Windows
Analysis Report
attach_request_478000006439785.zip
Overview
General Information
Detection
Score: | 60 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64_ra
rundll32.exe (PID: 7140 cmdline:
C:\Windows \System32\ rundll32.e xe C:\Wind ows\System 32\shell32 .dll,SHCre ateLocalSe rverRunDll {9aa46009 -3ce0-458a -a354-7156 10a075e6} -Embedding MD5: EF3179D498793BF4234F708D3BE28633)
Acrobat.exe (PID: 6428 cmdline:
"C:\Progra m Files\Ad obe\Acroba t DC\Acrob at\Acrobat .exe" "C:\ Users\user \AppData\L ocal\Temp\ Temp1_atta ch_request _478000006 439785.zip \Aged Care Quality A nd Safety Commission _Payment R eview#0772 -.pdf" MD5: 24EAD1C46A47022347DC0F05F6EFBB8C) AcroCEF.exe (PID: 4264 cmdline:
"C:\Progra m Files\Ad obe\Acroba t DC\Acrob at\acrocef _1\AcroCEF .exe" --ba ckgroundco lor=167772 15 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE) AcroCEF.exe (PID: 6808 cmdline:
"C:\Progra m Files\Ad obe\Acroba t DC\Acrob at\acrocef _1\AcroCEF .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --log-seve rity=disab le --user- agent-prod uct="Reade rServices/ 23.6.20320 Chrome/10 5.0.0.0" - -lang=en-U S --log-fi le="C:\Pro gram Files \Adobe\Acr obat DC\Ac robat\acro cef_1\debu g.log" --m ojo-platfo rm-channel -handle=16 08 --field -trial-han dle=1596,i ,107415027 4701971354 4,87909842 1173180816 2,131072 - -disable-f eatures=Ba ckForwardC ache,Calcu lateNative WinOcclusi on,WinUseB rowserSpel lChecker / prefetch:8 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE)
chrome.exe (PID: 6088 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed --sing le-argumen t https:// qslprintin g.us22.lis t-manage.c om/track/c lick?u=a04 bf63252457 300eebd0f4 74&id=b79c b6befe&e=d fb5c8b714/ #/?/anitha .pal@agedc arequality .gov.au MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) chrome.exe (PID: 2312 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2056 --fi eld-trial- handle=201 6,i,148601 8253116122 347,563455 2884418498 544,262144 --disable -features= Optimizati onGuideMod elDownload ing,Optimi zationHint s,Optimiza tionHintsF etching,Op timization TargetPred iction /pr efetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
AV Detection |
---|
Source: | SlashNext: | ||
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: |
Source: | Virustotal: | Perma Link | ||
Source: | Virustotal: | Perma Link | ||
Source: | Virustotal: | Perma Link |
Phishing |
---|
Source: | LLM: | ||
Source: | LLM: |
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: |
Source: | JA3 fingerprint: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | File created: | Jump to behavior |
Source: | File created: | Jump to behavior |
Source: | Key opened: | Jump to behavior |
Source: | Process created: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: |
Source: | Window detected: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior |
Source: | Process information queried: | Jump to behavior |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | 1 Registry Run Keys / Startup Folder | 1 Process Injection | 1 Masquerading | OS Credential Dumping | 1 Process Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | 1 Registry Run Keys / Startup Folder | 1 Rundll32 | LSASS Memory | 1 System Information Discovery | Remote Desktop Protocol | Data from Removable Media | 4 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 1 Process Injection | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 5 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
5% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
1% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse | ||
0% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | SlashNext | Credential Stealing type: Phishing & Social Engineering | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
100% | Avira URL Cloud | malware | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
100% | Avira URL Cloud | malware | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
1% | Virustotal | Browse | ||
100% | Avira URL Cloud | malware | ||
0% | Avira URL Cloud | safe | ||
1% | Virustotal | Browse | ||
5% | Virustotal | Browse | ||
5% | Virustotal | Browse | ||
0% | Virustotal | Browse |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
ztyw.kensteg.com | 172.67.153.178 | true | false |
| unknown |
a.nel.cloudflare.com | 35.190.80.1 | true | false |
| unknown |
code.jquery.com | 151.101.130.137 | true | false |
| unknown |
challenges.cloudflare.com | 104.17.2.184 | true | false |
| unknown |
www.google.com | 142.250.184.228 | true | false |
| unknown |
cloudbyteit.co.za | 41.185.8.68 | true | false |
| unknown |
qslprinting.us22.list-manage.com | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
true |
| unknown | |
false | unknown | ||
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown | ||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
151.101.130.137 | code.jquery.com | United States | 54113 | FASTLYUS | false | |
104.17.3.184 | unknown | United States | 13335 | CLOUDFLARENETUS | false | |
41.185.8.68 | cloudbyteit.co.za | South Africa | 36943 | GridhostZA | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
172.67.153.178 | ztyw.kensteg.com | United States | 13335 | CLOUDFLARENETUS | false | |
35.190.80.1 | a.nel.cloudflare.com | United States | 15169 | GOOGLEUS | false | |
142.250.184.228 | www.google.com | United States | 15169 | GOOGLEUS | false | |
104.17.2.184 | challenges.cloudflare.com | United States | 13335 | CLOUDFLARENETUS | false |
IP |
---|
192.168.2.16 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1446952 |
Start date and time: | 2024-05-24 05:01:07 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 4m 22s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultwindowsinteractivecookbook.jbs |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 21 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Sample name: | attach_request_478000006439785.zip |
Detection: | MAL |
Classification: | mal60.phis.winZIP@33/65@18/9 |
EGA Information: | Failed |
HCA Information: |
|
Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, SIHClient.exe, SgrmBroker.exe, MoUsoCoreWorker.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 104.102.49.40, 142.250.186.99, 142.250.185.206, 64.233.166.84, 23.211.8.250, 34.104.35.123, 23.22.254.206, 52.202.204.11, 52.5.13.197, 54.227.187.23, 162.159.61.3, 172.64.41.3, 2.16.241.7, 2.16.241.13, 95.101.148.135, 93.184.221.240, 2.19.126.143, 2.19.126.149
- Excluded domains from analysis (whitelisted): e4578.dscg.akamaiedge.net, chrome.cloudflare-dns.com, slscr.update.microsoft.com, e4578.dscb.akamaiedge.net, e13829.x.akamaiedge.net, clientservices.googleapis.com, wu.azureedge.net, acroipm2.adobe.com, a1952.dscq.akamai.net, clients2.google.com, ssl-delivery.adobe.com.edgekey.net, a122.dscd.akamai.net, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, hlb.apr-52dd2-0.edgecastdns.net, swc.list-manage.com.edgekey.net, apps.identrust.com, wu-b-net.trafficmanager.net, fs.microsoft.com, identrust.edgesuite.net, accounts.google.com, ctldl.windowsupdate.com.delivery.microsoft.com, acroipm2.adobe.com.edgesuite.net, wu.ec.azureedge.net, ctldl.windowsupdate.com, p13n.adobe.io, fe3cr.delivery.mp.microsoft.com, ssl.adobe.com.edgekey.net, edgedl.me.gvt1.com, armmf.adobe.com, clients.l.google.com, geo2.adobe.com
- HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- Not all processes where analyzed, report is missing behavior information
Time | Type | Description |
---|---|---|
23:02:02 | API Interceptor |
Source | URL |
---|---|
Screenshot | https://qslprinting.us22.list-manage.com/track/click?u=a04bf63252457300eebd0f474&id=b79cb6befe&e=dfb5c8b714/#/?/anitha.pal@agedcarequality.gov.au |
Screenshot | https://qslprinting.us22.list-manage.com/track/click?u=a04bf63252457300eebd0f474&id=b79cb6befe&e=dfb5c8b714/#/?/anitha.pal@agedcarequality.gov.au |
Screenshot | https://qslprinting.us22.list-manage.com/track/click?u=a04bf63252457300eebd0f474&id=b79cb6befe&e=dfb5c8b714/#/?/anitha.pal@agedcarequality.gov.au |
Screenshot | https://qslprinting.us22.list-manage.com/track/click?u=a04bf63252457300eebd0f474&id=b79cb6befe&e=dfb5c8b714/#/?/anitha.pal@agedcarequality.gov.au |
Screenshot | https://qslprinting.us22.list-manage.com/track/click?u=a04bf63252457300eebd0f474&id=b79cb6befe&e=dfb5c8b714/#/?/anitha.pal@agedcarequality.gov.au |
Screenshot | https://qslprinting.us22.list-manage.com/track/click?u=a04bf63252457300eebd0f474&id=b79cb6befe&e=dfb5c8b714/#/?/anitha.pal@agedcarequality.gov.au |
Input | Output |
---|---|
URL: https://ztyw.kensteg.com/82jPIO/#Danitha.pal@agedcarequality.gov.au Model: Perplexity: mixtral-8x7b-instruct | { "loginform": false, "reasons": [ "The text does not contain any form fields for a username or password.", "The text does not mention any requirement for a user to enter a password.", "The text is focused on verifying the user's identity and distinguishing between human and robot activity, rather than logging in." ] } |
Verifying... CLOuOFLARE Attention: We are in the process of verifying and authenticating your identity. We've noticed unusual activity from pur network. This page checks if it's you, not a robot, sending the requests | |
URL: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/cr37t/0x4AAAAAAAXRTsOVR7YNTKTk/auto/normal Model: Perplexity: mixtral-8x7b-instruct | { "loginform": false, "reasons": [ "The text does not contain any input fields for a login form such as username or password fields.", "The text does not contain any submit button for a login form.", "The text is about verifying identity and not logging in." ] } |
Verifying... CLOuOFLARE Attention: We are in the process of verifying and authenticating your identity. We've noticed unusual activity from pur network. This page checks if it's you, not a robot, sending the requests | |
URL: https://ztyw.kensteg.com/82jPIO/#Danitha.pal@agedcarequality.gov.au Model: gpt-4o | ```json { "riskscore": 7, "reasons": "The JavaScript code contains base64 encoded content which is decoded and written to the document. This is a common technique used in malicious scripts to obfuscate their true purpose. Additionally, the decoded content includes hidden input fields with potentially sensitive data such as IP addresses and URLs, which could be used for malicious purposes such as phishing or data exfiltration." } |
document.write(decodeURIComponent(escape(atob('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 | |
URL: https://ztyw.kensteg.com/82jPIO/#Danitha.pal@agedcarequality.gov.au Model: gpt-4o | ```json { "riskscore": 7, "reasons": "The code includes a form submission that prevents the default action and sends data to a relative URL ('../lozxQrVxxMhOg6cw4HSXzmBzurwrmlx9yjGrOsiims8OcvuP49'). The response handling includes a redirect to a suspicious-looking URL if an error status is returned. This behavior is indicative of potential phishing or data exfiltration attempts." } |
turnstile.render('#cf', { sitekey: '0x4AAAAAAAXRTsOVR7YNTKTk', 'error-callback': CvTIybUiHn, callback: SocfBphGXP, }); function CvTIybUiHn() { turnstile.reset(); } function SocfBphGXP() { var yoqIpAEaPr = document.getElementById("bfAAxslZkD"); yoqIpAEaPr.onsubmit = function (event) { event.preventDefault(); }; document.getElementById("pagelink").value = '6Npnv'; var rKgVpRBDCQ = "../lozxQrVxxMhOg6cw4HSXzmBzurwrmlx9yjGrOsiims8OcvuP49"; fetch(rKgVpRBDCQ, { method: "POST", body: new FormData(yoqIpAEaPr) }).then(response => { return response.json(); }).then(data => { if(data['status'] == 'success'){ location.reload(); } if(data['status'] == 'error'){ window.location.href = '/talarbncnwhdtdjC18pHtYWFF6aE2pAWbYXzuikfqbypxqr?ohoppFKHLHCAUOEKBCNCRFLSQMCMSRXYPOJomatoqgpysczyprdoaqtjdmppnyo'; } }); } | |
URL: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/cr37t/0x4AAAAAAAXRTsOVR7YNTKTk/auto/normal Model: Perplexity: mixtral-8x7b-instruct | { "loginform": false, "reasons": [ "The text does not contain any form fields for a username or password.", "The text mentions verifying 'your identity' and checking if it's 'you' and not a robot, but it does not explicitly mention a login form." ] } |
Verify you are human CLOuOFLARE Attention: We are in the process of verifying and authenticating your identity. We've noticed unusual activity from pur network. This page checks if it's you, not a robot, sending the requests | |
URL: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/cr37t/0x4AAAAAAAXRTsOVR7YNTKTk/auto/normal Model: gpt-4o | ```json { "riskscore": 1, "reasons": "The JavaScript code appears to be related to Cloudflare's challenge page, which is a security feature used to protect websites from malicious traffic. The presence of Cloudflare-specific parameters and functions suggests it is legitimate. There are no obvious signs of malicious behavior such as data exfiltration or unauthorized access attempts." } |
(function(){ window._cf_chl_opt={ cvId: '3', cZone: 'challenges.cloudflare.com', cTplV: 5, chlApivId: '0', chlApiWidgetId: 'cr37t', chlApiSitekey: '0x4AAAAAAAXRTsOVR7YNTKTk', chlApiMode: 'managed', chlApiSize: 'normal', chlApiRcV: '1/tQLO-891kd51BCz', chlApiTimeoutEncountered: 0, chlTimeoutMs: 120000, cK: "visitor-time", cType: 'chl_api_m', cNounce: '43277', cRay: '888a0b630ed98c1b', cHash: '0cc0942b0c543ec', cFPWv: 'b', cLt: 'n', cRq: { ru: 'aHR0cDovL2NoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20vY2RuLWNnaS9jaGFsbGVuZ2UtcGxhdGZvcm0vaC9iL3R1cm5zdGlsZS9pZi9vdjIvYXYwL3JjdjAvMC9jcjM3dC8weDRBQUFBQUFBWFJUc09WUjdZTlRLVGsvYXV0by9ub3JtYWw=', ra: 'TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NCkgQXBwbGVXZWJLaXQvNTM3LjM2IChLSFRNTCwgbGlrZSBHZWNrbykgQ2hyb21lLzExNy4wLjAuMCBTYWZhcmkvNTM3LjM2', rm: 'R0VU', d: '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', t: 'MTcxNjUxOTcyMS40NQ==', m: 'kzr4dJdxh069nfi22vTI8BZb2alCTMCUPNwMlG1/tM4=', i1: 'RT0cy8y4NkBzMuZxEn+Sew==', i2: 'L2Gpc7ntgenBX1p31x0g1Q==', uh: 'wh0E0SXYnx6pTBdJW/l926I+PRUplRdtQz3K9lHXs/s=', hh: 'WCiLdNo2uN2aXsfJJhG2HFkP3bOo0fw8tsFAppLisvs=', zh: '9D+zbxCfwBPyr1pF5Wb5E9kRItcGU2xCgzO1zGTKToQ=', }, refresh: function(){ if(window['parent']){ window['parent'].postMessage({ source: 'cloudflare-challenge', widgetId: 'cr37t', nextRcV: '1/tQLO-891kd51BCz', event: 'reloadRequest', }, "*"); } } }; var handler = function(event) { var e = event.data; if (e.source && e.source === 'cloudflare-challenge' && e.event === 'meow' && e.widgetId === window._cf_chl_opt.chlApiWidget |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
41.185.8.68 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
239.255.255.250 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
172.67.153.178 | Get hash | malicious | Unknown | Browse | ||
104.17.2.184 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HtmlDropper, HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HtmlDropper, HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
151.101.130.137 | Get hash | malicious | Unknown | Browse |
| |
104.17.3.184 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HtmlDropper, HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | HTMLPhisher | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | HTMLPhisher | Browse |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
challenges.cloudflare.com | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HtmlDropper, HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
code.jquery.com | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
CLOUDFLARENETUS | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
FASTLYUS | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
GridhostZA | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mirai, Moobot | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
CLOUDFLARENETUS | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
28a2c9bd18a11de089ef85a160da29e4 | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
|
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 290 |
Entropy (8bit): | 5.122972357128297 |
Encrypted: | false |
SSDEEP: | 6:DsMAq2PRN2nKuAl9OmbnIFUt86qwZmw+6q4kwORN2nKuAl9OmbjLJ:DfAvaHAahFUt86qw/+6q45JHAaSJ |
MD5: | 531D5D3F998616B98F2C75870BE204C5 |
SHA1: | 8DD0F710791FD180B7AD27221485131B3E2449AE |
SHA-256: | 3CFC99018CCCB89E5BB5EEA9997BC82364B7D2563965D69BB0B30BEEB20EC0CF |
SHA-512: | F20F4CE8AC8781D9D66A8F87E166201C5011BD95926228DCCA9E1DA952A86460713760A64830BD963D14D850FD30442ED46E08E70232BD1F91F30566D147A8B0 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 290 |
Entropy (8bit): | 5.122972357128297 |
Encrypted: | false |
SSDEEP: | 6:DsMAq2PRN2nKuAl9OmbnIFUt86qwZmw+6q4kwORN2nKuAl9OmbjLJ:DfAvaHAahFUt86qw/+6q45JHAaSJ |
MD5: | 531D5D3F998616B98F2C75870BE204C5 |
SHA1: | 8DD0F710791FD180B7AD27221485131B3E2449AE |
SHA-256: | 3CFC99018CCCB89E5BB5EEA9997BC82364B7D2563965D69BB0B30BEEB20EC0CF |
SHA-512: | F20F4CE8AC8781D9D66A8F87E166201C5011BD95926228DCCA9E1DA952A86460713760A64830BD963D14D850FD30442ED46E08E70232BD1F91F30566D147A8B0 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 334 |
Entropy (8bit): | 5.116419997711846 |
Encrypted: | false |
SSDEEP: | 6:Dm+q2PRN2nKuAl9Ombzo2jMGIFUt86xZmw+6CVkwORN2nKuAl9Ombzo2jMmLJ:Dm+vaHAa8uFUt86x/+6CV5JHAa8RJ |
MD5: | 51498A59C8AA0B869611F28D955175D9 |
SHA1: | 7A89676FA936AE98CFF205F21CF51326C53E9387 |
SHA-256: | 98A1D7D0AFF4E55A06A363C5A0FDBE64F312A3EFAC8BC11A90FF41DA91E2A668 |
SHA-512: | 0DE1A34EAD206419C466CB32A69075FDBB41E2D4AC77A6802BF05A34BB4CBA4E3E50D85CECEAC157C05164193944382477C92F80DE59BE50FCD231B49F313B17 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old (copy)
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 334 |
Entropy (8bit): | 5.116419997711846 |
Encrypted: | false |
SSDEEP: | 6:Dm+q2PRN2nKuAl9Ombzo2jMGIFUt86xZmw+6CVkwORN2nKuAl9Ombzo2jMmLJ:Dm+vaHAa8uFUt86x/+6CV5JHAa8RJ |
MD5: | 51498A59C8AA0B869611F28D955175D9 |
SHA1: | 7A89676FA936AE98CFF205F21CF51326C53E9387 |
SHA-256: | 98A1D7D0AFF4E55A06A363C5A0FDBE64F312A3EFAC8BC11A90FF41DA91E2A668 |
SHA-512: | 0DE1A34EAD206419C466CB32A69075FDBB41E2D4AC77A6802BF05A34BB4CBA4E3E50D85CECEAC157C05164193944382477C92F80DE59BE50FCD231B49F313B17 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\0638b1d4-fcba-4447-bbbc-e35602466844.tmp
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 403 |
Entropy (8bit): | 4.953858338552356 |
Encrypted: | false |
SSDEEP: | 12:YHO8sq/WLksBdOg2H9caq3QYiubrP7E4T3y:YXsRJdMHM3QYhbz7nby |
MD5: | 4C313FE514B5F4E7E89329630909F8DC |
SHA1: | 916EED77EC8C9DC90C64FF1E5CC9D04D4674EE56 |
SHA-256: | 1EE7C151EF264F91FCDCCB6644F62DC33E27A4E829DAAB748DA1DE4426400873 |
SHA-512: | 1726CAFCBA0121691DFA87A7298E6610BC4C7FD900867FD1B1710811E764918585E56788E08B7CA2CEE001F5DFD110E1BE6F6BBD7C2A7B7E2FC87D3DED210205 |
Malicious: | false |
Reputation: | moderate, very likely benign file |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\7e033aec-4203-4b11-b77f-0c2f2895010e.tmp
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | modified |
Size (bytes): | 403 |
Entropy (8bit): | 4.99296113031368 |
Encrypted: | false |
SSDEEP: | 12:YHO8sq0EsBdOg2Hgcaq3QYiubrP7E4T3y:YXsZdMHL3QYhbz7nby |
MD5: | 4DB0BF063B99B953D320D8608D1C7DEB |
SHA1: | CFC01007F495E3457AC2C415BCB3356C07A9F057 |
SHA-256: | 11FCFAD54B472D3BC1B3FE408C1B7D94EA2B1758F99B3B92730C26F40432225D |
SHA-512: | 8C0717526FC5F0C2C8D237D1156D9314276B2FC91C39BEC2CDB667E7C2F7C01DFCB923FFDA8DED5620E3F7E36AF36DBBF3D2FCEFB7F2F468D727EDFCBFE8B7E3 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State (copy)
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 403 |
Entropy (8bit): | 4.953858338552356 |
Encrypted: | false |
SSDEEP: | 12:YHO8sq/WLksBdOg2H9caq3QYiubrP7E4T3y:YXsRJdMHM3QYhbz7nby |
MD5: | 4C313FE514B5F4E7E89329630909F8DC |
SHA1: | 916EED77EC8C9DC90C64FF1E5CC9D04D4674EE56 |
SHA-256: | 1EE7C151EF264F91FCDCCB6644F62DC33E27A4E829DAAB748DA1DE4426400873 |
SHA-512: | 1726CAFCBA0121691DFA87A7298E6610BC4C7FD900867FD1B1710811E764918585E56788E08B7CA2CEE001F5DFD110E1BE6F6BBD7C2A7B7E2FC87D3DED210205 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State~RF65207d.TMP (copy)
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 403 |
Entropy (8bit): | 4.953858338552356 |
Encrypted: | false |
SSDEEP: | 12:YHO8sq/WLksBdOg2H9caq3QYiubrP7E4T3y:YXsRJdMHM3QYhbz7nby |
MD5: | 4C313FE514B5F4E7E89329630909F8DC |
SHA1: | 916EED77EC8C9DC90C64FF1E5CC9D04D4674EE56 |
SHA-256: | 1EE7C151EF264F91FCDCCB6644F62DC33E27A4E829DAAB748DA1DE4426400873 |
SHA-512: | 1726CAFCBA0121691DFA87A7298E6610BC4C7FD900867FD1B1710811E764918585E56788E08B7CA2CEE001F5DFD110E1BE6F6BBD7C2A7B7E2FC87D3DED210205 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4099 |
Entropy (8bit): | 5.23349199621978 |
Encrypted: | false |
SSDEEP: | 96:OLSw0bSwIAnrRqLX2rSq1OUxu/0OZ0xRBTxekN8xeI6qu1:OLT0bTIeYa51Ogu/0OZARBT8kN88Ixu1 |
MD5: | C67F8CD09C959FB56A6611D861126B70 |
SHA1: | AFC4594EE146A3B9F7EF83ED8751545BF1F1CF1B |
SHA-256: | 42C32AA08EF7987498C16ECC683122A62ED5077EA8C97A65BE14F59D40409885 |
SHA-512: | 9C5F5BA42488DB3FB7CD54FDED17133EC3E88E1340737A7247888B5C997E455E21810FCBEAEE6F55BA57E0253888280D1B14A7B32BA2051A03FFCAB4A86E1956 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 322 |
Entropy (8bit): | 5.1392670156303 |
Encrypted: | false |
SSDEEP: | 6:DYFG3+q2PRN2nKuAl9OmbzNMxIFUt86yUFZmw+692VkwORN2nKuAl9OmbzNMFLJ:DYFi+vaHAa8jFUt86l/+64V5JHAa84J |
MD5: | 67978BC42F8A27855011608194D4D157 |
SHA1: | DABD5EB95619265430D07626349A8A5E5DEAE549 |
SHA-256: | 3ED507974A218042D6574F5FAF1FF55554A4832E97B16C95A3A16BE3AFE039DC |
SHA-512: | 4A228E512B26B5C2F03918B15320461E2708F94342B1E552587CEF4A9EBD287EE8690000570C02C844943E074E79B11592FA1D8FAF218EEB65B45AB6F7E75212 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old (copy)
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 322 |
Entropy (8bit): | 5.1392670156303 |
Encrypted: | false |
SSDEEP: | 6:DYFG3+q2PRN2nKuAl9OmbzNMxIFUt86yUFZmw+692VkwORN2nKuAl9OmbzNMFLJ:DYFi+vaHAa8jFUt86l/+64V5JHAa84J |
MD5: | 67978BC42F8A27855011608194D4D157 |
SHA1: | DABD5EB95619265430D07626349A8A5E5DEAE549 |
SHA-256: | 3ED507974A218042D6574F5FAF1FF55554A4832E97B16C95A3A16BE3AFE039DC |
SHA-512: | 4A228E512B26B5C2F03918B15320461E2708F94342B1E552587CEF4A9EBD287EE8690000570C02C844943E074E79B11592FA1D8FAF218EEB65B45AB6F7E75212 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 57344 |
Entropy (8bit): | 3.291927920232006 |
Encrypted: | false |
SSDEEP: | 192:vedRBvVui5V4R4dcQ5V4R4RtYWtEV2UUTTchqGp8F/7/z+FP:veBci5H5FY+EUUUTTcHqFzqFP |
MD5: | A4D5FECEFE05F21D6F81ACF4D9A788CF |
SHA1: | 1A9AC236C80F2A2809F7DE374072E2FCCA5A775C |
SHA-256: | 83BE4623D80FFB402FBDEC4125671DF532845A3828A1B378D99BD243A4FD8FF2 |
SHA-512: | FF106C6B9E1EA4B1F3E3AB01FAEA21BA24A885E63DDF0C36EB0A8C3C89A9430FE676039C076C50D7C46DC4E809F6A7E35A4BFED64D9033FEBD6121AC547AA5E9 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16928 |
Entropy (8bit): | 1.2153152990587708 |
Encrypted: | false |
SSDEEP: | 24:7+t5PuqLi+zkrFsgIFsxX3pALXmnHpkDGjmcxBSkomXk+2m9RFTsyg+wmf9Mzm+f:7M5mqLmFTIF3XmHjBoGGR+jMz+LhQ |
MD5: | A26FB523B915333D073F6E700C376B29 |
SHA1: | 928190650008AEDF7F305101CF0FACC37907853A |
SHA-256: | 714895AA9079258610231724EBD4C8136A80F7313FF1782EDFF86C980C882289 |
SHA-512: | 5B2BEA73B16151D59373D48479F2A6FB2B55BB371296E3E769740C284BD87E7A8E2A7B31B6D3B0CA7BF8F749A12071D6A63C31E652FB0313DE461F6BA68E50A7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506 ![encrypted](data:image/png;base64,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)
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 69993 |
Entropy (8bit): | 7.99584879649948 |
Encrypted: | true |
SSDEEP: | 1536:iMveRG6BWC7T2g1wGUa5QUoaIB9ttiFJG+AOQOXl0Usvwr:feRG6BX6gUaHo9tkBHiUewr |
MD5: | 29F65BA8E88C063813CC50A4EA544E93 |
SHA1: | 05A7040D5C127E68C25D81CC51271FFB8BEF3568 |
SHA-256: | 1ED81FA8DFB6999A9FEDC6E779138FFD99568992E22D300ACD181A6D2C8DE184 |
SHA-512: | E29B2E92C496245BED3372578074407E8EF8882906CE10C35B3C8DEEBFEFE01B5FD7F3030ACAA693E175F4B7ACA6CD7D8D10AE1C731B09C5FA19035E005DE3AA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E0F5C59F9FA661F6F4C50B87FEF3A15A
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 893 |
Entropy (8bit): | 7.366016576663508 |
Encrypted: | false |
SSDEEP: | 24:hBntmDvKUQQDvKUr7C5fpqp8gPvXHmXvponXux:3ntmD5QQD5XC5RqHHXmXvp++x |
MD5: | D4AE187B4574036C2D76B6DF8A8C1A30 |
SHA1: | B06F409FA14BAB33CBAF4A37811B8740B624D9E5 |
SHA-256: | A2CE3A0FA7D2A833D1801E01EC48E35B70D84F3467CC9F8FAB370386E13879C7 |
SHA-512: | 1F44A360E8BB8ADA22BC5BFE001F1BABB4E72005A46BC2A94C33C4BD149FF256CCE6F35D65CA4F7FC2A5B9E15494155449830D2809C8CF218D0B9196EC646B0C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | modified |
Size (bytes): | 330 |
Entropy (8bit): | 3.1414940076987787 |
Encrypted: | false |
SSDEEP: | 6:kKfVlDN+SkQlPlEGYRMY9z+4KlDA3RUeVlWI/Vt:XVlMkPlE99SNxAhUeVLVt |
MD5: | 01991C77CFA38292FF1BE3B2E4AA6B17 |
SHA1: | 879C52D6E3ED425E87296C8BBDECD6E4FFC0BA44 |
SHA-256: | 144B0282CE80088B958FFBA4209C5867C75BD932F247AD6B67055D9658DD3ED1 |
SHA-512: | 8576F3B21AE0821ADF9981E861BB0522939AC891642A369B0F5C814F726D1C5E1C7694A6C997FE0D7DD6BA2D82B5953D970251A609D7DE0A564F51CFE304190B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E0F5C59F9FA661F6F4C50B87FEF3A15A
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 252 |
Entropy (8bit): | 3.0155357938800775 |
Encrypted: | false |
SSDEEP: | 3:kkFklxE1fllXlE/E/KRkzllPlzRkwWBARLNDU+ZMlKlBkvclcMlVHblB8V7lnklc:kKrxliBAIdQZV7I7kc3 |
MD5: | F3CF56B360A88C2D980BB70B10F393FD |
SHA1: | 9A104788C9524E1F2B7474808E560A9E76D412EA |
SHA-256: | ED3D8F3611F008299E461475B5841D305D85AAADDA8155068A686190BA68B51F |
SHA-512: | 44E30E6B7FC948E256A12B7EB92F7EFB4E413AE02C215A064187AD3629A11A242FB7F80B9ED9C330E42338238242C567491C9E1D43899F2247C0EE1DAB5F4674 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\ACROBAT_READER_MASTER_SURFACEID
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 295 |
Entropy (8bit): | 5.375430726619065 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJM3g98kUwPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGMbLUkee9 |
MD5: | 5A6D08EB7425927A3C6ECFC51F49E963 |
SHA1: | F4A367A0C1CA3343FE8A10BCD1604928FF70F703 |
SHA-256: | 812F05FE50423275B5CC448E7CED8927982C0FBD940F7CF326464755D5CA849A |
SHA-512: | B5641385974FEA852AE22B217A6217EB4A4EA1449D2CEAA6E5CA496B49415F10ECF9D107EAE64023BC787D7A39B46480F5425C290B60E5818FC20F7BFCBCDD7B |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Home_View_Surface
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 294 |
Entropy (8bit): | 5.324267342271105 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfBoTfXpnrPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGWTfXcUke6 |
MD5: | D228DD2220BC43DDB499E59129DB1B89 |
SHA1: | DC0045199CBA31E1C81D3EA7C11E5E0CEF298F86 |
SHA-256: | F0A91E1439C97599AD6E377B32444E9F94917698834B57D78C7C5606C696F8D3 |
SHA-512: | 862C4EBBCB840540CEB5CC869800E31E985E7B13B1349B020C62A5B96004BFC415FF5E2D887C6DF96B5902DB2461E10A8B053F6FEBACA9B9F2561C2C0414DFC7 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Right_Sec_Surface
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 294 |
Entropy (8bit): | 5.301388783813682 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfBD2G6UpnrPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGR22cUkee9 |
MD5: | 42D4B59D1988717F8B12E173C3380FF0 |
SHA1: | E72D5C193C2434B2429918EAB860F317D46FAA4D |
SHA-256: | E31369A43EDB376A257843B598F7E15D94AB0A98070EA29E182CCABA538E11B7 |
SHA-512: | ED932F5004825C87B589534207C64FF518CA6AC70963A768E9689EB57ABFE2B52453C8FBE1B55172E5FBF62AF96793C652085077FAF7C23AC5AD68F1474EED0C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_READER_LAUNCH_CARD
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 285 |
Entropy (8bit): | 5.364234330809248 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfPmwrPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGH56Ukee9 |
MD5: | CDC5074ED4EB7C6DAEF310C6FE91B364 |
SHA1: | F0EA93FC11B646320EE9D648DACBD831C5A5B34F |
SHA-256: | 556327E461D9E0B385785786C7272E8DA2D857C115EF708A308C892B87B93051 |
SHA-512: | B0D9FE46D04EE98D34BCFF7750238288737C0CD44A6E95F1FBCFF1FDF9095E41787577363EBDB95748849C667A2FEEB9333F56FFDC882089074267D2F078193D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Convert_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 292 |
Entropy (8bit): | 5.324945669998854 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfJWCtMdPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGBS8Ukee9 |
MD5: | B2D29895EE1C63FCF5A564B54CD6122D |
SHA1: | B0A4B2FFAA0C8C969477AB34353F70A54F9622F5 |
SHA-256: | ADC22BB3D1387E1D41318BFC95E2184562993B266FC2718325C1CB6C5965AA6E |
SHA-512: | FB976180F1393E8C500E93DCE68B0F88E705DB7DC518DB3E03EEE825B64FF5C14F8989002B5CADA896CB0909642C9137A43633E59ED3C6E8D1E375288EDAE99C |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 289 |
Entropy (8bit): | 5.3104381076820655 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJf8dPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGU8Ukee9 |
MD5: | 2E1C85D289C37A5AD311237B3B065E03 |
SHA1: | 31D5EC92C14F6B3306A51F1BE86E8DF4AA0EB1BF |
SHA-256: | C4EFCAE5089D54A35F41ABD954E20BED304EFC881699786D89851F73848D28B1 |
SHA-512: | 44F149DC9F7994AAE2A90FACA1E1D368553AC02B8CEA7B7E6E8B9425BCF2F74E68D04E8231CB01C8AA8C0502794F80930044D3094B196E9D16B0D6B96432B5C1 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Retention
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 292 |
Entropy (8bit): | 5.312964921006468 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfQ1rPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGY16Ukee9 |
MD5: | B208B4CE1377D43EC5B6BE9D7D951655 |
SHA1: | 031901887396485FBF9ABF37CBAEC026303F97ED |
SHA-256: | 2E317360F5466FEF9511F50FA8C46DF325AE82FAAEC802A5CF8393CFCF20A8EC |
SHA-512: | 5FE74A4B61F9DB43A98EF428D19984996DA973D406863626BF42A2DEDA8D908D21607CF648A857BBFB4AA78EB5105C80CB4C3ED3E7FE9EA19CF93E006E2EE40F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Edit_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 289 |
Entropy (8bit): | 5.320160606260754 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfFldPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGz8Ukee9 |
MD5: | 598972BE66FC4ACCAB0DFF8B3114C7E8 |
SHA1: | F0CA1403DF7E160DDA880C10B6D3DFDE6EC7D2D6 |
SHA-256: | 1B2CD347903C89E1A3C06810CEB69068415DECBFB1F075C45891065DB189BF44 |
SHA-512: | 5A173B101CFD9A975C44ECA276210E98779C91BFE07A36A6A04D86C32E219D56551AC6C3900967AE028F7B230EE322C236312CCDB23D546A9CB0BA829990CD4D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Home_LHP_Trial_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1372 |
Entropy (8bit): | 5.737511192224572 |
Encrypted: | false |
SSDEEP: | 24:Yv6Xm29U1caAKLgENRcbrZbq00iCCBrwJo++ns8ct4mFJN0q:YvF29U1tAEgigrNt0wSJn+ns8cvFJ9 |
MD5: | 8274BF24045E42C22F8D7F178751205D |
SHA1: | F51A9193F3482C6138EC0FE504D3F905768C6D68 |
SHA-256: | 7960D9150D435F59E9228B01DAEAB73D6176459FD8ABC924D6F33E3957F07E58 |
SHA-512: | 64A250AFFF871837593847AA6D0484696FB1D33FFCBD2C6229729F4C0968ED4DB6F19AA79CAC2893E322A8B230ADFF9F71039A9332930A8B6B6E9106152AA5CC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_More_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 289 |
Entropy (8bit): | 5.318277920529242 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfYdPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGg8Ukee9 |
MD5: | 10F50F2D7808980255C7AAD8353ABC0D |
SHA1: | FE3C748CFBAB7439EDF936ADD34AF99996A79E4F |
SHA-256: | E3BE096A4D7A8FB6A9450A4747BB42E44D1E483A778136EA3659FE9181D08DEA |
SHA-512: | D57E8C69A46887E179F7D555A830A5A41D5145B77D2326FA0022D2735DF719FBB3CCA88844930F49C5DCAA9B37BA455AA393E52BFEA05CF729A102FDE97521DC |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1395 |
Entropy (8bit): | 5.772393955751041 |
Encrypted: | false |
SSDEEP: | 24:Yv6Xm29U1caPrLgEGOc93W2JeFmaR7CQzttgBcu141CjrWpHfRzVCV9FJN8q:YvF29U1tPHgDv3W2aYQfgB5OUupHrQ95 |
MD5: | 68441BB5DB56F1CBC724220AD93412B7 |
SHA1: | 2A69FE9468C77B47D6B89B6FD830F703897AFA37 |
SHA-256: | 725540E2B390D674A50C2156473BC48B195CEAAE42CBFB239745293F60899F66 |
SHA-512: | C2712AB940D6C93BCFCBE415778AB1DEB73DB66A3326E0020C236521F94BC699222E9A575D9AEB56A54740057DE8B74736534447BBF59C849140A508E1D959EA |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Intent_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 291 |
Entropy (8bit): | 5.3016993967561685 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfbPtdPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGDV8Ukee9 |
MD5: | 8ABC4BFC2261C6FC2827EEF17BD59BCF |
SHA1: | 19385A7FE10467E70020D333D3D527DA1808875B |
SHA-256: | E73B620E8B72CF64D4645A61EC04CF9B5557FA7B5E823AA74A624567249417BC |
SHA-512: | 0F5C5C0EDF8C2316F1D26482E6EC04D0B1A6DF9FE9D1EE12F5C5088900CC4C23D0937388B2E708420626FE8BBE884133A6B46A5728049D0D29BBD47E2C70F573 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Retention
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 287 |
Entropy (8bit): | 5.305019330174085 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJf21rPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYG+16Ukee9 |
MD5: | 19F5338BBE80D50C2F2FD99008009A2F |
SHA1: | 1B477EF3EFA3215FD60B00D2C5E1D8B9E89617FD |
SHA-256: | 8682D877A09A0687B8645A05C8A9BF0C87B2C3328B9D21C0D3C3F4FB9F705ADD |
SHA-512: | 50BFF557682628668EEDB6BF146DAA2144AF4BBCBD12DB598940804AF98181D069255017C7A2C6DCF63FCC22D88BA1CACF7EDD823770BCC95B0799B3EAE60204 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Sign_LHP_Banner
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 289 |
Entropy (8bit): | 5.3248192312131675 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfbpatdPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGVat8Ukee9 |
MD5: | F17A0FD883B792E7325587DEA35DF366 |
SHA1: | 1744D4D7B6175A794090F8B1399F079EDA958830 |
SHA-256: | 6D9538DD20942EE0533B404A17A7E4D32D0A5C5816868D64C7ACD6C02506C66F |
SHA-512: | FD4285B8F6EB3AB6B9EF507399BC83EE9DF687B91E54163C1F039E2529D7D941E0823C4D25F31C8CB4ECB71968381722C23B8DE4978339D2BDFB5D0837E5372A |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Upsell_Cards
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 286 |
Entropy (8bit): | 5.279893402279125 |
Encrypted: | false |
SSDEEP: | 6:YEQXJ2HXHG2BTt73+5IRR4UhUR0YRcXq3oAvJfshHHrPeUkwRe9:YvXKXm2Jt73+WRuUhU1caYGUUUkee9 |
MD5: | ACA9C760D98D54616EABF3BD4D7D1DFD |
SHA1: | FE62D71713D7118CBE3C4419F408B8B55031507E |
SHA-256: | ABA848CA5D28B44ADBA14368FFE52D820F25FBBF27762227CDEB1BFB5DF9DEAD |
SHA-512: | C03932048C4F05EE526E24FB6E826202F2FCBECFC238B65433F3F3582E9DED381F444A1798B3557F6E0A54981A3913D4D0D378CC89C72BFC30984E25292B1554 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 782 |
Entropy (8bit): | 5.366176540542007 |
Encrypted: | false |
SSDEEP: | 12:YvXKXm2Jt73+WRuUhU1caYGTq16Ukee1+3CEJ1KXd15kcyKMQo7P70c0WM6ZB/uk:Yv6Xm29U1ca+168CgEXX5kcIfANhfq |
MD5: | 79C57898E789C78B17CCA022DFA74AC6 |
SHA1: | 143C41E58E1ECD1DD8874EBA40A08E0417DC24A2 |
SHA-256: | 7F38C0DFCDFAC13EBA88DF84FF9471BCC8D2C9638ECFFD272CC6FD9F994AD714 |
SHA-512: | B23105A707246D43CEEA3C0DF87DB07C280BB0F6617661198516EF349DCCDAE5E827020CDEAA13D3DBD0FD8D24D9DBE44015D4F6958139386F2796781A63D9A8 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 4 |
Entropy (8bit): | 0.8112781244591328 |
Encrypted: | false |
SSDEEP: | 3:e:e |
MD5: | DC84B0D741E5BEAE8070013ADDCC8C28 |
SHA1: | 802F4A6A20CBF157AAF6C4E07E4301578D5936A2 |
SHA-256: | 81FF65EFC4487853BDB4625559E69AB44F19E0F5EFBD6D5B2AF5E3AB267C8E06 |
SHA-512: | 65D5F2A173A43ED2089E3934EB48EA02DD9CCE160D539A47D33A616F29554DBD7AF5D62672DA1637E0466333A78AAA023CBD95846A50AC994947DC888AB6AB71 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2814 |
Entropy (8bit): | 5.13780781667639 |
Encrypted: | false |
SSDEEP: | 24:YUcyCmS54bXhPwqAio4amHayaEP5jOj0SzZmCTQ2h2LSqXsLT5bQ9buuwvOG:YWfSuXhPbEEFwfEMU8LTq9b8b |
MD5: | 3CBC83D7E9DB1D097687054ED195952F |
SHA1: | 8A50AD9A1F5FE11093BEF5F17128062CE253811A |
SHA-256: | B679A6B6FD8178806EC6A81F30349198691E81CE7322178DAFF7DD3EA341C453 |
SHA-512: | D842BBA1A7FAF982E5B6280999E7A6495B529E9392C2878630D4F9A6AF938A3E375E9DDE882DCF1D6ABF37C4D08E788E607BAF6E72D2CD44C92067CB71635B85 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 12288 |
Entropy (8bit): | 0.9861335258097041 |
Encrypted: | false |
SSDEEP: | 24:TLHRx/XYKQvGJF7urs67Y9QmQ6QeXIcLESiAievF:TVl2GL7ms67YXtr4cI85 |
MD5: | 8A61AD02A202831C99CEBB82137A58E7 |
SHA1: | C4F05E7823FAACCBA2D454C1B67D44835D87B38E |
SHA-256: | 4CA4FB1EF8BD191296C0B245F46D079A263D22FC9251A3EA9477900F5118D164 |
SHA-512: | A58237DF93797417C0211C7A7A81A3AA3C3AC59A4CB91AD8C3FA7DB5996E708D40716FA7D8C30AE6F30C724B4126CCF42B34AAEFF65138C4160DE89CCC3B7098 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 8720 |
Entropy (8bit): | 1.3432623183303312 |
Encrypted: | false |
SSDEEP: | 24:7+tYASY9QmQ6QeX7cLESiAi0mY9QdqLBx/XYKQvGJF7ursP:7MYlYXtrLcI8KYoqll2GL7msP |
MD5: | 06A6B103CAFC31B22D3D0DEED8412B8A |
SHA1: | 3F4FEE026609385C4EA905FDB92F1EC468A24B5F |
SHA-256: | CEF6E42BEF0BE71BBBE228B79CF95091652D255F7A7A960D504544536ED40486 |
SHA-512: | 97477D3403F1B254862DA55DE1784284D156AB4E38F4125DD1D26F9C933AB038B9E93344D99AB70A96CEC1D8802BF8E9DA0F4B40DA76226840E7B1A53DFC80DD |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 246 |
Entropy (8bit): | 3.5213298467083405 |
Encrypted: | false |
SSDEEP: | 6:Qgl946caEbiQLxuZUQu+lEbYnuoblv2K8rDlt:Qw946cPbiOxDlbYnuRKmv |
MD5: | D452337BA0855A68523D0480DFD9BAEF |
SHA1: | D1A22C0C52A28860A4A0F25449B8194DE157C43C |
SHA-256: | C751B07781F9E4278E5F2B85555E4513D150EB3B0A2B04E6B1160A3F49415742 |
SHA-512: | D90F534004E0B2A6E2390A5EE4FC5A20132D2AC4585C9BFF78D526FABEC37AC7700CB3238EB2280087EF1545BEC2681F62CF4434D765FCB26004CC31AFC7E4DC |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2024-05-23 23-01-52-135.log
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 16525 |
Entropy (8bit): | 5.353642815103214 |
Encrypted: | false |
SSDEEP: | 384:tbxtsuP+XEWJJQbnR8L31M7HeltV+KYm3wsa2KjF4ODkr/O8r2IUHUHMWwEyZRN2:aPL |
MD5: | 91F06491552FC977E9E8AF47786EE7C1 |
SHA1: | 8FEB27904897FFCC2BE1A985D479D7F75F11CEFC |
SHA-256: | 06582F9F48220653B0CB355A53A9B145DA049C536D00095C57FCB3E941BA90BB |
SHA-512: | A63E6E0D25B88EBB6602885AB8E91167D37267B24516A11F7492F48876D3DDCAE44FFC386E146F3CF6EB4FA6AF251602143F254687B17FCFE6F00783095C5082 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6.log
Download File
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 15092 |
Entropy (8bit): | 5.3327302481219085 |
Encrypted: | false |
SSDEEP: | 384:1qAf1TcnHUdXM1UjOJpIh/UxFODzaa+pA3z1/DlpNZOZXyAbzgdy1W3+zT59dKqx:8eI |
MD5: | 0E9B021433B5E5BE4F16612BB792D355 |
SHA1: | 2AFC1488811732C0306B45F06E309A5C3B2AFAAE |
SHA-256: | 198096ABAB34514001E6635122B8CC757572E7F3B86E7ED289C80BCBEB8874C4 |
SHA-512: | 8AD332C8167183763F84E14BA5754CD6946885C08CF4D6697CA7132BB4B736CD594F15FE9E346B295CA2009CA5A040624E13420795D7BC33189283ABAF873CCC |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 29752 |
Entropy (8bit): | 5.417314901245182 |
Encrypted: | false |
SSDEEP: | 192:0cbgIhPcbocbAIlncb2cbwI/RcbNcbQIVvcblcbiIcqcbB:fhWlA/TV/cR |
MD5: | D76E3B3140C3E4EFC8E0E5E993453E4B |
SHA1: | 456C3BAF1BF796B8DD1AC4D995B69018566D0D1D |
SHA-256: | 6EFD85CCB48E3F9ACC727DC39DA52B4D282FB007766EF40ED8879AAD6B301E4B |
SHA-512: | EFB02288D4DBE0D6FCFE915B89C4EC2889F7BF540DA518A2EC0AE0A6692F67674C0FA122652E9842B3D0466634104621E87930B193379F4CA53886A852876B1D |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 758601 |
Entropy (8bit): | 7.98639316555857 |
Encrypted: | false |
SSDEEP: | 12288:ONh3P65+Tegs6121YSWBlkipdjuv1ybxrr/IxkB1mabFhOXZ/fEa+vTJJJJv+9U0:O3Pjegf121YS8lkipdjMMNB1DofjgJJg |
MD5: | 3A49135134665364308390AC398006F1 |
SHA1: | 28EF4CE5690BF8A9E048AF7D30688120DAC6F126 |
SHA-256: | D1858851B2DC86BA23C0710FE8526292F0F69E100CEBFA7F260890BD41F5F42B |
SHA-512: | BE2C3C39CA57425B28DC36E669DA33B5FF6C7184509756B62832B5E2BFBCE46C9E62EAA88274187F7EE45474DCA98CD8084257EA2EBE6AB36932E28B857743E5 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 386528 |
Entropy (8bit): | 7.9736851559892425 |
Encrypted: | false |
SSDEEP: | 6144:8OSTJJJJEQ6T9UkRm1lBgI81ReWQ53+sQ36X/FLYVbxrr/IxktOQZ1mau4yBwsOo:sTJJJJv+9UZX+Tegs661ybxrr/IxkB1m |
MD5: | 5C48B0AD2FEF800949466AE872E1F1E2 |
SHA1: | 337D617AE142815EDDACB48484628C1F16692A2F |
SHA-256: | F40E3C96D4ED2F7A299027B37B2C0C03EAEEE22CF79C6B300E5F23ACB1EB31FE |
SHA-512: | 44210CE41F6365298BFBB14F6D850E59841FF555EBA00B51C6B024A12F458E91E43FDA3FA1A10AAC857D4BA7CA6992CCD891C02678DCA33FA1F409DE08859324 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1419751 |
Entropy (8bit): | 7.976496077007677 |
Encrypted: | false |
SSDEEP: | 24576:/yOWL07oXGZBZwYIGNPldpy6mlind9j2kvhsfFXpAXDgrFBU2/R07c:HWLxXGZBZwZGP3mlind9i4ufFXpAXkrj |
MD5: | 8AA8FD12F2DF58393AA972746390B798 |
SHA1: | 83B44322BDF84EBA9BDBD30521D10EF176CAC5C3 |
SHA-256: | 24A572549BC1325A849F40E6D945D0E30452F0E533693818543A83E4E7E28842 |
SHA-512: | DFCFB1934107067180114E0A5254F581BDBF670FBADE13B9A1917AF0A8075C9A53BEBAE821D2603870CDA972AECFF80BDF46FB592E8385CCC2E69A3415B06E5C |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1407294 |
Entropy (8bit): | 7.97605879016224 |
Encrypted: | false |
SSDEEP: | 24576:/xA7o5dpy6mlind9j2kvhsfFXpAXDgrFBU2/R07/WLaGZDwYIGNPJe:JVB3mlind9i4ufFXpAXkrfUs0jWLaGZo |
MD5: | A0CFC77914D9BFBDD8BC1B1154A7B364 |
SHA1: | 54962BFDF3797C95DC2A4C8B29E873743811AD30 |
SHA-256: | 81E45F94FE27B1D7D61DBC0DAFC005A1816D238D594B443BF4F0EE3241FB9685 |
SHA-512: | 74A8F6D96E004B8AFB4B635C0150355CEF5D7127972EA90683900B60560AA9C7F8DE780D1D5A4A944AF92B63C69F80DCDE09249AB99696932F1955F9EED443BE |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2673 |
Entropy (8bit): | 3.9888186908524226 |
Encrypted: | false |
SSDEEP: | 48:8IdFTNloHVidAKZdA1FehwiZUklqehqy+3:8S/O9y |
MD5: | 8ADC1726C5C5BD027833C6B711D4AD9E |
SHA1: | ACA8F809A02F00CABE8328B5A16319CE3176F28E |
SHA-256: | D624005E9336DC0F52B4DD852D0DE9F34DDEC2E37256B4E0DE2395954F57D6E6 |
SHA-512: | 6F0101F05496A0D1A85375A8E942FFCB110EF7D2617C6AE73AEA6699D1EE9C59FC4C3F6C6DA4802B4D05F5A32D1BA344891EC41A368547470E4471EC5C41F43F |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2675 |
Entropy (8bit): | 4.003645433607408 |
Encrypted: | false |
SSDEEP: | 48:8idFTNloHVidAKZdA1seh/iZUkAQkqehty+2:8Q/o9QAy |
MD5: | 3622CE477772324A8CCDAA611EC3D1EA |
SHA1: | 837ED33ABCE2293707C014CD938E0C449C1E5F3A |
SHA-256: | 11E46637F8A26C478BE252424F3BCD0877D9BA09A673F718BD931F02A2B8C457 |
SHA-512: | 67EB912CFB189C4D7C52CF8A79DBC5663B126ECC50934897605754613DA1647C5A0890476B2D5BBE11356EFE8CA312747E7A55E465F978858BD0183916A63A9E |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2689 |
Entropy (8bit): | 4.010162883893493 |
Encrypted: | false |
SSDEEP: | 48:8idFTNlAHVidAKZdA14meh7sFiZUkmgqeh7s7y+BX:8Q/MnBy |
MD5: | 473BF3FDE7DAB81BE522F3E979ADC13E |
SHA1: | 682FCCDAE917E02FAFF05536CC47880B6791701C |
SHA-256: | 2B0A1CD8317C49B88BFE9C45702987FE21348CB68AAFCB28758ABED50F833B6E |
SHA-512: | 8F8D6E5FD668176E7D716585ECD1F96A07840226EB4583B2432FCCB0BB735D15D4831C067C1BBF42B5A5FB257C491EF16DAC39187BD243AFFE7F33C84359BD5D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2677 |
Entropy (8bit): | 4.001732890258126 |
Encrypted: | false |
SSDEEP: | 48:8kdFTNloHVidAKZdA1TehDiZUkwqehpy+R:8+/DDy |
MD5: | EAE8309E37EC667FC22DEEB668BAA3F6 |
SHA1: | B162E1DE08280C037DCA7DA7B4390B56F49D2FDA |
SHA-256: | AF29EC033D2D6E7FFF8FCFEE245298F2F699E992F2CD2C88144CBED6562D775B |
SHA-512: | C52CDE64AC726E1B2C81B4BA0B3247AF51D0FAA875C68CB6F2CEB1891F8D50176355D9236C64C37824DA558583982738934CD5E11D7BB9EE2EEEA054AB690835 |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2677 |
Entropy (8bit): | 3.9878951723987157 |
Encrypted: | false |
SSDEEP: | 48:8hdFTNloHVidAKZdA1dehBiZUk1W1qeh/y+C:8p/z9fy |
MD5: | 9930E9027B1EBE9F1CBEAFB3A8DD7801 |
SHA1: | 37508930205578420BFEC5DCF1C21B8371551A1B |
SHA-256: | 307D457230F9ED31F0A3F1113174B85553F7C74201564AB4FFDF477845BE0E37 |
SHA-512: | A799D107D0AC3E5024367C81F628E2891DE590A4F2322CBDDB3ED893A78669026CDDAC77AF68C2218F1A683F47F90D9449A15017A2CCB7C415F0BDC4AF0F3F7D |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2679 |
Entropy (8bit): | 3.999646754753317 |
Encrypted: | false |
SSDEEP: | 48:8SdFTNloHVidAKZdA1duTeehOuTbbiZUk5OjqehOuTbBy+yT+:8A/XTfTbxWOvTbBy7T |
MD5: | A819D0F7CD724AE3A5AE6D93A1F3CD46 |
SHA1: | 204A047C8B848D691911E65333A9C1C658FBDFE0 |
SHA-256: | 3CC08A0058C4FDE62E1ACCF64BC0E6AE90D1E8BD5A3419F42DD9C1F4A57D7868 |
SHA-512: | 34012D284337191CE1F135F989380B7A3AC7E14D62D5BCC1092881718D7E2F0A3E11FA111D512E75B1DAF8D73F1F328CDCF90B284770A84D7CD1F7A75E516BC0 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 89501 |
Entropy (8bit): | 5.289893677458563 |
Encrypted: | false |
SSDEEP: | 1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn |
MD5: | 8FB8FEE4FCC3CC86FF6C724154C49C42 |
SHA1: | B82D238D4E31FDF618BAE8AC11A6C812C03DD0D4 |
SHA-256: | FF1523FB7389539C84C65ABA19260648793BB4F5E29329D2EE8804BC37A3FE6E |
SHA-512: | F3DE1813A4160F9239F4781938645E1589B876759CD50B7936DBD849A35C38FFAED53F6A61DBDD8A1CF43CF4A28AA9FFFBFDDEEC9A3811A1BB4EE6DF58652B31 |
Malicious: | false |
URL: | https://code.jquery.com/jquery-3.6.0.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 61 |
Entropy (8bit): | 4.014960565232003 |
Encrypted: | false |
SSDEEP: | 3:yionv//thPlRgt/2/l/xl/k4E08up:6v/lhP8tO17Tp |
MD5: | 68520001D3F7CD77C1F0325308DA9B8A |
SHA1: | 9468031734CC25887ABC46C552A0D4C391C271F5 |
SHA-256: | AD6ED41475F00361628D1D7298251EB3CE6034A24A1864B9C05F225E8A32D152 |
SHA-512: | 74C7D6EE28F83E72A4706049F46290C4B7EF9D86BFB82D18E39AEF1D8BD32ADC8198EC5EAADE5FC468ED32B835C87EBFE4499470E3760255CAA94ADA56F48BB8 |
Malicious: | false |
URL: | https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/888a0b630ed98c1b/1716519723558/wlYn9sv82zuVieG |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 61 |
Entropy (8bit): | 4.014960565232003 |
Encrypted: | false |
SSDEEP: | 3:yionv//thPlRgt/2/l/xl/k4E08up:6v/lhP8tO17Tp |
MD5: | 68520001D3F7CD77C1F0325308DA9B8A |
SHA1: | 9468031734CC25887ABC46C552A0D4C391C271F5 |
SHA-256: | AD6ED41475F00361628D1D7298251EB3CE6034A24A1864B9C05F225E8A32D152 |
SHA-512: | 74C7D6EE28F83E72A4706049F46290C4B7EF9D86BFB82D18E39AEF1D8BD32ADC8198EC5EAADE5FC468ED32B835C87EBFE4499470E3760255CAA94ADA56F48BB8 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 227 |
Entropy (8bit): | 5.017039939462366 |
Encrypted: | false |
SSDEEP: | 6:qF/xDWuPxm9/UAY8PXIfmFriNVEpkdBkd4NGh:sWuZY/Ur8PXIfQriNVEbd4NGh |
MD5: | 7F4AEC285360BA6EC139352A3D0B9595 |
SHA1: | 4E375F3E46CE77836BE035BAD5DFE828107F299D |
SHA-256: | 246A5EA1A2E698CFEAB6F4C1B384D31BC6B8C0E2FAF3F56FB2ADC7CB2D638D6C |
SHA-512: | 6A1E80ED522FC0CB2CC4D258237E04B8BF07C5D945278D6764E9628F353DECCBFA8B3E2FD34B96D67B4FCE7498ABC469140405C87F2B362EFBDA80F66863F915 |
Malicious: | false |
URL: | https://cloudbyteit.co.za/play/ |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 42527 |
Entropy (8bit): | 5.373234803143812 |
Encrypted: | false |
SSDEEP: | 768:NCoLEBOnQowmmxCsbE95NdDid29P4DY88fvO959F1DQ+aohLyKoS4Hnla5KX5:qWQowHxCsQ919P0959vk |
MD5: | C667700BE084108F8DEDED9026FFBBF9 |
SHA1: | 31D633A11EF13A66787EC6504E38C11842664B7B |
SHA-256: | E158035A6F740B0245A027BF0D559C56782EBBEEC7CAB5A827083BD16AA47901 |
SHA-512: | 9EEA0C81A4D7E7ED7EE7F30A53B5AA93C356129D9850AE978A6D408F0B1337F3E9FCEDE25C996DCA3A2AC9840B86B4D821CD0A9DFFCF8BC427A730F420F33891 |
Malicious: | false |
URL: | https://challenges.cloudflare.com/turnstile/v0/b/695da7821231/api.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 61 |
Entropy (8bit): | 3.990210155325004 |
Encrypted: | false |
SSDEEP: | 3:yionv//thPltV/CI7syxl/k4E08up:6v/lhPgI17Tp |
MD5: | 9246CCA8FC3C00F50035F28E9F6B7F7D |
SHA1: | 3AA538440F70873B574F40CD793060F53EC17A5D |
SHA-256: | C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84 |
SHA-512: | A2098304D541DF4C71CDE98E4C4A8FB1746D7EB9677CEBA4B19FF522EFDD981E484224479FD882809196B854DBC5B129962DBA76198D34AAECF7318BD3736C6B |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 61 |
Entropy (8bit): | 3.990210155325004 |
Encrypted: | false |
SSDEEP: | 3:yionv//thPltV/CI7syxl/k4E08up:6v/lhPgI17Tp |
MD5: | 9246CCA8FC3C00F50035F28E9F6B7F7D |
SHA1: | 3AA538440F70873B574F40CD793060F53EC17A5D |
SHA-256: | C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84 |
SHA-512: | A2098304D541DF4C71CDE98E4C4A8FB1746D7EB9677CEBA4B19FF522EFDD981E484224479FD882809196B854DBC5B129962DBA76198D34AAECF7318BD3736C6B |
Malicious: | false |
URL: | https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 5154 |
Entropy (8bit): | 5.761495062456314 |
Encrypted: | false |
SSDEEP: | 96:EjcbAkrVlmMoYevo6T1aN/oOucBNXPpayjoHFL5vfAZam0F:EIL56o06/oUTEOorvf8O |
MD5: | 9E11C21F9EBBD97A08F487387120B53B |
SHA1: | D57976B43048E9DFB475808D7A16FD7380324728 |
SHA-256: | 5E897E0BF25A897AC60AF57E98F3CC722AF4C7731BA9FE58C1270D99E2EB6CC2 |
SHA-512: | 51D235E30ACBA8FAD8DB67758E1E1D8301598CF3C8FBCC216179FCAB5F70A322917FE023F61544D9106DBDAEEEE12D43AB6E1A444A4C18EF518A06E417415402 |
Malicious: | false |
URL: | https://ztyw.kensteg.com/82jPIO/ |
Preview: |
File type: | |
Entropy (8bit): | 7.990092247733616 |
TrID: |
|
File name: | attach_request_478000006439785.zip |
File size: | 21'280 bytes |
MD5: | 1a4840954efb2ca69ef76b13b84bc28d |
SHA1: | 2ad17c46395439bb22cd5e5aa6fb4c71cea2ddf4 |
SHA256: | 911ad9a6db8c1c6bfe00516dcdb045163c39f16e8caa08e1f494f0a550fa23d5 |
SHA512: | e548e9f0a25e0455eae6cbdafdce9c927373f739fe6614e7bafb57c724f432f9c1c2b424992e4b62e236de0ecd468e9700eab800622b82fec2664db8a9a585f5 |
SSDEEP: | 384:Vb3OSEEZNj/x6vTWtvle73jjwCxvXtwjhCOFxSM7hgU31+E/dkDweIV+:Vb/v/QvTsszjwCwjhCuSCh0E/dkDwej |
TLSH: | D6A2D1830C75A0469558D921E1F89C380B2BFD21C39D2568C16DEA13767B4BAFED6ECC |
File Content Preview: | PK.........g.X............@...Aged Care Quality And Safety Commission_Payment Review#0772-.pdf...X.....!.-@p...:3...w.....5@.\C..............._.Y....y...33.]].R..US..P...0..Y...f.T......I.....@{....I..P..j.....c.c.c.c.c......1.1...0.0..a@..l..r.P..}.?D... |
Icon Hash: | 1c1c1e4e4ececedc |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
May 24, 2024 05:01:42.962177992 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
May 24, 2024 05:01:43.264705896 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
May 24, 2024 05:01:43.870517969 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
May 24, 2024 05:01:45.078556061 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
May 24, 2024 05:01:45.594022036 CEST | 49688 | 443 | 192.168.2.16 | 2.23.209.133 |
May 24, 2024 05:01:47.356312990 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:47.356360912 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:47.356625080 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:47.358530045 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:47.358608961 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:47.489602089 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
May 24, 2024 05:01:48.155385971 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.155533075 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.159431934 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.159451962 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.159862041 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.208482027 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.220278978 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.266499996 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.516877890 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.516938925 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.516963005 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.517002106 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.517030001 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.517045021 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.517087936 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.517126083 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.517126083 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.517158985 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.529311895 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.529427052 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.529448032 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.529499054 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.529583931 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.531404972 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.531444073 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:48.531471014 CEST | 49703 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:01:48.531486988 CEST | 443 | 49703 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:01:49.389333010 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:49.389372110 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:49.389503956 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:49.390790939 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:49.390810013 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.043039083 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.043171883 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.046137094 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.046155930 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.046432018 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.090517998 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.093446016 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.138525963 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.338078976 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.338252068 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.338279009 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.338313103 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.338327885 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.338327885 CEST | 49704 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.338337898 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.338345051 CEST | 443 | 49704 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.406606913 CEST | 49705 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.406636953 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:50.406721115 CEST | 49705 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.407141924 CEST | 49705 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:50.407156944 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:51.065385103 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:51.065471888 CEST | 49705 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:51.066468954 CEST | 49705 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:51.066476107 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:51.066802025 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:51.067755938 CEST | 49705 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:51.114494085 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:51.127849102 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
May 24, 2024 05:01:51.352461100 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:51.352638006 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:51.352685928 CEST | 49705 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:51.353884935 CEST | 49705 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:51.353904963 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:51.353919983 CEST | 49705 | 443 | 192.168.2.16 | 184.28.90.27 |
May 24, 2024 05:01:51.353925943 CEST | 443 | 49705 | 184.28.90.27 | 192.168.2.16 |
May 24, 2024 05:01:51.429541111 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
May 24, 2024 05:01:52.033510923 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
May 24, 2024 05:01:52.303631067 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
May 24, 2024 05:01:53.241518021 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
May 24, 2024 05:01:54.941592932 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:54.941636086 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:54.941696882 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:54.941932917 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:54.941976070 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:55.594736099 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
May 24, 2024 05:01:55.642519951 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
May 24, 2024 05:01:55.897578001 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
May 24, 2024 05:01:55.918221951 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:55.918576002 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:55.918598890 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:55.919570923 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:55.919644117 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:55.920646906 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:55.920715094 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:55.920871973 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:55.960520983 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:55.960539103 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:56.006525040 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:56.498526096 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
May 24, 2024 05:01:56.508862972 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:56.508950949 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:56.509017944 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:56.509393930 CEST | 49712 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:56.509418011 CEST | 443 | 49712 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:56.511507034 CEST | 49717 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:56.511589050 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:56.511683941 CEST | 49717 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:56.511888027 CEST | 49717 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:56.511925936 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:57.375760078 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:01:57.375797033 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:01:57.375865936 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:01:57.376051903 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:01:57.376061916 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:01:57.524956942 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:57.525702000 CEST | 49717 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:57.525768042 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:57.526112080 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:57.526421070 CEST | 49717 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:57.526503086 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:57.526546001 CEST | 49717 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:57.574501038 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:57.578650951 CEST | 49717 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:57.704502106 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
May 24, 2024 05:01:58.043447018 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:01:58.045488119 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:01:58.045547009 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:01:58.046816111 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:01:58.046900034 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:01:58.047840118 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:01:58.047913074 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:01:58.087543964 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:01:58.087603092 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:01:58.132622957 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:58.138406038 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:01:58.139018059 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:58.139091015 CEST | 49717 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:58.163898945 CEST | 49717 | 443 | 192.168.2.16 | 41.185.8.68 |
May 24, 2024 05:01:58.163938046 CEST | 443 | 49717 | 41.185.8.68 | 192.168.2.16 |
May 24, 2024 05:01:58.244230986 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.244275093 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.244522095 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.244649887 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.244709969 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.244822979 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.244843006 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.244853020 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.245054960 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.245088100 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.742264032 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.742541075 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.742579937 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.743482113 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.743556976 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.744430065 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.744492054 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.744584084 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.744600058 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.752331972 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.752521038 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.752556086 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.753596067 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.753662109 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.753901005 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.753961086 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.796521902 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.796535015 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:58.796551943 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:58.845766068 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:59.276169062 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:59.277827978 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:59.277848959 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:59.277898073 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:59.277937889 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:59.278002977 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:59.281194925 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:59.281280041 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:59.281358004 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:59.281538963 CEST | 49720 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:01:59.281567097 CEST | 443 | 49720 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:01:59.370019913 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:01:59.370062113 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:01:59.370155096 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:01:59.370214939 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:01:59.370306969 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:01:59.370372057 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:01:59.370393038 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:01:59.370410919 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:01:59.370646000 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:01:59.370676994 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:01:59.865390062 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:01:59.865664959 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:01:59.865701914 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:01:59.865736008 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:01:59.865921021 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:01:59.865948915 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:01:59.866796017 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:01:59.866864920 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:01:59.867590904 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:01:59.867655993 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:01:59.868894100 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:01:59.868977070 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:01:59.869148016 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:01:59.869162083 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:01:59.869291067 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:01:59.869379997 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:01:59.869416952 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:01:59.914537907 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:01:59.915493011 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:01:59.915570021 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:01:59.915606976 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:01:59.963613033 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.009743929 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.009974957 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.010140896 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.010241032 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.010270119 CEST | 443 | 49722 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.010287046 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.010335922 CEST | 49722 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.011733055 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.011755943 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.011815071 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.012733936 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.012749910 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.014605999 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.016956091 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.017015934 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.017054081 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.020764112 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.020885944 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.020895958 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.023345947 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.023395061 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.023407936 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.025949001 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.026026964 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.026035070 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.028359890 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.028417110 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.028424978 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.031848907 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.031914949 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.031948090 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.075516939 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.105382919 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.107587099 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
May 24, 2024 05:02:00.108167887 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.108195066 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.108248949 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.108270884 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.108331919 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.109416008 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.111835003 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.111862898 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.111887932 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.111898899 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.111974955 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.114239931 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.116643906 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.116666079 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.116703033 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.116713047 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.116992950 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.118587017 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.120574951 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.120599031 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.120621920 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.120641947 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.120820045 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.122467041 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.124428988 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.124630928 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.124653101 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.126377106 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.126403093 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.126451969 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.126465082 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.126523972 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.128092051 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.129849911 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.129870892 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.129894018 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.129904032 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.130044937 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.163706064 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.200051069 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.200109959 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.200133085 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.201298952 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.201361895 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.201370001 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.202336073 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.202404022 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.202411890 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.211860895 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.211883068 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.211911917 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.211925030 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.211934090 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.211955070 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.211987972 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.216444016 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.216485977 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.216499090 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.216511965 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.216552019 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.216558933 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.216711044 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.216757059 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.216938019 CEST | 49721 | 443 | 192.168.2.16 | 151.101.130.137 |
May 24, 2024 05:02:00.216954947 CEST | 443 | 49721 | 151.101.130.137 | 192.168.2.16 |
May 24, 2024 05:02:00.443516970 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
May 24, 2024 05:02:00.489856958 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.490123987 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.490156889 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.491281033 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.491641045 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.491769075 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.491777897 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.491808891 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.539627075 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.670594931 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.672002077 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.672077894 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.672142029 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.674967051 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.675059080 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.675074100 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.676084042 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.676141977 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.676153898 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.681485891 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.681566954 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.681592941 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.681606054 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.681669950 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.685475111 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.730633020 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.730665922 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.758136988 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.758275986 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.758307934 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.758976936 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.759146929 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.759164095 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.761310101 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.761359930 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.761372089 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.762195110 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.762259007 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.762270927 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.764504910 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.764578104 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.764589071 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.764611959 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.764653921 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.765785933 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.767055035 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.767118931 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.767128944 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.769623995 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.769685030 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.769695997 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.770507097 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.770581961 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.770592928 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.772099972 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.772192955 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.772197008 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.772212982 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.772263050 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.772273064 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.772392988 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.772448063 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.772449017 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.824837923 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.824868917 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:00.824930906 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.825119972 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:00.825124025 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.079619884 CEST | 49723 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.079659939 CEST | 443 | 49723 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.295101881 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.295342922 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.295351028 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.296214104 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.296281099 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.296545029 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.296600103 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.296665907 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.342500925 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.351495981 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.351502895 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.399502993 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.506298065 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.507008076 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.507061005 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.507199049 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.507206917 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.507287025 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.508274078 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.509641886 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.510086060 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.510091066 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.511631966 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.512291908 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.512310982 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.512420893 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.512420893 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.512427092 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.529104948 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.529150963 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.529228926 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.534287930 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.534302950 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.559503078 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.594677925 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.596009016 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.596035957 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.596060038 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.596065044 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.596465111 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.597165108 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.598361015 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.598381996 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.598469019 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.598473072 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.598594904 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.599503994 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.600152016 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.600266933 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.600270987 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.601324081 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.601421118 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.601423979 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.602562904 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.602689028 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.602693081 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.603437901 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.603713989 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.603717089 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.604423046 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.604520082 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.604523897 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.655551910 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.655558109 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.684274912 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.684381008 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.684386969 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.685786963 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.685810089 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.685832024 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.685836077 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.685969114 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.686835051 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.687424898 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.687553883 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.687558889 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.688488007 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.688592911 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.688596964 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.690623045 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.690720081 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.690723896 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.690891981 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.691742897 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.691870928 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.692552090 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.692651033 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.693453074 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.693552017 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.695146084 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.695230961 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.696038961 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.696134090 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.696940899 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.696991920 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.696991920 CEST | 49726 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.697006941 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.697020054 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.697067976 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.697076082 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.697076082 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.697083950 CEST | 443 | 49724 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.697091103 CEST | 49726 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.697108984 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.697108984 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.697293997 CEST | 49724 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.697448015 CEST | 49726 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:01.697464943 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:01.911693096 CEST | 49673 | 443 | 192.168.2.16 | 204.79.197.203 |
May 24, 2024 05:02:02.084496021 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.084832907 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.084846973 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.085931063 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.086213112 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.086338997 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.086344004 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.086390972 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.134852886 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.258279085 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.258729935 CEST | 49726 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.258743048 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.259196997 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.259568930 CEST | 49726 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.259658098 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.259716034 CEST | 49726 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.292707920 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.292773008 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.292960882 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.293005943 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.293052912 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.293065071 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.293207884 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.293674946 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.294034004 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.295682907 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.298612118 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.298768997 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.298780918 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.305005074 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.305104017 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.305114985 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.306490898 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.311142921 CEST | 49726 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.358531952 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.358551979 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.386670113 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.387032986 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.387044907 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.387166977 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.387481928 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.387490988 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.388420105 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.388921976 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.388963938 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.388971090 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.389278889 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.389364958 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.390300989 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.390434027 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.390441895 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.391221046 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.391305923 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.391433001 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.391441107 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.391699076 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.391762018 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.392683029 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.393539906 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.393593073 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.393599987 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.393647909 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.393663883 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.394368887 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.394464016 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.394469976 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.395255089 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.395545959 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.395553112 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.396111012 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.396207094 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.396214008 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.438507080 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.467545033 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.467621088 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.467778921 CEST | 49726 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.470299959 CEST | 49726 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.470314980 CEST | 443 | 49726 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.525587082 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:02.525602102 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.525631905 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:02.525707006 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:02.525953054 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:02.525979042 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:02.526194096 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.526268005 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.526274920 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.526356936 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.526408911 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.526413918 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.528645039 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.528667927 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.528712034 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.528717995 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.528769970 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.529898882 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.529962063 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.529967070 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.530013084 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.530018091 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.530599117 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.530683041 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.530690908 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.531419039 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.531615019 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.531771898 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.532622099 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.532685041 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.533624887 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.534288883 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.535586119 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.535669088 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.535672903 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.535703897 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.535773993 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.536623955 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.536741972 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.536748886 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.537462950 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.537647009 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.537784100 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.538711071 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.539119005 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.539665937 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.539758921 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.541243076 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.541585922 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.618686914 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.619385958 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.619538069 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.619723082 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.620867014 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.620956898 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.620961905 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.620994091 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.621031046 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.621031046 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.621902943 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.621963024 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.622905970 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.622992992 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.623898983 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.623982906 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.624902010 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.625029087 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.625897884 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.625953913 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.626753092 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.626811981 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.628186941 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.628272057 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.628279924 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.628350973 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.628357887 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.628413916 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.629024982 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.629106045 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.629802942 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.629985094 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.630608082 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.630686045 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.631385088 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.632364035 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.632989883 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.633059978 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.633076906 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.633100986 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.633131027 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.633199930 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.634557962 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.634650946 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.635282040 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.635371923 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.635428905 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.635435104 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.635452986 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.636272907 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.636337996 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.636352062 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.636406898 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.637269020 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.637348890 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.637357950 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.637383938 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.637433052 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.637433052 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.638202906 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.638402939 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.639101028 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.639178991 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.665725946 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.665900946 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.712289095 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.712362051 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.712409019 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.712450981 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.712457895 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.712510109 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.712510109 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.714241028 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.714327097 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.714390993 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.714390993 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.714396000 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.714478016 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.717175961 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.717220068 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.717248917 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.717253923 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.717272997 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.717307091 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.719105005 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.719146967 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.719181061 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.719194889 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.719208002 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.719242096 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.721978903 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.722018957 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.722060919 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.722065926 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.722094059 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.722110987 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.723946095 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.723985910 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.724559069 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.724565983 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.725737095 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.725821018 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.726924896 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.726933002 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.727003098 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.804708004 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.804722071 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.805036068 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.805042982 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.805097103 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.806978941 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.806998014 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.807046890 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.807054043 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.807096958 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.809741020 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.809752941 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.809828043 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.809842110 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.809885025 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.813200951 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.813226938 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.813278913 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.813287973 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.813302040 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.813334942 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.813764095 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.813802004 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.813838959 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.813844919 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.813877106 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.813894033 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.814856052 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.814876080 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.814929962 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.814934969 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.814948082 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.814976931 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.814979076 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.814991951 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.815026999 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.815042019 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.815047026 CEST | 443 | 49725 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.815099955 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.815109968 CEST | 49725 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.893610954 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:02:02.934499025 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:02:02.974706888 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.974791050 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:02.974880934 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.975070000 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:02.975087881 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.026809931 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:02:03.026917934 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:02:03.026966095 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:02:03.027534962 CEST | 49719 | 443 | 192.168.2.16 | 172.67.153.178 |
May 24, 2024 05:02:03.027551889 CEST | 443 | 49719 | 172.67.153.178 | 192.168.2.16 |
May 24, 2024 05:02:03.035140991 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:03.035512924 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.035573959 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:03.037209988 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:03.037295103 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.037592888 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.037698984 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.037699938 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:03.077653885 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.077712059 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:03.087344885 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.087371111 CEST | 443 | 49730 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.087456942 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.087670088 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.087691069 CEST | 443 | 49730 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.125650883 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.247811079 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:03.247875929 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:03.247947931 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.248591900 CEST | 49727 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.248631001 CEST | 443 | 49727 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:03.481657982 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.481976032 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.482011080 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.482341051 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.482806921 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.482880116 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.482963085 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.483045101 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.483063936 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.643866062 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.647586107 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.647615910 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.647741079 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.647800922 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.650346994 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.659315109 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.667011023 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.667035103 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.667090893 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.667131901 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.667252064 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.672785997 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.672833920 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.672877073 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.672930956 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.687719107 CEST | 443 | 49730 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.687947035 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.687974930 CEST | 443 | 49730 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.688873053 CEST | 443 | 49730 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.689007044 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.689892054 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.689969063 CEST | 443 | 49730 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.690048933 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.690059900 CEST | 443 | 49730 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.712552071 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.712610960 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.733686924 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.733827114 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.733844995 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.736319065 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.736382961 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.736396074 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.742994070 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.743015051 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.743079901 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.743093967 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.743499994 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.743520975 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.747126102 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.751236916 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.751256943 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.751322985 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.751337051 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.752635956 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.755378008 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.759125948 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.759146929 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.759186029 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.759201050 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.759569883 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.762296915 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.765544891 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.765569925 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.765614033 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.765628099 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.765840054 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.768600941 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.771720886 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.771742105 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.771775961 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.771789074 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.771951914 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.774811983 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.822565079 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.822632074 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.822846889 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.822926998 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.822945118 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.825179100 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.826342106 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.826358080 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.830342054 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.830354929 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.830403090 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.830419064 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.832920074 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.832997084 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.833009958 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.834316015 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.835403919 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.839742899 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.839824915 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.839838982 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.839966059 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.842468023 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.842560053 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.846010923 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.846080065 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.846950054 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.847029924 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.850507021 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.850589037 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.853951931 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.854034901 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.855223894 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.855302095 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.856967926 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.857045889 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.859483957 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.859699965 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.860763073 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.860827923 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.862673998 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.862742901 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.877047062 CEST | 443 | 49730 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.877454996 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.877552032 CEST | 443 | 49730 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.877615929 CEST | 49730 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.878041983 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.878082991 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.879779100 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.880278111 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:03.880294085 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:03.912808895 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.912904024 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.913767099 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.913832903 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.916311026 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.916373014 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.916378021 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.916419983 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.916573048 CEST | 49729 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:03.916611910 CEST | 443 | 49729 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:03.920345068 CEST | 49734 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.920427084 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:03.920586109 CEST | 49734 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.920825958 CEST | 49734 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:03.920865059 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:04.297454119 CEST | 49736 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.297486067 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.297883034 CEST | 49736 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.298001051 CEST | 49736 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.298007011 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.353462934 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:04.353821039 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:04.353847027 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:04.355334044 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:04.355499983 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:04.355722904 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:04.355815887 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:04.355891943 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:04.355901003 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:04.407592058 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:04.438236952 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:04.438544989 CEST | 49734 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:04.438601971 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:04.439129114 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:04.442676067 CEST | 49734 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:04.442796946 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:04.442836046 CEST | 49734 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:04.487574100 CEST | 49734 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:04.487603903 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:04.490186930 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:04.490288973 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:04.490510941 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:04.490537882 CEST | 443 | 49733 | 35.190.80.1 | 192.168.2.16 |
May 24, 2024 05:02:04.490549088 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:04.492295027 CEST | 49733 | 443 | 192.168.2.16 | 35.190.80.1 |
May 24, 2024 05:02:04.664604902 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:04.664685011 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:04.664753914 CEST | 49734 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:04.665577888 CEST | 49734 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:04.665615082 CEST | 443 | 49734 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:04.766813040 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.767075062 CEST | 49736 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.767087936 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.768172026 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.768452883 CEST | 49736 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.768579960 CEST | 49736 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.768584967 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.768682003 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.821508884 CEST | 49736 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.917522907 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
May 24, 2024 05:02:04.921040058 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.921349049 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.921408892 CEST | 49736 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.922846079 CEST | 49736 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.922859907 CEST | 443 | 49736 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.926934004 CEST | 49737 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.926956892 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:04.927011967 CEST | 49737 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.927201033 CEST | 49737 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:04.927213907 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.457104921 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.457375050 CEST | 49737 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:05.457392931 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.457712889 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.458000898 CEST | 49737 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:05.458059072 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.458225012 CEST | 49737 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:05.502492905 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.647479057 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.647574902 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.647664070 CEST | 49737 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:05.648401976 CEST | 49737 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:05.648428917 CEST | 443 | 49737 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.654438019 CEST | 49738 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:05.654527903 CEST | 443 | 49738 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:05.656768084 CEST | 49738 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:05.656949043 CEST | 49738 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:05.656981945 CEST | 443 | 49738 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:05.995559931 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:05.995608091 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:05.995908976 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:05.995908976 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:05.995945930 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.192980051 CEST | 443 | 49738 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:06.193275928 CEST | 49738 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:06.193305016 CEST | 443 | 49738 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:06.193633080 CEST | 443 | 49738 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:06.194070101 CEST | 49738 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:06.194070101 CEST | 49738 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:06.194129944 CEST | 443 | 49738 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:06.236530066 CEST | 49738 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:06.384669065 CEST | 443 | 49738 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:06.384773016 CEST | 443 | 49738 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:06.385126114 CEST | 49738 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:06.386302948 CEST | 49738 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:06.386346102 CEST | 443 | 49738 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:06.476900101 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.477550030 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.477559090 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.478063107 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.478339911 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.478416920 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.478502989 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.478580952 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.478604078 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.478746891 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.478769064 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.722666025 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.722716093 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.722867966 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.722877026 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.729835987 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.730278969 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.730287075 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.732342005 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.732379913 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.732414961 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.732419968 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.732455969 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.737143040 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.741991043 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.742024899 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.742034912 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.742042065 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.742084980 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.810923100 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.815866947 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.815903902 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.815922022 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.815927029 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.815962076 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.820607901 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.820736885 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.820772886 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.820833921 CEST | 49739 | 443 | 192.168.2.16 | 104.17.2.184 |
May 24, 2024 05:02:06.820847988 CEST | 443 | 49739 | 104.17.2.184 | 192.168.2.16 |
May 24, 2024 05:02:06.823815107 CEST | 49740 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:06.823904037 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:06.823998928 CEST | 49740 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:06.824167013 CEST | 49740 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:06.824203968 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:07.374870062 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:07.375205040 CEST | 49740 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:07.375266075 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:07.375581026 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:07.375866890 CEST | 49740 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:07.375935078 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:07.375966072 CEST | 49740 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:07.415640116 CEST | 49740 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:07.415697098 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:07.546892881 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:07.546960115 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:07.547188044 CEST | 49740 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:07.547486067 CEST | 49740 | 443 | 192.168.2.16 | 104.17.3.184 |
May 24, 2024 05:02:07.547525883 CEST | 443 | 49740 | 104.17.3.184 | 192.168.2.16 |
May 24, 2024 05:02:07.947175026 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:02:07.947263956 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:02:07.947354078 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:02:09.363979101 CEST | 49718 | 443 | 192.168.2.16 | 142.250.184.228 |
May 24, 2024 05:02:09.364017963 CEST | 443 | 49718 | 142.250.184.228 | 192.168.2.16 |
May 24, 2024 05:02:10.049542904 CEST | 49678 | 443 | 192.168.2.16 | 20.189.173.10 |
May 24, 2024 05:02:14.521559954 CEST | 49680 | 80 | 192.168.2.16 | 192.229.211.108 |
May 24, 2024 05:02:24.929713011 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:24.929795980 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:24.929913998 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:24.930295944 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:24.930329084 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:25.775782108 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:25.775914907 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:25.779742956 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:25.779771090 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:25.780710936 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:25.789819956 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:25.834487915 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.142210960 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.142280102 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.142391920 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:26.142455101 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.142570019 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:26.161690950 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.161815882 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:26.161822081 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.161880016 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.161941051 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:26.161993027 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:26.161994934 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.162018061 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:26.162036896 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.162055969 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:02:26.162080050 CEST | 49741 | 443 | 192.168.2.16 | 40.127.169.103 |
May 24, 2024 05:02:26.162091017 CEST | 443 | 49741 | 40.127.169.103 | 192.168.2.16 |
May 24, 2024 05:03:16.104974985 CEST | 49698 | 80 | 192.168.2.16 | 192.229.221.95 |
May 24, 2024 05:03:16.110662937 CEST | 80 | 49698 | 192.229.221.95 | 192.168.2.16 |
May 24, 2024 05:03:16.110788107 CEST | 49698 | 80 | 192.168.2.16 | 192.229.221.95 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
May 24, 2024 05:01:52.860955954 CEST | 51511 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:52.861171007 CEST | 65533 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:52.888633966 CEST | 53 | 51919 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:52.918304920 CEST | 53 | 57566 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:53.992216110 CEST | 53 | 51278 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:54.316129923 CEST | 49475 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:54.316438913 CEST | 60001 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:54.910657883 CEST | 53 | 49475 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:54.941040993 CEST | 53 | 60001 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:57.361300945 CEST | 51930 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:57.361422062 CEST | 51434 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:57.368336916 CEST | 53 | 51930 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:57.375066042 CEST | 53 | 51434 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:58.174758911 CEST | 54677 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:58.174887896 CEST | 62484 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:58.243474960 CEST | 53 | 62484 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:58.243522882 CEST | 53 | 54677 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:59.289974928 CEST | 58215 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:59.290278912 CEST | 61462 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:59.290690899 CEST | 51019 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:59.290802956 CEST | 49942 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:01:59.369259119 CEST | 53 | 51019 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:59.369294882 CEST | 53 | 61462 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:59.369323969 CEST | 53 | 49942 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:01:59.369350910 CEST | 53 | 58215 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:02:00.781908989 CEST | 50425 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:02:00.782253027 CEST | 58948 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:02:00.824218988 CEST | 53 | 58948 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:02:00.824255943 CEST | 53 | 50425 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:02:02.470937967 CEST | 51908 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:02:02.471405029 CEST | 53513 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:02:02.524950027 CEST | 53 | 51908 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:02:02.524987936 CEST | 53 | 53513 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:02:03.028198004 CEST | 53481 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:02:03.028342009 CEST | 65468 | 53 | 192.168.2.16 | 1.1.1.1 |
May 24, 2024 05:02:03.086817026 CEST | 53 | 65468 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:02:03.086847067 CEST | 53 | 53481 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:02:10.975267887 CEST | 53 | 50697 | 1.1.1.1 | 192.168.2.16 |
May 24, 2024 05:02:47.298935890 CEST | 138 | 138 | 192.168.2.16 | 192.168.2.255 |
Timestamp | Source IP | Dest IP | Checksum | Code | Type |
---|---|---|---|---|---|
May 24, 2024 05:01:52.918781042 CEST | 192.168.2.16 | 1.1.1.1 | c28b | (Port unreachable) | Destination Unreachable |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
May 24, 2024 05:01:52.860955954 CEST | 192.168.2.16 | 1.1.1.1 | 0x459c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
May 24, 2024 05:01:52.861171007 CEST | 192.168.2.16 | 1.1.1.1 | 0xbd84 | Standard query (0) | 65 | IN (0x0001) | false | |
May 24, 2024 05:01:54.316129923 CEST | 192.168.2.16 | 1.1.1.1 | 0x6ed7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
May 24, 2024 05:01:54.316438913 CEST | 192.168.2.16 | 1.1.1.1 | 0xd636 | Standard query (0) | 65 | IN (0x0001) | false | |
May 24, 2024 05:01:57.361300945 CEST | 192.168.2.16 | 1.1.1.1 | 0xadf | Standard query (0) | A (IP address) | IN (0x0001) | false | |
May 24, 2024 05:01:57.361422062 CEST | 192.168.2.16 | 1.1.1.1 | 0xcde9 | Standard query (0) | 65 | IN (0x0001) | false | |
May 24, 2024 05:01:58.174758911 CEST | 192.168.2.16 | 1.1.1.1 | 0x6ef2 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
May 24, 2024 05:01:58.174887896 CEST | 192.168.2.16 | 1.1.1.1 | 0xc38b | Standard query (0) | 65 | IN (0x0001) | false | |
May 24, 2024 05:01:59.289974928 CEST | 192.168.2.16 | 1.1.1.1 | 0xf89c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
May 24, 2024 05:01:59.290278912 CEST | 192.168.2.16 | 1.1.1.1 | 0x8cd3 | Standard query (0) | 65 | IN (0x0001) | false | |
May 24, 2024 05:01:59.290690899 CEST | 192.168.2.16 | 1.1.1.1 | 0x7b12 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
May 24, 2024 05:01:59.290802956 CEST | 192.168.2.16 | 1.1.1.1 | 0x4b7c | Standard query (0) | 65 | IN (0x0001) | false | |
May 24, 2024 05:02:00.781908989 CEST | 192.168.2.16 | 1.1.1.1 | 0xdb36 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
May 24, 2024 05:02:00.782253027 CEST | 192.168.2.16 | 1.1.1.1 | 0x3735 | Standard query (0) | 65 | IN (0x0001) | false | |
May 24, 2024 05:02:02.470937967 CEST | 192.168.2.16 | 1.1.1.1 | 0x19b3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
May 24, 2024 05:02:02.471405029 CEST | 192.168.2.16 | 1.1.1.1 | 0x9d5f | Standard query (0) | 65 | IN (0x0001) | false | |
May 24, 2024 05:02:03.028198004 CEST | 192.168.2.16 | 1.1.1.1 | 0xcc7b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
May 24, 2024 05:02:03.028342009 CEST | 192.168.2.16 | 1.1.1.1 | 0xafce | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
May 24, 2024 05:01:52.882014036 CEST | 1.1.1.1 | 192.168.2.16 | 0x459c | No error (0) | swc.list-manage.com.edgekey.net | CNAME (Canonical name) | IN (0x0001) | false | ||
May 24, 2024 05:01:52.918390989 CEST | 1.1.1.1 | 192.168.2.16 | 0xbd84 | No error (0) | swc.list-manage.com.edgekey.net | CNAME (Canonical name) | IN (0x0001) | false | ||
May 24, 2024 05:01:54.910657883 CEST | 1.1.1.1 | 192.168.2.16 | 0x6ed7 | No error (0) | 41.185.8.68 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:01:57.368336916 CEST | 1.1.1.1 | 192.168.2.16 | 0xadf | No error (0) | 142.250.184.228 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:01:57.375066042 CEST | 1.1.1.1 | 192.168.2.16 | 0xcde9 | No error (0) | 65 | IN (0x0001) | false | |||
May 24, 2024 05:01:58.243474960 CEST | 1.1.1.1 | 192.168.2.16 | 0xc38b | No error (0) | 65 | IN (0x0001) | false | |||
May 24, 2024 05:01:58.243522882 CEST | 1.1.1.1 | 192.168.2.16 | 0x6ef2 | No error (0) | 172.67.153.178 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:01:58.243522882 CEST | 1.1.1.1 | 192.168.2.16 | 0x6ef2 | No error (0) | 104.21.88.225 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:01:59.369259119 CEST | 1.1.1.1 | 192.168.2.16 | 0x7b12 | No error (0) | 104.17.2.184 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:01:59.369259119 CEST | 1.1.1.1 | 192.168.2.16 | 0x7b12 | No error (0) | 104.17.3.184 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:01:59.369323969 CEST | 1.1.1.1 | 192.168.2.16 | 0x4b7c | No error (0) | 65 | IN (0x0001) | false | |||
May 24, 2024 05:01:59.369350910 CEST | 1.1.1.1 | 192.168.2.16 | 0xf89c | No error (0) | 151.101.130.137 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:01:59.369350910 CEST | 1.1.1.1 | 192.168.2.16 | 0xf89c | No error (0) | 151.101.194.137 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:01:59.369350910 CEST | 1.1.1.1 | 192.168.2.16 | 0xf89c | No error (0) | 151.101.2.137 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:01:59.369350910 CEST | 1.1.1.1 | 192.168.2.16 | 0xf89c | No error (0) | 151.101.66.137 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:02:00.824218988 CEST | 1.1.1.1 | 192.168.2.16 | 0x3735 | No error (0) | 65 | IN (0x0001) | false | |||
May 24, 2024 05:02:00.824255943 CEST | 1.1.1.1 | 192.168.2.16 | 0xdb36 | No error (0) | 104.17.2.184 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:02:00.824255943 CEST | 1.1.1.1 | 192.168.2.16 | 0xdb36 | No error (0) | 104.17.3.184 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:02:02.524950027 CEST | 1.1.1.1 | 192.168.2.16 | 0x19b3 | No error (0) | 104.17.3.184 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:02:02.524950027 CEST | 1.1.1.1 | 192.168.2.16 | 0x19b3 | No error (0) | 104.17.2.184 | A (IP address) | IN (0x0001) | false | ||
May 24, 2024 05:02:02.524987936 CEST | 1.1.1.1 | 192.168.2.16 | 0x9d5f | No error (0) | 65 | IN (0x0001) | false | |||
May 24, 2024 05:02:03.086847067 CEST | 1.1.1.1 | 192.168.2.16 | 0xcc7b | No error (0) | 35.190.80.1 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.16 | 49703 | 40.127.169.103 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:01:48 UTC | 306 | OUT | |
2024-05-24 03:01:48 UTC | 560 | IN | |
2024-05-24 03:01:48 UTC | 15824 | IN | |
2024-05-24 03:01:48 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.16 | 49704 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:01:50 UTC | 161 | OUT | |
2024-05-24 03:01:50 UTC | 467 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.16 | 49705 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:01:51 UTC | 239 | OUT | |
2024-05-24 03:01:51 UTC | 515 | IN | |
2024-05-24 03:01:51 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.16 | 49712 | 41.185.8.68 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:01:55 UTC | 664 | OUT | |
2024-05-24 03:01:56 UTC | 215 | IN | |
2024-05-24 03:01:56 UTC | 239 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.16 | 49717 | 41.185.8.68 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:01:57 UTC | 665 | OUT | |
2024-05-24 03:01:58 UTC | 185 | IN | |
2024-05-24 03:01:58 UTC | 238 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.16 | 49720 | 172.67.153.178 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:01:58 UTC | 689 | OUT | |
2024-05-24 03:01:59 UTC | 999 | IN | |
2024-05-24 03:01:59 UTC | 518 | IN | |
2024-05-24 03:01:59 UTC | 1369 | IN | |
2024-05-24 03:01:59 UTC | 1369 | IN | |
2024-05-24 03:01:59 UTC | 1369 | IN | |
2024-05-24 03:01:59 UTC | 1055 | IN | |
2024-05-24 03:01:59 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.16 | 49721 | 151.101.130.137 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:01:59 UTC | 622 | OUT | |
2024-05-24 03:02:00 UTC | 567 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN | |
2024-05-24 03:02:00 UTC | 1378 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.16 | 49722 | 104.17.2.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:01:59 UTC | 648 | OUT | |
2024-05-24 03:02:00 UTC | 336 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.16 | 49723 | 104.17.2.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:00 UTC | 647 | OUT | |
2024-05-24 03:02:00 UTC | 346 | IN | |
2024-05-24 03:02:00 UTC | 1023 | IN | |
2024-05-24 03:02:00 UTC | 1369 | IN | |
2024-05-24 03:02:00 UTC | 1369 | IN | |
2024-05-24 03:02:00 UTC | 1369 | IN | |
2024-05-24 03:02:00 UTC | 1369 | IN | |
2024-05-24 03:02:00 UTC | 1369 | IN | |
2024-05-24 03:02:00 UTC | 1369 | IN | |
2024-05-24 03:02:00 UTC | 1369 | IN | |
2024-05-24 03:02:00 UTC | 1369 | IN | |
2024-05-24 03:02:00 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.16 | 49724 | 104.17.2.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:01 UTC | 789 | OUT | |
2024-05-24 03:02:01 UTC | 1362 | IN | |
2024-05-24 03:02:01 UTC | 82 | IN | |
2024-05-24 03:02:01 UTC | 1294 | IN | |
2024-05-24 03:02:01 UTC | 1369 | IN | |
2024-05-24 03:02:01 UTC | 1369 | IN | |
2024-05-24 03:02:01 UTC | 1369 | IN | |
2024-05-24 03:02:01 UTC | 1369 | IN | |
2024-05-24 03:02:01 UTC | 1369 | IN | |
2024-05-24 03:02:01 UTC | 1369 | IN | |
2024-05-24 03:02:01 UTC | 1369 | IN | |
2024-05-24 03:02:01 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.16 | 49725 | 104.17.2.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:02 UTC | 710 | OUT | |
2024-05-24 03:02:02 UTC | 331 | IN | |
2024-05-24 03:02:02 UTC | 1038 | IN | |
2024-05-24 03:02:02 UTC | 1369 | IN | |
2024-05-24 03:02:02 UTC | 1369 | IN | |
2024-05-24 03:02:02 UTC | 1369 | IN | |
2024-05-24 03:02:02 UTC | 1369 | IN | |
2024-05-24 03:02:02 UTC | 1369 | IN | |
2024-05-24 03:02:02 UTC | 1369 | IN | |
2024-05-24 03:02:02 UTC | 1369 | IN | |
2024-05-24 03:02:02 UTC | 1369 | IN | |
2024-05-24 03:02:02 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.16 | 49726 | 104.17.2.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:02 UTC | 785 | OUT | |
2024-05-24 03:02:02 UTC | 240 | IN | |
2024-05-24 03:02:02 UTC | 61 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
12 | 192.168.2.16 | 49719 | 172.67.153.178 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:02 UTC | 1318 | OUT | |
2024-05-24 03:02:03 UTC | 641 | IN | |
2024-05-24 03:02:03 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
13 | 192.168.2.16 | 49727 | 104.17.3.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:03 UTC | 438 | OUT | |
2024-05-24 03:02:03 UTC | 240 | IN | |
2024-05-24 03:02:03 UTC | 61 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
14 | 192.168.2.16 | 49729 | 104.17.2.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:03 UTC | 915 | OUT | |
2024-05-24 03:02:03 UTC | 2695 | OUT | |
2024-05-24 03:02:03 UTC | 731 | IN | |
2024-05-24 03:02:03 UTC | 638 | IN | |
2024-05-24 03:02:03 UTC | 1369 | IN | |
2024-05-24 03:02:03 UTC | 1369 | IN | |
2024-05-24 03:02:03 UTC | 1369 | IN | |
2024-05-24 03:02:03 UTC | 1369 | IN | |
2024-05-24 03:02:03 UTC | 1369 | IN | |
2024-05-24 03:02:03 UTC | 1369 | IN | |
2024-05-24 03:02:03 UTC | 1369 | IN | |
2024-05-24 03:02:03 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
15 | 192.168.2.16 | 49730 | 35.190.80.1 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:03 UTC | 537 | OUT | |
2024-05-24 03:02:03 UTC | 336 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
16 | 192.168.2.16 | 49733 | 35.190.80.1 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:04 UTC | 478 | OUT | |
2024-05-24 03:02:04 UTC | 430 | OUT | |
2024-05-24 03:02:04 UTC | 168 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
17 | 192.168.2.16 | 49734 | 104.17.3.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:04 UTC | 486 | OUT | |
2024-05-24 03:02:04 UTC | 375 | IN | |
2024-05-24 03:02:04 UTC | 7 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
18 | 192.168.2.16 | 49736 | 104.17.2.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:04 UTC | 804 | OUT | |
2024-05-24 03:02:04 UTC | 143 | IN | |
2024-05-24 03:02:04 UTC | 1382 | IN | |
2024-05-24 03:02:04 UTC | 1 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
19 | 192.168.2.16 | 49737 | 104.17.2.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:05 UTC | 775 | OUT | |
2024-05-24 03:02:05 UTC | 200 | IN | |
2024-05-24 03:02:05 UTC | 61 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
20 | 192.168.2.16 | 49738 | 104.17.3.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:06 UTC | 428 | OUT | |
2024-05-24 03:02:06 UTC | 200 | IN | |
2024-05-24 03:02:06 UTC | 61 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
21 | 192.168.2.16 | 49739 | 104.17.2.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:06 UTC | 916 | OUT | |
2024-05-24 03:02:06 UTC | 16384 | OUT | |
2024-05-24 03:02:06 UTC | 13781 | OUT | |
2024-05-24 03:02:06 UTC | 322 | IN | |
2024-05-24 03:02:06 UTC | 1047 | IN | |
2024-05-24 03:02:06 UTC | 1369 | IN | |
2024-05-24 03:02:06 UTC | 1369 | IN | |
2024-05-24 03:02:06 UTC | 1369 | IN | |
2024-05-24 03:02:06 UTC | 1369 | IN | |
2024-05-24 03:02:06 UTC | 1369 | IN | |
2024-05-24 03:02:06 UTC | 1369 | IN | |
2024-05-24 03:02:06 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
22 | 192.168.2.16 | 49740 | 104.17.3.184 | 443 | 2312 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:07 UTC | 486 | OUT | |
2024-05-24 03:02:07 UTC | 375 | IN | |
2024-05-24 03:02:07 UTC | 7 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
23 | 192.168.2.16 | 49741 | 40.127.169.103 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-05-24 03:02:25 UTC | 306 | OUT | |
2024-05-24 03:02:26 UTC | 560 | IN | |
2024-05-24 03:02:26 UTC | 15824 | IN | |
2024-05-24 03:02:26 UTC | 9633 | IN |
Click to jump to process
Click to jump to process
back
Click to dive into process behavior distribution
Click to jump to process
Target ID: | 0 |
Start time: | 23:01:35 |
Start date: | 23/05/2024 |
Path: | C:\Windows\System32\rundll32.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff619840000 |
File size: | 71'680 bytes |
MD5 hash: | EF3179D498793BF4234F708D3BE28633 |
Has elevated privileges: | false |
Has administrator privileges: | false |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |
Target ID: | 4 |
Start time: | 23:01:48 |
Start date: | 23/05/2024 |
Path: | C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff7b9d20000 |
File size: | 5'641'176 bytes |
MD5 hash: | 24EAD1C46A47022347DC0F05F6EFBB8C |
Has elevated privileges: | false |
Has administrator privileges: | false |
Programmed in: | C, C++ or other language |
Reputation: | moderate |
Has exited: | false |
Target ID: | 5 |
Start time: | 23:01:49 |
Start date: | 23/05/2024 |
Path: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff777c40000 |
File size: | 3'581'912 bytes |
MD5 hash: | 9B38E8E8B6DD9622D24B53E095C5D9BE |
Has elevated privileges: | false |
Has administrator privileges: | false |
Programmed in: | C, C++ or other language |
Reputation: | moderate |
Has exited: | false |
Target ID: | 7 |
Start time: | 23:01:50 |
Start date: | 23/05/2024 |
Path: | C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff777c40000 |
File size: | 3'581'912 bytes |
MD5 hash: | 9B38E8E8B6DD9622D24B53E095C5D9BE |
Has elevated privileges: | false |
Has administrator privileges: | false |
Programmed in: | C, C++ or other language |
Reputation: | moderate |
Has exited: | false |
Target ID: | 8 |
Start time: | 23:01:50 |
Start date: | 23/05/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff7f9810000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |
Target ID: | 10 |
Start time: | 23:01:51 |
Start date: | 23/05/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff7f9810000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |