40.796716928 CEST | 49752 | 443 | 192.168.2.6 | 172.67.177.134 |
Apr 30, 2024 12:51:40.924123049 CEST | 49751 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:41.061589003 CEST | 49753 | 443 | 192.168.2.6 | 172.67.169.18 |
Apr 30, 2024 12:51:41.061639071 CEST | 443 | 49753 | 172.67.169.18 | 192.168.2.6 |
Apr 30, 2024 12:51:41.061707973 CEST | 49753 | 443 | 192.168.2.6 | 172.67.169.18 |
Apr 30, 2024 12:51:41.062287092 CEST | 49753 | 443 | 192.168.2.6 | 172.67.169.18 |
Apr 30, 2024 12:51:41.062309980 CEST | 443 | 49753 | 172.67.169.18 | 192.168.2.6 |
Apr 30, 2024 12:51:41.167803049 CEST | 80 | 49751 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:51:41.167906046 CEST | 49751 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:51:41.278480053 CEST | 443 | 49753 | 172.67.169.18 | 192.168.2.6 |
Apr 30, 2024 12:51:41.278559923 CEST | 49753 | 443 | 192.168.2.6 | 172.67.169.18 |
Apr 30, 2024 12:51:41.285949945 CEST | 49753 | 443 | 192.168.2.6 | 172.67.169.18 |
Apr 30, 2024 12:51:41.285989046 CEST | 443 | 49753 | 172.67.169.18 | 192.168.2.6 |
Apr 30, 2024 12:51:41.286240101 CEST | 443 | 49753 | 172.67.169.18 | 192.168.2.6 |
Apr 30, 2024 12:51:41.288119078 CEST | 49753 | 443 | 192.168.2.6 | 172.67.169.18 |
Apr 30, 2024 12:51:41.332130909 CEST | 443 | 49753 | 172.67.169.18 | 192.168.2.6 |
Apr 30, 2024 12:51:47.923717022 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:47.923743963 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:47.923849106 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:47.930808067 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:47.930819035 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:48.252897024 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:48.253401995 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:48.256769896 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:48.256777048 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:48.260457993 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:48.262564898 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:48.262626886 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:48.262634039 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:48.262774944 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:48.308105946 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:48.364367008 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:48.364546061 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:51:48.364653111 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:48.364725113 CEST | 49754 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:51:48.364739895 CEST | 443 | 49754 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.303680897 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.303704977 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.303831100 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.304455042 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.304466963 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.627974033 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.628087997 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.630326986 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.630335093 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.630640030 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.632492065 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.632554054 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.632558107 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.632697105 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.676106930 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.733983994 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.734132051 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:09.734179020 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.734318018 CEST | 49755 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:09.734329939 CEST | 443 | 49755 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:15.115376949 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:15.115430117 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:15.115519047 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:15.115947962 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:15.115959883 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:15.732264042 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:15.732414961 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:15.734164000 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:15.734194040 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:15.734498978 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:15.740727901 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:15.784112930 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:16.338172913 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:16.338222027 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:16.338279963 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:16.338483095 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:16.338484049 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:16.338541985 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:16.338596106 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:16.338637114 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:16.338668108 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:16.341619968 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:16.341660023 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:16.341706991 CEST | 49756 | 443 | 192.168.2.6 | 40.68.123.157 |
Apr 30, 2024 12:52:16.341722965 CEST | 443 | 49756 | 40.68.123.157 | 192.168.2.6 |
Apr 30, 2024 12:52:20.260531902 CEST | 443 | 49753 | 172.67.169.18 | 192.168.2.6 |
Apr 30, 2024 12:52:20.260595083 CEST | 443 | 49753 | 172.67.169.18 | 192.168.2.6 |
Apr 30, 2024 12:52:20.260699034 CEST | 49753 | 443 | 192.168.2.6 | 172.67.169.18 |
Apr 30, 2024 12:52:20.265207052 CEST | 49753 | 443 | 192.168.2.6 | 172.67.169.18 |
Apr 30, 2024 12:52:28.723495960 CEST | 49758 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:52:28.723541975 CEST | 443 | 49758 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:52:28.723617077 CEST | 49758 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:52:28.723975897 CEST | 49758 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:52:28.723994970 CEST | 443 | 49758 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:52:28.937802076 CEST | 443 | 49758 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:52:28.938858986 CEST | 49758 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:52:28.938893080 CEST | 443 | 49758 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:52:28.939254999 CEST | 443 | 49758 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:52:28.939584017 CEST | 49758 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:52:28.939660072 CEST | 443 | 49758 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:52:28.984443903 CEST | 49758 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:52:32.774264097 CEST | 80 | 49733 | 132.226.8.169 | 192.168.2.6 |
Apr 30, 2024 12:52:32.774382114 CEST | 49733 | 80 | 192.168.2.6 | 132.226.8.169 |
Apr 30, 2024 12:52:38.994064093 CEST | 443 | 49758 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:52:38.994139910 CEST | 443 | 49758 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:52:38.994196892 CEST | 49758 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:52:40.105746984 CEST | 49758 | 443 | 192.168.2.6 | 142.250.191.196 |
Apr 30, 2024 12:52:40.105794907 CEST | 443 | 49758 | 142.250.191.196 | 192.168.2.6 |
Apr 30, 2024 12:52:40.572586060 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.572627068 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:40.572716951 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.573637009 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.573658943 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:40.885384083 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:40.885554075 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.889842987 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.889867067 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:40.890180111 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:40.892133951 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.892190933 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.892200947 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:40.892355919 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.940123081 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:40.994031906 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:40.994143009 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:52:40.994293928 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.994682074 CEST | 49760 | 443 | 192.168.2.6 | 20.25.241.18 |
Apr 30, 2024 12:52:40.994698048 CEST | 443 | 49760 | 20.25.241.18 | 192.168.2.6 |
Apr 30, 2024 12:54:02.921471119 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:02.921562910 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:02.921669006 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:02.922646999 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:02.922692060 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:03.238877058 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:03.239171028 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:04.007707119 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:04.007790089 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:04.008560896 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:04.081496000 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:04.296753883 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:04.296963930 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:04.296978951 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:04.297234058 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:04.340161085 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:04.400286913 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:04.400398016 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:04.400975943 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:04.402019024 CEST | 49762 | 443 | 192.168.2.6 | 52.159.127.243 |
Apr 30, 2024 12:54:04.402045012 CEST | 443 | 49762 | 52.159.127.243 | 192.168.2.6 |
Apr 30, 2024 12:54:40.575787067 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:40.575818062 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:40.575876951 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:40.576400995 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:40.576412916 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:40.791775942 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:40.792114973 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:40.792129040 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:40.792491913 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:40.792567015 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:40.793165922 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:40.793217897 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:40.794294119 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:40.794367075 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:40.794512987 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:40.794519901 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:40.962475061 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.086345911 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.086371899 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.086410046 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.086422920 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.093049049 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.093106985 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.093113899 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.099987030 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.100069046 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.100075006 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.106990099 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.107053995 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.107059956 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.113945007 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.113992929 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.113997936 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.120851040 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.120908022 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.120913029 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.127938032 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.127986908 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.127993107 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.185717106 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.185780048 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.185791969 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.189183950 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.189232111 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.189239025 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.196132898 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.196186066 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.196192026 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.203074932 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.203128099 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.203134060 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.210045099 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.210097075 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.210102081 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.217045069 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.217087030 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.217094898 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.217107058 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.217152119 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.223968983 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.224010944 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.224015951 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.230957985 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.230995893 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.231009960 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.231017113 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.231065989 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.237901926 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.244646072 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.244712114 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.244718075 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.247734070 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.247783899 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.247788906 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.253952980 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.254005909 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.254012108 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.260169029 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.260214090 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.260220051 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.266278028 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.266326904 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.266333103 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.272445917 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.272495985 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.272501945 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.278692961 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:54:41.278750896 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.308644056 CEST | 49763 | 443 | 192.168.2.6 | 142.250.191.110 |
Apr 30, 2024 12:54:41.308666945 CEST | 443 | 49763 | 142.250.191.110 | 192.168.2.6 |
Apr 30, 2024 12:55:13.728779078 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:13.728830099 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:13.728915930 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:13.729279995 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:13.729295969 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:13.956636906 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:13.957006931 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:13.957031965 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:13.957401037 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:13.957458019 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:13.958122015 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:13.958165884 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:13.960242987 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:13.960303068 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:13.960798025 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:13.960808992 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.040613890 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.171067953 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.171158075 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.171257019 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.171952009 CEST | 49772 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.171972036 CEST | 443 | 49772 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.173150063 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.173192978 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.173345089 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.173635960 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.173652887 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.386315107 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.386729002 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.386746883 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.387118101 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.387190104 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.387851954 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.387976885 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.388123035 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.388180017 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.388433933 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.388433933 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.388442039 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.436114073 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.493706942 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.627912045 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.628065109 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.628247023 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.629532099 CEST | 49773 | 443 | 192.168.2.6 | 142.250.190.46 |
Apr 30, 2024 12:55:14.629554033 CEST | 443 | 49773 | 142.250.190.46 | 192.168.2.6 |
Apr 30, 2024 12:55:14.735878944 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:14.735924959 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:14.741667986 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:14.742263079 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:14.742289066 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:14.955600023 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:14.955997944 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:14.956027031 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:14.956419945 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:14.956600904 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:14.957149982 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:14.957247972 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:14.957540035 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:14.957540035 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:14.957554102 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:14.957604885 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:15.135880947 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:15.135914087 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:15.172434092 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:15.172930956 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:15.172957897 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:15.175374985 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:15.176043034 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:15.176249981 CEST | 443 | 49774 | 142.250.190.142 | 192.168.2.6 |
Apr 30, 2024 12:55:15.176275969 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Apr 30, 2024 12:55:15.176358938 CEST | 49774 | 443 | 192.168.2.6 | 142.250.190.142 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 30, 2024 12:51:19.920742989 CEST | 57493 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:51:20.020931005 CEST | 53 | 57493 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:23.041224003 CEST | 55334 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:51:23.143068075 CEST | 53 | 55334 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:23.494771004 CEST | 53 | 51850 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:23.662693024 CEST | 53 | 62910 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:23.746314049 CEST | 59843 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:51:23.746484995 CEST | 54431 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:51:23.846384048 CEST | 53 | 54431 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:23.846422911 CEST | 53 | 59843 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:25.987968922 CEST | 53 | 62218 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:26.439548969 CEST | 53 | 57032 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:27.243199110 CEST | 64531 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:51:27.243340015 CEST | 53784 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:51:27.343672991 CEST | 53 | 64531 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:27.343750000 CEST | 53 | 53784 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:40.924001932 CEST | 63480 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:51:41.060626030 CEST | 53 | 63480 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:51:47.270186901 CEST | 53 | 53434 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:52:02.574738026 CEST | 63486 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:52:02.713462114 CEST | 53 | 63486 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:52:06.508513927 CEST | 53 | 62907 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:52:21.479098082 CEST | 60870 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:52:21.616179943 CEST | 53 | 60870 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:52:23.245182991 CEST | 53 | 54380 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:52:28.824914932 CEST | 53 | 54037 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:52:52.894026995 CEST | 53 | 50747 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:53:37.738742113 CEST | 53 | 59271 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:54:40.471832991 CEST | 62148 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:54:40.471832991 CEST | 65514 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:54:40.572756052 CEST | 53 | 62148 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:54:40.573374987 CEST | 53 | 65514 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:54:41.212436914 CEST | 53 | 55884 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:54:41.213732958 CEST | 53 | 49647 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:54:42.093759060 CEST | 53 | 60520 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:54:43.148250103 CEST | 53 | 62067 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:54:58.424700975 CEST | 53 | 58210 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:54:59.552587986 CEST | 138 | 138 | 192.168.2.6 | 192.168.2.255 |
Apr 30, 2024 12:55:13.626739979 CEST | 56732 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:55:13.627093077 CEST | 53514 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:55:13.727531910 CEST | 53 | 56732 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:55:13.727653027 CEST | 53 | 53514 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:55:14.633949041 CEST | 57626 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:55:14.633949041 CEST | 59699 | 53 | 192.168.2.6 | 1.1.1.1 |
Apr 30, 2024 12:55:14.734297037 CEST | 53 | 57626 | 1.1.1.1 | 192.168.2.6 |
Apr 30, 2024 12:55:14.734961033 CEST | 53 | 59699 | 1.1.1.1 | 192.168.2.6 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 30, 2024 12:51:19.920742989 CEST | 192.168.2.6 | 1.1.1.1 | 0xb332 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:51:23.041224003 CEST | 192.168.2.6 | 1.1.1.1 | 0x7db9 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:51:23.746314049 CEST | 192.168.2.6 | 1.1.1.1 | 0xd98e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:51:23.746484995 CEST | 192.168.2.6 | 1.1.1.1 | 0x4bac | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 30, 2024 12:51:27.243199110 CEST | 192.168.2.6 | 1.1.1.1 | 0x13d7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:51:27.243340015 CEST | 192.168.2.6 | 1.1.1.1 | 0x2841 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 30, 2024 12:51:40.924001932 CEST | 192.168.2.6 | 1.1.1.1 | 0x379a | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:52:02.574738026 CEST | 192.168.2.6 | 1.1.1.1 | 0x3ec8 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:52:21.479098082 CEST | 192.168.2.6 | 1.1.1.1 | 0xf03f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:54:40.471832991 CEST | 192.168.2.6 | 1.1.1.1 | 0x86e1 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:54:40.471832991 CEST | 192.168.2.6 | 1.1.1.1 | 0x1c14 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 30, 2024 12:55:13.626739979 CEST | 192.168.2.6 | 1.1.1.1 | 0xe6b5 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:55:13.627093077 CEST | 192.168.2.6 | 1.1.1.1 | 0xd4ef | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 30, 2024 12:55:14.633949041 CEST | 192.168.2.6 | 1.1.1.1 | 0x6daa | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 30, 2024 12:55:14.633949041 CEST | 192.168.2.6 | 1.1.1.1 | 0x96f5 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 30, 2024 12:51:20.020931005 CEST | 1.1.1.1 | 192.168.2.6 | 0xb332 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:20.020931005 CEST | 1.1.1.1 | 192.168.2.6 | 0xb332 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:20.020931005 CEST | 1.1.1.1 | 192.168.2.6 | 0xb332 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:20.020931005 CEST | 1.1.1.1 | 192.168.2.6 | 0xb332 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:20.020931005 CEST | 1.1.1.1 | 192.168.2.6 | 0xb332 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:20.020931005 CEST | 1.1.1.1 | 192.168.2.6 | 0xb332 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:23.143068075 CEST | 1.1.1.1 | 192.168.2.6 | 0x7db9 | No error (0) | 172.67.177.134 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:23.143068075 CEST | 1.1.1.1 | 192.168.2.6 | 0x7db9 | No error (0) | 104.21.67.152 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:23.846384048 CEST | 1.1.1.1 | 192.168.2.6 | 0x4bac | No error (0) | 65 | IN (0x0001) | false | |||
Apr 30, 2024 12:51:23.846422911 CEST | 1.1.1.1 | 192.168.2.6 | 0xd98e | No error (0) | 142.250.191.196 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:27.343672991 CEST | 1.1.1.1 | 192.168.2.6 | 0x13d7 | No error (0) | plus.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:27.343672991 CEST | 1.1.1.1 | 192.168.2.6 | 0x13d7 | No error (0) | 142.250.191.142 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:27.343750000 CEST | 1.1.1.1 | 192.168.2.6 | 0x2841 | No error (0) | plus.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:41.060626030 CEST | 1.1.1.1 | 192.168.2.6 | 0x379a | No error (0) | 172.67.169.18 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:51:41.060626030 CEST | 1.1.1.1 | 192.168.2.6 | 0x379a | No error (0) | 104.21.27.85 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:52:02.713462114 CEST | 1.1.1.1 | 192.168.2.6 | 0x3ec8 | No error (0) | 104.21.27.85 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:52:02.713462114 CEST | 1.1.1.1 | 192.168.2.6 | 0x3ec8 | No error (0) | 172.67.169.18 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:52:21.616179943 CEST | 1.1.1.1 | 192.168.2.6 | 0xf03f | No error (0) | 172.67.169.18 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:52:21.616179943 CEST | 1.1.1.1 | 192.168.2.6 | 0xf03f | No error (0) | 104.21.27.85 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:54:40.572756052 CEST | 1.1.1.1 | 192.168.2.6 | 0x86e1 | No error (0) | www3.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 30, 2024 12:54:40.572756052 CEST | 1.1.1.1 | 192.168.2.6 | 0x86e1 | No error (0) | 142.250.191.110 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:54:40.573374987 CEST | 1.1.1.1 | 192.168.2.6 | 0x1c14 | No error (0) | www3.l.google.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 30, 2024 12:55:13.727531910 CEST | 1.1.1.1 | 192.168.2.6 | 0xe6b5 | No error (0) | 142.250.190.46 | A (IP address) | IN (0x0001) | false | ||
Apr 30, 2024 12:55:14.734297037 CEST | 1.1.1.1 | 192.168.2.6 | 0x6daa | No error (0) | 142.250.190.142 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.6 | 49713 | 132.226.8.169 | 80 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 30, 2024 12:51:20.274347067 CEST | 151 | OUT | |
Apr 30, 2024 12:51:21.526313066 CEST | 321 | IN | |
Apr 30, 2024 12:51:21.532094002 CEST | 127 | OUT | |
Apr 30, 2024 12:51:22.819672108 CEST | 321 | IN | |
Apr 30, 2024 12:51:24.058571100 CEST | 127 | OUT | |
Apr 30, 2024 12:51:26.814997911 CEST | 321 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.6 | 49733 | 132.226.8.169 | 80 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 30, 2024 12:51:27.531687021 CEST | 127 | OUT | |
Apr 30, 2024 12:51:27.774719000 CEST | 321 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.6 | 49737 | 132.226.8.169 | 80 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 30, 2024 12:51:30.336999893 CEST | 151 | OUT | |
Apr 30, 2024 12:51:30.580637932 CEST | 321 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.6 | 49739 | 132.226.8.169 | 80 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 30, 2024 12:51:35.002600908 CEST | 151 | OUT | |
Apr 30, 2024 12:51:36.245115042 CEST | 321 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.6 | 49747 | 132.226.8.169 | 80 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 30, 2024 12:51:37.213282108 CEST | 151 | OUT | |
Apr 30, 2024 12:51:37.455585003 CEST | 321 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.6 | 49749 | 132.226.8.169 | 80 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 30, 2024 12:51:38.176748037 CEST | 151 | OUT | |
Apr 30, 2024 12:51:38.422015905 CEST | 321 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.6 | 49751 | 132.226.8.169 | 80 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 30, 2024 12:51:39.148032904 CEST | 151 | OUT | |
Apr 30, 2024 12:51:39.392138004 CEST | 321 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.6 | 49714 | 23.221.246.93 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:22 UTC | 161 | OUT | |
2024-04-30 10:51:22 UTC | 467 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.6 | 49715 | 172.67.177.134 | 443 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:23 UTC | 85 | OUT | |
2024-04-30 10:51:24 UTC | 697 | IN | |
2024-04-30 10:51:24 UTC | 366 | IN | |
2024-04-30 10:51:24 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.6 | 49718 | 23.221.246.93 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:23 UTC | 239 | OUT | |
2024-04-30 10:51:24 UTC | 870 | IN | |
2024-04-30 10:51:24 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.6 | 49726 | 142.250.191.196 | 443 | 6728 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:24 UTC | 603 | OUT | |
2024-04-30 10:51:24 UTC | 1703 | IN | |
2024-04-30 10:51:24 UTC | 525 | IN | |
2024-04-30 10:51:24 UTC | 264 | IN | |
2024-04-30 10:51:24 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.6 | 49725 | 142.250.191.196 | 443 | 6728 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:24 UTC | 353 | OUT | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 25 | IN | |
2024-04-30 10:51:24 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.6 | 49723 | 142.250.191.196 | 443 | 6728 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:24 UTC | 506 | OUT | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN | |
2024-04-30 10:51:24 UTC | 1479 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.6 | 49724 | 142.250.191.196 | 443 | 6728 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:24 UTC | 353 | OUT | |
2024-04-30 10:51:24 UTC | 1434 | IN | |
2024-04-30 10:51:24 UTC | 35 | IN | |
2024-04-30 10:51:24 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
7 | 192.168.2.6 | 49727 | 20.25.241.18 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:26 UTC | 71 | OUT | |
2024-04-30 10:51:26 UTC | 249 | OUT | |
2024-04-30 10:51:26 UTC | 1064 | OUT | |
2024-04-30 10:51:26 UTC | 218 | OUT | |
2024-04-30 10:51:26 UTC | 14 | IN | |
2024-04-30 10:51:26 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.6 | 49732 | 172.67.177.134 | 443 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:27 UTC | 61 | OUT | |
2024-04-30 10:51:27 UTC | 700 | IN | |
2024-04-30 10:51:27 UTC | 366 | IN | |
2024-04-30 10:51:27 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.6 | 49734 | 142.250.191.142 | 443 | 6728 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:27 UTC | 721 | OUT | |
2024-04-30 10:51:27 UTC | 914 | IN | |
2024-04-30 10:51:27 UTC | 341 | IN | |
2024-04-30 10:51:27 UTC | 1255 | IN | |
2024-04-30 10:51:27 UTC | 1255 | IN | |
2024-04-30 10:51:27 UTC | 1255 | IN | |
2024-04-30 10:51:27 UTC | 1255 | IN | |
2024-04-30 10:51:27 UTC | 1255 | IN | |
2024-04-30 10:51:27 UTC | 1255 | IN | |
2024-04-30 10:51:27 UTC | 1255 | IN | |
2024-04-30 10:51:27 UTC | 1255 | IN | |
2024-04-30 10:51:27 UTC | 1255 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.6 | 49735 | 172.67.177.134 | 443 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:27 UTC | 61 | OUT | |
2024-04-30 10:51:28 UTC | 695 | IN | |
2024-04-30 10:51:28 UTC | 366 | IN | |
2024-04-30 10:51:28 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.6 | 49738 | 172.67.177.134 | 443 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:31 UTC | 85 | OUT | |
2024-04-30 10:51:32 UTC | 701 | IN | |
2024-04-30 10:51:32 UTC | 366 | IN | |
2024-04-30 10:51:32 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
12 | 192.168.2.6 | 49740 | 20.25.241.18 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:35 UTC | 71 | OUT | |
2024-04-30 10:51:35 UTC | 249 | OUT | |
2024-04-30 10:51:35 UTC | 1064 | OUT | |
2024-04-30 10:51:35 UTC | 218 | OUT | |
2024-04-30 10:51:35 UTC | 14 | IN | |
2024-04-30 10:51:35 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
13 | 192.168.2.6 | 49741 | 40.68.123.157 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:36 UTC | 306 | OUT | |
2024-04-30 10:51:36 UTC | 560 | IN | |
2024-04-30 10:51:36 UTC | 15824 | IN | |
2024-04-30 10:51:36 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
14 | 192.168.2.6 | 49744 | 173.222.162.64 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:36 UTC | 2256 | OUT | |
2024-04-30 10:51:36 UTC | 1 | OUT | |
2024-04-30 10:51:36 UTC | 515 | OUT | |
2024-04-30 10:51:36 UTC | 479 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
15 | 192.168.2.6 | 49745 | 172.67.177.134 | 443 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:36 UTC | 85 | OUT | |
2024-04-30 10:51:36 UTC | 699 | IN | |
2024-04-30 10:51:36 UTC | 366 | IN | |
2024-04-30 10:51:36 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
16 | 192.168.2.6 | 49748 | 172.67.177.134 | 443 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:37 UTC | 61 | OUT | |
2024-04-30 10:51:37 UTC | 707 | IN | |
2024-04-30 10:51:37 UTC | 366 | IN | |
2024-04-30 10:51:37 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
17 | 192.168.2.6 | 49750 | 172.67.177.134 | 443 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:38 UTC | 85 | OUT | |
2024-04-30 10:51:38 UTC | 705 | IN | |
2024-04-30 10:51:38 UTC | 366 | IN | |
2024-04-30 10:51:38 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
18 | 192.168.2.6 | 49752 | 172.67.177.134 | 443 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:39 UTC | 85 | OUT | |
2024-04-30 10:51:39 UTC | 703 | IN | |
2024-04-30 10:51:39 UTC | 366 | IN | |
2024-04-30 10:51:39 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
19 | 192.168.2.6 | 49753 | 172.67.169.18 | 443 | 7100 | C:\Users\user\Desktop\DEKONT.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:41 UTC | 79 | OUT | |
2024-04-30 10:52:20 UTC | 733 | IN | |
2024-04-30 10:52:20 UTC | 15 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
20 | 192.168.2.6 | 49754 | 20.25.241.18 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:51:48 UTC | 71 | OUT | |
2024-04-30 10:51:48 UTC | 249 | OUT | |
2024-04-30 10:51:48 UTC | 1064 | OUT | |
2024-04-30 10:51:48 UTC | 218 | OUT | |
2024-04-30 10:51:48 UTC | 14 | IN | |
2024-04-30 10:51:48 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
21 | 192.168.2.6 | 49755 | 20.25.241.18 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:52:09 UTC | 71 | OUT | |
2024-04-30 10:52:09 UTC | 249 | OUT | |
2024-04-30 10:52:09 UTC | 1064 | OUT | |
2024-04-30 10:52:09 UTC | 218 | OUT | |
2024-04-30 10:52:09 UTC | 14 | IN | |
2024-04-30 10:52:09 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
22 | 192.168.2.6 | 49756 | 40.68.123.157 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:52:15 UTC | 306 | OUT | |
2024-04-30 10:52:16 UTC | 560 | IN | |
2024-04-30 10:52:16 UTC | 15824 | IN | |
2024-04-30 10:52:16 UTC | 9633 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
23 | 192.168.2.6 | 49760 | 20.25.241.18 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:52:40 UTC | 71 | OUT | |
2024-04-30 10:52:40 UTC | 249 | OUT | |
2024-04-30 10:52:40 UTC | 1064 | OUT | |
2024-04-30 10:52:40 UTC | 218 | OUT | |
2024-04-30 10:52:40 UTC | 14 | IN | |
2024-04-30 10:52:40 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
24 | 192.168.2.6 | 49762 | 52.159.127.243 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:54:04 UTC | 71 | OUT | |
2024-04-30 10:54:04 UTC | 249 | OUT | |
2024-04-30 10:54:04 UTC | 1064 | OUT | |
2024-04-30 10:54:04 UTC | 218 | OUT | |
2024-04-30 10:54:04 UTC | 14 | IN | |
2024-04-30 10:54:04 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
25 | 192.168.2.6 | 49763 | 142.250.191.110 | 443 | 6728 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-04-30 10:54:40 UTC | 852 | OUT | |
2024-04-30 10:54:41 UTC | 2490 | IN |