Windows
Analysis Report
OVER DUE INVOICE PAYMENT.docx.doc
Overview
General Information
Detection
Score: | 100 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w7x64
WINWORD.EXE (PID: 2544 cmdline:
"C:\Progra m Files\Mi crosoft Of fice\Offic e14\WINWOR D.EXE" /Au tomation - Embedding MD5: 9EE74859D22DAE61F1750B3A1BACB6F5) EQNEDT32.EXE (PID: 3436 cmdline:
"C:\Progra m Files\Co mmon Files \Microsoft Shared\EQ UATION\EQN EDT32.EXE" -Embeddin g MD5: A87236E214F6D42A65F5DEDAC816AEC8) obi23456.scr (PID: 3500 cmdline:
"C:\Users\ user\AppDa ta\Roaming \obi23456. scr" MD5: F7BDADAFF67E573F145D2E8E32E32CD8) obi23456.scr (PID: 3532 cmdline:
"C:\Users\ user\AppDa ta\Roaming \obi23456. scr" MD5: F7BDADAFF67E573F145D2E8E32E32CD8)
- cleanup
Name | Description | Attribution | Blogpost URLs | Link |
---|---|---|---|---|
404 Keylogger, Snake Keylogger | Snake Keylogger (aka 404 Keylogger) is a subscription-based keylogger that has many capabilities. The infostealer can steal a victims sensitive information, log keyboard strokes, take screenshots and extract information from the system clipboard. It was initially released on a Russian hacking forum in August 2019. It is notable for its relatively unusual methods of data exfiltration, including via email, FTP, SMTP, Pastebin or the messaging app Telegram. | No Attribution |
{"Exfil Mode": "SMTP", "Username": "reservation@artefes.com", "Password": "ArtEfes4765*+", "Host": "mail.artefes.com", "Port": "587"}
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
INDICATOR_RTF_MalVer_Objects | Detects RTF documents with non-standard version and embeding one of the object mostly observed in exploit documents. | ditekSHen |
| |
INDICATOR_RTF_MalVer_Objects | Detects RTF documents with non-standard version and embeding one of the object mostly observed in exploit documents. | ditekSHen |
|
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_CredentialStealer | Yara detected Credential Stealer | Joe Security | ||
JoeSecurity_SnakeKeylogger | Yara detected Snake Keylogger | Joe Security | ||
Windows_Trojan_SnakeKeylogger_af3faa65 | unknown | unknown |
| |
MALWARE_Win_SnakeKeylogger | Detects Snake Keylogger | ditekSHen |
| |
JoeSecurity_SnakeKeylogger | Yara detected Snake Keylogger | Joe Security | ||
Click to see the 14 entries |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
MALWARE_Win_DLInjector02 | Detects downloader injector | ditekSHen |
| |
JoeSecurity_CredentialStealer | Yara detected Credential Stealer | Joe Security | ||
JoeSecurity_SnakeKeylogger | Yara detected Snake Keylogger | Joe Security | ||
Windows_Trojan_SnakeKeylogger_af3faa65 | unknown | unknown |
| |
MAL_Envrial_Jan18_1 | Detects Encrial credential stealer malware | Florian Roth |
| |
Click to see the 40 entries |
System Summary |
---|
Source: | Author: Max Altgelt (Nextron Systems): |
Source: | Author: Florian Roth (Nextron Systems), Markus Neis, FPT.EagleEye Team, Vadim Khrykov, Cyb3rEng, Michael Haag, Christopher Peacock @securepeacock, @scythe_io: |
Source: | Author: Christopher Peacock @securepeacock, SCYTHE @scythe_io: |
Source: | Author: Brandon George (blog post), Thomas Patzke: |
Source: | Author: X__Junior (Nextron Systems): |
Source: | Author: frack113: |
Source: | Author: frack113: |
Source: | Author: Nasreddine Bencherchali (Nextron Systems): |
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: |
Source: | Avira: |
Source: | Malware Configuration Extractor: |
Source: | ReversingLabs: | ||
Source: | ReversingLabs: |
Source: | ReversingLabs: |
Source: | Joe Sandbox ML: | ||
Source: | Joe Sandbox ML: |
Location Tracking |
---|
Source: | DNS query: |
Exploits |
---|
Source: | Network connect: | Jump to behavior |
Source: | Process created: | |||
Source: | Process created: | Jump to behavior |
Source: | Stream path '_1781612666/\x1CompObj' : |
Source: | Process created: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | File opened: | Jump to behavior |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Binary string: |
Software Vulnerabilities |
---|
Source: | Process created: |
Source: | Code function: | 11_2_00505038 | |
Source: | Code function: | 11_2_005078C1 | |
Source: | Code function: | 11_2_00505B18 | |
Source: | Code function: | 11_2_00505B18 | |
Source: | Code function: | 11_2_00507D30 | |
Source: | Code function: | 11_2_00506740 | |
Source: | Code function: | 11_2_0050584B | |
Source: | Code function: | 11_2_00508072 | |
Source: | Code function: | 11_2_00507000 | |
Source: | Code function: | 11_2_00506BA0 | |
Source: | Code function: | 11_2_00507460 | |
Source: | Code function: | 11_2_00507D20 | |
Source: | Code function: | 11_2_0050566A | |
Source: | Code function: | 11_2_01EA25E0 | |
Source: | Code function: | 11_2_01EAA5F0 | |
Source: | Code function: | 11_2_01EA55A8 | |
Source: | Code function: | 11_2_01EA79AE | |
Source: | Code function: | 11_2_01EA2188 | |
Source: | Code function: | 11_2_01EAA198 | |
Source: | Code function: | 11_2_01EA9D40 | |
Source: | Code function: | 11_2_01EA5150 | |
Source: | Code function: | 11_2_01EA1D30 | |
Source: | Code function: | 11_2_01EA98E8 | |
Source: | Code function: | 11_2_01EA4CF8 | |
Source: | Code function: | 11_2_01EA18D8 | |
Source: | Code function: | 11_2_01EAC8D8 | |
Source: | Code function: | 11_2_01EA48A0 | |
Source: | Code function: | 11_2_01EA1480 | |
Source: | Code function: | 11_2_01EAC480 | |
Source: | Code function: | 11_2_01EA9468 | |
Source: | Code function: | 11_2_01EA4448 | |
Source: | Code function: | 11_2_01EA1028 | |
Source: | Code function: | 11_2_01EAC028 | |
Source: | Code function: | 11_2_01EA3FF0 | |
Source: | Code function: | 11_2_01EA0BD0 | |
Source: | Code function: | 11_2_01EABBD0 | |
Source: | Code function: | 11_2_01EA3B98 | |
Source: | Code function: | 11_2_01EA0778 | |
Source: | Code function: | 11_2_01EAB778 | |
Source: | Code function: | 11_2_01EA3740 | |
Source: | Code function: | 11_2_01EA0320 | |
Source: | Code function: | 11_2_01EAB320 | |
Source: | Code function: | 11_2_01EA32E8 | |
Source: | Code function: | 11_2_01EAAEA0 | |
Source: | Code function: | 11_2_01EA7688 | |
Source: | Code function: | 11_2_01EA7698 | |
Source: | Code function: | 11_2_01EA2E90 | |
Source: | Code function: | 11_2_01EAAA48 | |
Source: | Code function: | 11_2_01EA2A38 | |
Source: | Code function: | 11_2_01EA5A00 |
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Networking |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | IP Address: | ||
Source: | IP Address: | ||
Source: | IP Address: |
Source: | ASN Name: | ||
Source: | ASN Name: |
Source: | JA3 fingerprint: | ||
Source: | JA3 fingerprint: |
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: | ||
Source: | DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | File created: | Jump to behavior |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
System Summary |
---|
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file |
Source: | Process Stats: |
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior |
Source: | Code function: | 10_2_0018425F | |
Source: | Code function: | 11_2_00503065 | |
Source: | Code function: | 11_2_00505038 | |
Source: | Code function: | 11_2_005078C1 | |
Source: | Code function: | 11_2_00503891 | |
Source: | Code function: | 11_2_00502910 | |
Source: | Code function: | 11_2_00504130 | |
Source: | Code function: | 11_2_0050D1D8 | |
Source: | Code function: | 11_2_00503B73 | |
Source: | Code function: | 11_2_00505B18 | |
Source: | Code function: | 11_2_00502BF3 | |
Source: | Code function: | 11_2_0050844D | |
Source: | Code function: | 11_2_00508D78 | |
Source: | Code function: | 11_2_005035B0 | |
Source: | Code function: | 11_2_00503E50 | |
Source: | Code function: | 11_2_0050C750 | |
Source: | Code function: | 11_2_00506740 | |
Source: | Code function: | 11_2_00507000 | |
Source: | Code function: | 11_2_00505028 | |
Source: | Code function: | 11_2_00506BA0 | |
Source: | Code function: | 11_2_00507460 | |
Source: | Code function: | 11_2_0050C740 | |
Source: | Code function: | 11_2_0050BFC8 | |
Source: | Code function: | 11_2_0050BFBC | |
Source: | Code function: | 11_2_01EAE178 | |
Source: | Code function: | 11_2_01EAD4E0 | |
Source: | Code function: | 11_2_01EA6CC8 | |
Source: | Code function: | 11_2_01EAF460 | |
Source: | Code function: | 11_2_01EAE7C0 | |
Source: | Code function: | 11_2_01EADB30 | |
Source: | Code function: | 11_2_01EA5E58 | |
Source: | Code function: | 11_2_01EAEE10 | |
Source: | Code function: | 11_2_01EA25E0 | |
Source: | Code function: | 11_2_01EAA5E1 | |
Source: | Code function: | 11_2_01EAA5F0 | |
Source: | Code function: | 11_2_01EA59F4 | |
Source: | Code function: | 11_2_01EA25D1 | |
Source: | Code function: | 11_2_01EA55A8 | |
Source: | Code function: | 11_2_01EA55A5 | |
Source: | Code function: | 11_2_01EA2188 | |
Source: | Code function: | 11_2_01EAA188 | |
Source: | Code function: | 11_2_01EAA198 | |
Source: | Code function: | 11_2_01EAA190 | |
Source: | Code function: | 11_2_01EAE168 | |
Source: | Code function: | 11_2_01EAE16C | |
Source: | Code function: | 11_2_01EA2178 | |
Source: | Code function: | 11_2_01EA9D40 | |
Source: | Code function: | 11_2_01EA5140 | |
Source: | Code function: | 11_2_01EA5150 | |
Source: | Code function: | 11_2_01EA1D20 | |
Source: | Code function: | 11_2_01EA1D30 | |
Source: | Code function: | 11_2_01EA9D31 | |
Source: | Code function: | 11_2_01EA98E8 | |
Source: | Code function: | 11_2_01EA4CF8 | |
Source: | Code function: | 11_2_01EA4CF0 | |
Source: | Code function: | 11_2_01EAC8C8 | |
Source: | Code function: | 11_2_01EA18C9 | |
Source: | Code function: | 11_2_01EAD4CF | |
Source: | Code function: | 11_2_01EAC8CC | |
Source: | Code function: | 11_2_01EA18D8 | |
Source: | Code function: | 11_2_01EAC8D8 | |
Source: | Code function: | 11_2_01EA98D8 | |
Source: | Code function: | 11_2_01EAD4D8 | |
Source: | Code function: | 11_2_01EAC8D0 | |
Source: | Code function: | 11_2_01EA48A0 | |
Source: | Code function: | 11_2_01EA6CBC | |
Source: | Code function: | 11_2_01EA1480 | |
Source: | Code function: | 11_2_01EAC480 | |
Source: | Code function: | 11_2_01EA4890 | |
Source: | Code function: | 11_2_01EA9468 | |
Source: | Code function: | 11_2_01EAC47C | |
Source: | Code function: | 11_2_01EAC470 | |
Source: | Code function: | 11_2_01EA1471 | |
Source: | Code function: | 11_2_01EA4448 | |
Source: | Code function: | 11_2_01EA9459 | |
Source: | Code function: | 11_2_01EA945C | |
Source: | Code function: | 11_2_01EAF45C | |
Source: | Code function: | 11_2_01EAF451 | |
Source: | Code function: | 11_2_01EAF454 | |
Source: | Code function: | 11_2_01EA1028 | |
Source: | Code function: | 11_2_01EAC028 | |
Source: | Code function: | 11_2_01EA443C | |
Source: | Code function: | 11_2_01EA1018 | |
Source: | Code function: | 11_2_01EAC019 | |
Source: | Code function: | 11_2_01EAC01C | |
Source: | Code function: | 11_2_01EA3FED | |
Source: | Code function: | 11_2_01EA3FF0 | |
Source: | Code function: | 11_2_01EABBC1 | |
Source: | Code function: | 11_2_01EA0BC4 | |
Source: | Code function: | 11_2_01EA0BD0 | |
Source: | Code function: | 11_2_01EABBD0 | |
Source: | Code function: | 11_2_01EAE7BC | |
Source: | Code function: | 11_2_01EAE7B0 | |
Source: | Code function: | 11_2_01EA3B88 | |
Source: | Code function: | 11_2_01EA3B98 | |
Source: | Code function: | 11_2_01EA0768 | |
Source: | Code function: | 11_2_01EAB767 | |
Source: | Code function: | 11_2_01EA0778 | |
Source: | Code function: | 11_2_01EAB778 | |
Source: | Code function: | 11_2_01EAB774 | |
Source: | Code function: | 11_2_01EA3740 | |
Source: | Code function: | 11_2_01EA0320 | |
Source: | Code function: | 11_2_01EAB320 | |
Source: | Code function: | 11_2_01EADB21 | |
Source: | Code function: | 11_2_01EADB24 | |
Source: | Code function: | 11_2_01EA3738 | |
Source: | Code function: | 11_2_01EA8708 | |
Source: | Code function: | 11_2_01EAB318 | |
Source: | Code function: | 11_2_01EAB31C | |
Source: | Code function: | 11_2_01EA0310 | |
Source: | Code function: | 11_2_01EAB311 | |
Source: | Code function: | 11_2_01EA32E8 | |
Source: | Code function: | 11_2_01EA32D9 | |
Source: | Code function: | 11_2_01EAAEA0 | |
Source: | Code function: | 11_2_01EA7688 | |
Source: | Code function: | 11_2_01EA2E81 | |
Source: | Code function: | 11_2_01EA7698 | |
Source: | Code function: | 11_2_01EA2E90 | |
Source: | Code function: | 11_2_01EAAE90 | |
Source: | Code function: | 11_2_01EAAA48 | |
Source: | Code function: | 11_2_01EAAA40 | |
Source: | Code function: | 11_2_01EA2A28 | |
Source: | Code function: | 11_2_01EA2A38 | |
Source: | Code function: | 11_2_01EAAA38 | |
Source: | Code function: | 11_2_01EAAA3C | |
Source: | Code function: | 11_2_01EAEE08 | |
Source: | Code function: | 11_2_01EAEE0C | |
Source: | Code function: | 11_2_01EA5A00 | |
Source: | Code function: | 11_2_01EAEE00 | |
Source: | Code function: | 11_2_01EA7A10 | |
Source: | Code function: | 11_2_01F90CD8 | |
Source: | Code function: | 11_2_01F90690 | |
Source: | Code function: | 11_2_01F90040 | |
Source: | Code function: | 11_2_01F90CC8 | |
Source: | Code function: | 11_2_01F90CCC | |
Source: | Code function: | 11_2_01F90680 | |
Source: | Code function: | 11_2_01F90038 | |
Source: | Code function: | 11_2_01F90006 |
Source: | OLE stream indicators for Word, Excel, PowerPoint, and Visio: |
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: |
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: | ||
Source: | Cryptographic APIs: |
Source: | Base64 encoded string: | ||
Source: | Base64 encoded string: |
Source: | Classification label: |
Source: | File created: | Jump to behavior |
Source: | Mutant created: |
Source: | File created: | Jump to behavior |
Source: | OLE indicator, Word Document stream: |
Source: | OLE document summary: | ||
Source: | OLE document summary: | ||
Source: | OLE document summary: |
Source: | File read: | Jump to behavior |
Source: | Key opened: | Jump to behavior |
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior | ||
Source: | File read: | Jump to behavior |
Source: | ReversingLabs: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior | ||
Source: | Section loaded: | Jump to behavior |
Source: | LNK file: |
Source: | Window detected: |
Source: | File opened: | Jump to behavior |
Source: | Initial sample: |
Source: | Key opened: | Jump to behavior |
Source: | File opened: | Jump to behavior |
Source: | Binary string: |
Source: | Initial sample: |
Data Obfuscation |
---|
Source: | .Net Code: | ||
Source: | .Net Code: |
Source: | Static PE information: |
Source: | Code function: | 9_2_00915DDB | |
Source: | Code function: | 9_2_009001F5 | |
Source: | Code function: | 9_2_00915DE3 | |
Source: | Code function: | 9_2_00915DEB | |
Source: | Code function: | 9_2_00908F61 | |
Source: | Code function: | 9_2_00917163 | |
Source: | Code function: | 11_2_01EACE5C |
Source: | Static PE information: | ||
Source: | Static PE information: |
Persistence and Installation Behavior |
---|
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior |
Source: | Extracted files from sample: |
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file |
Source: | File dump: | Jump to dropped file | ||
Source: | File dump: | Jump to dropped file |
Source: | Section loaded: | Jump to behavior |
Source: | File created: | Jump to dropped file | ||
Source: | File created: | Jump to dropped file |
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior | ||
Source: | Process information set: | Jump to behavior |
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior | ||
Source: | Memory allocated: | Jump to behavior |
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior |
Source: | Window / User API: | Jump to behavior | ||
Source: | Window / User API: | Jump to behavior |
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep time: | Jump to behavior | ||
Source: | Thread sleep count: | Jump to behavior | ||
Source: | Thread sleep count: | Jump to behavior |
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior | ||
Source: | Thread delayed: | Jump to behavior |
Source: | Process information queried: | Jump to behavior |
Source: | Code function: | 11_2_0050FCB8 |
Source: | Process token adjusted: | Jump to behavior |
Source: | Memory allocated: | Jump to behavior |
HIPS / PFW / Operating System Protection Evasion |
---|
Source: | Reference to suspicious API methods: | ||
Source: | Reference to suspicious API methods: | ||
Source: | Reference to suspicious API methods: |
Source: | Memory written: | Jump to behavior |
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Queries volume information: | Jump to behavior | ||
Source: | Queries volume information: | Jump to behavior |
Source: | Key value queried: | Jump to behavior |
Stealing of Sensitive Information |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Source: | File opened: | Jump to behavior |
Source: | File opened: | Jump to behavior |
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Remote Access Functionality |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | 1 Native API | 1 DLL Side-Loading | 1 DLL Side-Loading | 1 Disable or Modify Tools | 1 OS Credential Dumping | 1 File and Directory Discovery | Remote Services | 11 Archive Collected Data | 2 Ingress Tool Transfer | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | 33 Exploitation for Client Execution | Boot or Logon Initialization Scripts | 111 Process Injection | 1 Deobfuscate/Decode Files or Information | LSASS Memory | 13 System Information Discovery | Remote Desktop Protocol | 1 Data from Local System | 11 Encrypted Channel | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 31 Obfuscated Files or Information | Security Account Manager | 1 Security Software Discovery | SMB/Windows Admin Shares | 1 Email Collection | 2 Non-Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | 11 Software Packing | NTDS | 1 Process Discovery | Distributed Component Object Model | Input Capture | 13 Application Layer Protocol | Traffic Duplication | Data Destruction |
Gather Victim Network Information | Server | Cloud Accounts | Launchd | Network Logon Script | Network Logon Script | 1 Timestomp | LSA Secrets | 31 Virtualization/Sandbox Evasion | SSH | Keylogging | Fallback Channels | Scheduled Transfer | Data Encrypted for Impact |
Domain Properties | Botnet | Replication Through Removable Media | Scheduled Task | RC Scripts | RC Scripts | 1 DLL Side-Loading | Cached Domain Credentials | 1 Application Window Discovery | VNC | GUI Input Capture | Multiband Communication | Data Transfer Size Limits | Service Stop |
DNS | Web Services | External Remote Services | Systemd Timers | Startup Items | Startup Items | 11 Masquerading | DCSync | 1 Remote System Discovery | Windows Remote Management | Web Portal Capture | Commonly Used Port | Exfiltration Over C2 Channel | Inhibit System Recovery |
Network Trust Dependencies | Serverless | Drive-by Compromise | Container Orchestration Job | Scheduled Task/Job | Scheduled Task/Job | 31 Virtualization/Sandbox Evasion | Proc Filesystem | 1 System Network Configuration Discovery | Cloud Services | Credential API Hooking | Application Layer Protocol | Exfiltration Over Alternative Protocol | Defacement |
Network Topology | Malvertising | Exploit Public-Facing Application | Command and Scripting Interpreter | At | At | 111 Process Injection | /etc/passwd and /etc/shadow | Network Sniffing | Direct Cloud VM Connections | Data Staged | Web Protocols | Exfiltration Over Symmetric Encrypted Non-C2 Protocol | Internal Defacement |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
34% | ReversingLabs | Document-Word.Trojan.Snakekeylogger |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira | EXP/CVE-2018-0798.Gen | ||
100% | Joe Sandbox ML | |||
100% | Joe Sandbox ML | |||
58% | ReversingLabs | Win32.Trojan.SnakeStealer | ||
58% | ReversingLabs | Win32.Trojan.SnakeStealer |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
100% | Avira URL Cloud | malware | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
reallyfreegeoip.org | 188.114.96.3 | true | true | unknown | |
riell.top | 188.114.97.3 | true | true | unknown | |
checkip.dyndns.com | 193.122.130.0 | true | false | unknown | |
checkip.dyndns.org | unknown | unknown | true | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
true |
| unknown | |
false |
| unknown | |
false |
| unknown | |
true |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
true |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
132.226.8.169 | unknown | United States | 16989 | UTMEMUS | false | |
188.114.97.3 | riell.top | European Union | 13335 | CLOUDFLARENETUS | true | |
193.122.6.168 | unknown | United States | 31898 | ORACLE-BMC-31898US | false | |
188.114.96.3 | reallyfreegeoip.org | European Union | 13335 | CLOUDFLARENETUS | true | |
193.122.130.0 | checkip.dyndns.com | United States | 31898 | ORACLE-BMC-31898US | false | |
158.101.44.242 | unknown | United States | 31898 | ORACLE-BMC-31898US | false | |
132.226.247.73 | unknown | United States | 16989 | UTMEMUS | false |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1467841 |
Start date and time: | 2024-07-04 21:37:11 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 9m 14s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultwindowsofficecookbook.jbs |
Analysis system description: | Windows 7 x64 SP1 with Office 2010 SP1 (IE 11, FF52, Chrome 57, Adobe Reader DC 15, Flash 25.0.0.127, Java 8 Update 121, .NET 4.6.2) |
Number of analysed new started processes analysed: | 14 |
Number of new started drivers analysed: | 1 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Sample name: | OVER DUE INVOICE PAYMENT.docx.doc |
Detection: | MAL |
Classification: | mal100.troj.spyw.expl.evad.winDOC@6/19@36/7 |
EGA Information: |
|
HCA Information: |
|
Cookbook Comments: |
|
- Exclude process from analysis (whitelisted): mrxdav.sys, dllhost.exe, rundll32.exe, WMIADAP.exe
- Execution Graph export aborted for target EQNEDT32.EXE, PID 3436 because there are no executed function
- Report size exceeded maximum capacity and may have missing behavior information.
- Report size getting too big, too many NtDeviceIoControlFile calls found.
- Report size getting too big, too many NtOpenKeyEx calls found.
- Report size getting too big, too many NtQueryValueKey calls found.
- Report size getting too big, too many NtReadVirtualMemory calls found.
- Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- VT rate limit hit for: OVER DUE INVOICE PAYMENT.docx.doc
Time | Type | Description |
---|---|---|
15:38:35 | API Interceptor | |
15:38:36 | API Interceptor |
Input | Output |
---|---|
URL: Office document Model: gpt-4o | ```json{ "riskscore": 0, "reasons": "The provided screenshot does not contain any visually prominent buttons or links. The text in the screenshot appears to be a list of items or codes, and there is no language that creates a sense of urgency or interest. Additionally, there is no impersonation of well-known brands. Therefore, there is no indication that this document could mislead the user into clicking on a potentially harmful link."} |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
132.226.8.169 | Get hash | malicious | Snake Keylogger | Browse |
| |
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
188.114.97.3 | Get hash | malicious | FormBook | Browse |
| |
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | DCRat, PureLog Stealer, zgRAT | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
reallyfreegeoip.org | Get hash | malicious | Snake Keylogger | Browse |
| |
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
checkip.dyndns.com | Get hash | malicious | Snake Keylogger | Browse |
| |
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
riell.top | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
ORACLE-BMC-31898US | Get hash | malicious | Snake Keylogger | Browse |
| |
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, zgRAT | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
CLOUDFLARENETUS | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | LummaC, SmokeLoader | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Clipboard Hijacker, PureLog Stealer, RisePro Stealer, zgRAT | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | XWorm | Browse |
| ||
UTMEMUS | Get hash | malicious | Snake Keylogger | Browse |
| |
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
CLOUDFLARENETUS | Get hash | malicious | HTMLPhisher | Browse |
| |
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | LummaC, SmokeLoader | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | Clipboard Hijacker, PureLog Stealer, RisePro Stealer, zgRAT | Browse |
| ||
Get hash | malicious | HTMLPhisher | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
| ||
Get hash | malicious | XWorm | Browse |
| ||
ORACLE-BMC-31898US | Get hash | malicious | Snake Keylogger | Browse |
| |
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | PureLog Stealer, zgRAT | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
05af1f5ca1b87cc9cc9b25185115607d | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | AgentTesla | Browse |
| ||
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Lokibot | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | FormBook | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
7dcce5b76c8b17472d024758970a406b | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Lokibot | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Snake Keylogger | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Lokibot | Browse |
| ||
Get hash | malicious | AgentTesla, PureLog Stealer | Browse |
|
C:\Users\user\AppData\Local\Microsoft\Office\14.0\OfficeFileCache\LocalCacheFileEditManager\FSD-CNRY.FSD (copy)
Download File
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 131072 |
Entropy (8bit): | 0.02556643955180457 |
Encrypted: | false |
SSDEEP: | 6:I3DPcBTzAj8KBXJ9vxggLR3EoHAe7BRXv//4tfnRujlw//+GtluJ/eRuj:I3DPKEj7bbtHdPvYg3J/ |
MD5: | 858DBBD85F0BDAB9692F8B484A7F0D2C |
SHA1: | 0441CB3C6680D138FB0FC9BDF089DC71D4E07174 |
SHA-256: | 852E3D421B4154887B27542A80B3F50102F998D8D215AF9A3671D7F0E76D85E2 |
SHA-512: | 4965E27506BC95B0133DD6A39819B2DAC92D3519DE4C7037B443299C8803AC026CAA19A835E200C2C3A9D778BAEE102C3B2BEDDB0EC402011206EC5A8660A169 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T4O403JZ\obb[1].doc
Download File
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 549151 |
Entropy (8bit): | 3.7501066868878303 |
Encrypted: | false |
SSDEEP: | 6144:cGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuhSaV:ay |
MD5: | 3F9A089317AFA13A17B61D5E0F95B75E |
SHA1: | F5129818D643FBA59BF77BC2785EEF2AF34DB679 |
SHA-256: | 09CC281D7242AEDDD2DE25D63EF16E9B8D190BD06D31928410FDAEF1E5A5C351 |
SHA-512: | 6A73233318865BD82C9A15887421A1197FEBFB88070216979BE9C04F97C9749DAE728FD75F3C4D372F4A7C0E834750E3AAC4422508BCBBC39D9EC82D9C1822C8 |
Malicious: | false |
Yara Hits: |
|
Reputation: | low |
Preview: |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XNHC0JWC\obb[1].scr ![AV hit](data:image/png;base64,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)
![malicious](data:image/png;base64,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)
Download File
Process: | C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 520704 |
Entropy (8bit): | 7.363165773317466 |
Encrypted: | false |
SSDEEP: | 12288:NCHm2ADAAtm9M08jBCZ5pYYfa5LmgmvUetrtEDtr7ksXJs4CGSNkrzQaR0birorA:Nf7m608jBCZ5pYYfadmgmvBtrt6p7DeW |
MD5: | F7BDADAFF67E573F145D2E8E32E32CD8 |
SHA1: | CFD1377D49E09ECFA842760DD9CC78CC17A34628 |
SHA-256: | FE80EEADE269CE2B6688E039296FC9E9743E24F881341ADAD24E220967312316 |
SHA-512: | 25477C0A78D20A43C6CFA7819185C680566C20E6D0C7A65FFECBDDC91DF9BD91310B6368B849B6F8F6688D85A2C86E3C9AF1F68EC4358DEB3CC94A6473D3F4C6 |
Malicious: | true |
Antivirus: |
|
Reputation: | low |
Preview: |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\56784164.doc
Download File
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 549151 |
Entropy (8bit): | 3.7501066868878303 |
Encrypted: | false |
SSDEEP: | 6144:cGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuqGuhSaV:ay |
MD5: | 3F9A089317AFA13A17B61D5E0F95B75E |
SHA1: | F5129818D643FBA59BF77BC2785EEF2AF34DB679 |
SHA-256: | 09CC281D7242AEDDD2DE25D63EF16E9B8D190BD06D31928410FDAEF1E5A5C351 |
SHA-512: | 6A73233318865BD82C9A15887421A1197FEBFB88070216979BE9C04F97C9749DAE728FD75F3C4D372F4A7C0E834750E3AAC4422508BCBBC39D9EC82D9C1822C8 |
Malicious: | false |
Yara Hits: |
|
Reputation: | low |
Preview: |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRF{56E3829F-B9EE-407D-9BA0-759B5D6DE9EF}.tmp ![AV hit](data:image/png;base64,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)
![malicious](data:image/png;base64,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)
Download File
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 6144 |
Entropy (8bit): | 4.068584386932005 |
Encrypted: | false |
SSDEEP: | 96:jP0MPNRFqxPR6+idxFvuRZYmPO4cbpSvS:zFPNRmPAjdxcRmEO9 |
MD5: | FEC10A763C7F9617CE078700B832E0A9 |
SHA1: | 2300E26DC93B01214444321323C62ACCD8F02B67 |
SHA-256: | F2083F94B8C345DB5189DAFA00C2A83349DA46C884856FD2CB8F797DB824E42E |
SHA-512: | 1F816D4492E91611887A9DAA81A99D02C2980BE6D54E353769133C90F15364102A915C0DD3C4F4B3D6F8704EAF0C71EF98353320E0E02FC2C90A0869F9E820E5 |
Malicious: | true |
Antivirus: |
|
Reputation: | low |
Preview: |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{3377BE63-CA6F-4392-A9C1-FA2F278DEB4B}.tmp
Download File
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 1536 |
Entropy (8bit): | 1.353360737776369 |
Encrypted: | false |
SSDEEP: | 3:Iiiiiiiiiif3l/Hlnl/bl//l/bllBl/PvvvvvvvvvvFl/l/lAqsalHl3lldHzlbO:IiiiiiiiiifdLloZQc8++lsJe1MzZ |
MD5: | D190D1A931616300D3C497C0B72B3EE5 |
SHA1: | 917EC82F9939F31F73888AB12D32BF715A7CDC3C |
SHA-256: | CCA8F779E41F94B453A0BB7D1EA606FF02C2857D3DE0813462D8A2B3F1626D68 |
SHA-512: | 941C0AD00DA589F54D3E9F7809F754A7776D08D9EEB5D36998BA951AF5569EDE775565C519146F98B57E62A243C3B5F5FA75CC85AF9FA471C526FD297478EADB |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{9DDE2674-4367-40B6-80BF-7E7F99CD90A9}.tmp
Download File
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 352800 |
Entropy (8bit): | 3.4392250194188922 |
Encrypted: | false |
SSDEEP: | 6144:Iyemryemryemryemryemryemryemryemryemryemryemryemryemryemryemryew:u |
MD5: | CFFD575641C895B7CB170532B2057CE3 |
SHA1: | 2E59F205A0B660A81681E730B0E4CDE438F80303 |
SHA-256: | 22744545E8FF77D2090E1D9AF5CD3368D44E4156261254EFFC234476B48CB20C |
SHA-512: | F80F3AC5D84E471F58FC5A1905F237635E0AA0532CFC63D1A576F70396434746AD4B45A7474F52451CA13BDF4EA7D767196A99ED4C8F8FB81D39F0F6A4A01F75 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{B3E7E0B3-D5E2-42DC-A1FC-D3619BF7B6CC}.tmp
Download File
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 46874 |
Entropy (8bit): | 3.551464186925344 |
Encrypted: | false |
SSDEEP: | 768:uaWvW5Kq2g0Zos0SCWiMuz1rqAyLt+eqViz9yCFcEhZVsft:FgemiDvwxKrK2ft |
MD5: | AC7C710B6CA9D66ED9923D65C708B21B |
SHA1: | 756E2D7C42EF9BF05DA7EA871B077BB6DAFCD8E7 |
SHA-256: | C1BEA8318A21530E776F4E3336A3F5E8AFE04F52FBB44F254304A9F36C570B68 |
SHA-512: | B366139A262F47A8C38FC1B5E649F9529E5E89471FF34B543A484737F84C6AF7185AB363946BFBD17DB9BA6642D0CE5520BEA236693CA27E3AF123816809F65C |
Malicious: | false |
Reputation: | moderate, very likely benign file |
Preview: |
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{E99E1800-284E-46BB-8918-39BEC0D2E5EE}.tmp
Download File
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 1024 |
Entropy (8bit): | 0.05390218305374581 |
Encrypted: | false |
SSDEEP: | 3:ol3lYdn:4Wn |
MD5: | 5D4D94EE7E06BBB0AF9584119797B23A |
SHA1: | DBB111419C704F116EFA8E72471DD83E86E49677 |
SHA-256: | 4826C0D860AF884D3343CA6460B0006A7A2CE7DBCCC4D743208585D997CC5FD1 |
SHA-512: | 95F83AE84CAFCCED5EAF504546725C34D5F9710E5CA2D11761486970F2FBECCB25F9CF50BBFC272BD75E1A66A18B7783F09E1C1454AFDA519624BC2BB2F28BA4 |
Malicious: | false |
Reputation: | high, very likely benign file |
Preview: |
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 131072 |
Entropy (8bit): | 0.02556643955180457 |
Encrypted: | false |
SSDEEP: | 6:I3DPcBTzAj8KBXJ9vxggLR3EoHAe7BRXv//4tfnRujlw//+GtluJ/eRuj:I3DPKEj7bbtHdPvYg3J/ |
MD5: | 858DBBD85F0BDAB9692F8B484A7F0D2C |
SHA1: | 0441CB3C6680D138FB0FC9BDF089DC71D4E07174 |
SHA-256: | 852E3D421B4154887B27542A80B3F50102F998D8D215AF9A3671D7F0E76D85E2 |
SHA-512: | 4965E27506BC95B0133DD6A39819B2DAC92D3519DE4C7037B443299C8803AC026CAA19A835E200C2C3A9D778BAEE102C3B2BEDDB0EC402011206EC5A8660A169 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 131072 |
Entropy (8bit): | 0.02565905250870931 |
Encrypted: | false |
SSDEEP: | 6:I3DPcteK7HvxggLRbGaCjcgUOy0tRXv//4tfnRujlw//+GtluJ/eRuj:I3DPceK7P37WvYg3J/ |
MD5: | ACD3DAD77F830B641A5F046F00CFD3BB |
SHA1: | 3411C483D08249670CB5AF78633798799099318C |
SHA-256: | DF0DA4B7E7739CD7E358E00B10B3ABDE25DB79BA50509C9EC082DDC5B1B72FB5 |
SHA-512: | 614DD45BC2A341C9BD079DEAE002A083986D97578EADE0E328AB10262CDB3F59147CD8B18EFF4A2208997D344E108941CB816AC532A0A5B726214BA2E2C5DFDD |
Malicious: | false |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\OVER DUE INVOICE PAYMENT.docx.LNK
Download File
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 1109 |
Entropy (8bit): | 4.5873941792708495 |
Encrypted: | false |
SSDEEP: | 24:8Flk/XTi/352Eczj5Ketc8oCej54Dv3qm1k7N:8s/XTw5ozj5KzCej5ngiN |
MD5: | 72CC07289A3030A0C53A1D3CA92DFED1 |
SHA1: | 706C2C227EAB2D7B006442A619B994FC3F57E95C |
SHA-256: | A8FE29923F44084AA4F2870E8A1721F7B4412B9E713781F6C61315F795D16876 |
SHA-512: | C1F3DBE309E56D8F5CAA683B496D085E6B506C6A4040AD5C7A0C63CADBD37C8B24D2E89894E14EA30B3A8278DD612269DCC70B51859667EC099631BD0D0B4B5E |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 124 |
Entropy (8bit): | 4.995245782801517 |
Encrypted: | false |
SSDEEP: | 3:M1cr8AKWrzXmgc8ogndJFSm4XeGWrzXmgc8ogndJFSv:MiZKS2gc8ognjFqS2gc8ognjFc |
MD5: | B9562ED1B48003DB73C159CC86AC925A |
SHA1: | BB64918D6DE046D9DB5E3F8C52F07A8C2ABECAC3 |
SHA-256: | 3F92696ABA11DC01496171D0C42EC0C8FB8BECE96C284736C9F622948D72C7FE |
SHA-512: | 5664AECBE51116DC7EECEA7324D06500AD26727D7EA3B93DF30CF331CCD66FC68384633E50597C244E4A097E2719407006C118BF33F8A9731FDD5A0583C766BA |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 51 |
Entropy (8bit): | 4.497598930973582 |
Encrypted: | false |
SSDEEP: | 3:HRAbABGQYm2fkPUvn:HRYFVm4O2 |
MD5: | A085681EBB461A55BE28CF9AE262880E |
SHA1: | 2E53D304FB02FDF061F1DF2329C1876325364CBB |
SHA-256: | 578E2B190FC08307F49BE0F232310D0CA9746064ED878FE41A1734B3B532546D |
SHA-512: | 95DC721BC2533357C1D8AA15069BD22839A3BDF5AF45BCEAC86660DF719297B57F8745B091FEBED8B522F284A4C88BF7196B6781773BF71FA4759704C68C4DFF |
Malicious: | true |
Preview: |
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 44 |
Entropy (8bit): | 4.370428278616987 |
Encrypted: | false |
SSDEEP: | 3:HRAbABGQYm2fktv:HRYFVm4sv |
MD5: | 7C4B92A4C06A7AA3645579A99B8D83AE |
SHA1: | 30F8E7A48E68F04FABEDB17481970880081512D4 |
SHA-256: | 126F147D79C43D1F127C372D0B09EB456576358A1B71AE46459F2D1F06161D8D |
SHA-512: | 1539D01AEEB001E2627C72177A76290227189B0C740334718C9644632E783581C6953C125606FAB5158ED14A9FAAB8228986AEE45EDC02FC3CA2C841E4F3F313 |
Malicious: | true |
Preview: |
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 162 |
Entropy (8bit): | 2.4797606462020307 |
Encrypted: | false |
SSDEEP: | 3:vrJlaCkWtVyYyBS0JilXMWvk1c6nlln:vdsCkWtIJiRk3l |
MD5: | C4615A023DC40AFFAEAE6CF07410BB43 |
SHA1: | AAE1D68C4082CABF6AEA71C7981F32928CE01843 |
SHA-256: | 103F860A912CF17B87A169B2768635758E8A0B82EB986A0C42FEA974F91BCB1E |
SHA-512: | CD6975EAE1DA934094AC2516D095D50F2EE311CF549C8AEA2F3D65074B0DFC2908F72703B46A4C012358817289C76B15AC0E39EE359BCF39A45A8C912DCB2AAD |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 2 |
Entropy (8bit): | 1.0 |
Encrypted: | false |
SSDEEP: | 3:Qn:Qn |
MD5: | F3B25701FE362EC84616A93A45CE9998 |
SHA1: | D62636D8CAEC13F04E28442A0A6FA1AFEB024BBB |
SHA-256: | B3D510EF04275CA8E698E5B3CBB0ECE3949EF9252F0CDC839E9EE347409A2209 |
SHA-512: | 98C5F56F3DE340690C139E58EB7DAC111979F0D4DFFE9C4B24FF849510F4B6FFA9FD608C0A3DE9AC3C9FD2190F0EFAF715309061490F9755A9BFDF1C54CA0D84 |
Malicious: | false |
Preview: |
Process: | C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 520704 |
Entropy (8bit): | 7.363165773317466 |
Encrypted: | false |
SSDEEP: | 12288:NCHm2ADAAtm9M08jBCZ5pYYfa5LmgmvUetrtEDtr7ksXJs4CGSNkrzQaR0birorA:Nf7m608jBCZ5pYYfadmgmvBtrt6p7DeW |
MD5: | F7BDADAFF67E573F145D2E8E32E32CD8 |
SHA1: | CFD1377D49E09ECFA842760DD9CC78CC17A34628 |
SHA-256: | FE80EEADE269CE2B6688E039296FC9E9743E24F881341ADAD24E220967312316 |
SHA-512: | 25477C0A78D20A43C6CFA7819185C680566C20E6D0C7A65FFECBDDC91DF9BD91310B6368B849B6F8F6688D85A2C86E3C9AF1F68EC4358DEB3CC94A6473D3F4C6 |
Malicious: | true |
Antivirus: |
|
Preview: |
Process: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
File Type: | |
Category: | dropped |
Size (bytes): | 162 |
Entropy (8bit): | 2.4797606462020307 |
Encrypted: | false |
SSDEEP: | 3:vrJlaCkWtVyYyBS0JilXMWvk1c6nlln:vdsCkWtIJiRk3l |
MD5: | C4615A023DC40AFFAEAE6CF07410BB43 |
SHA1: | AAE1D68C4082CABF6AEA71C7981F32928CE01843 |
SHA-256: | 103F860A912CF17B87A169B2768635758E8A0B82EB986A0C42FEA974F91BCB1E |
SHA-512: | CD6975EAE1DA934094AC2516D095D50F2EE311CF549C8AEA2F3D65074B0DFC2908F72703B46A4C012358817289C76B15AC0E39EE359BCF39A45A8C912DCB2AAD |
Malicious: | false |
Preview: |
File type: | |
Entropy (8bit): | 7.925206813718807 |
TrID: |
|
File name: | OVER DUE INVOICE PAYMENT.docx.doc |
File size: | 16'418 bytes |
MD5: | 9f3fd4e8aa2ad81966d0c2a036d1e901 |
SHA1: | 80a58393acb58fcc666e56b514994d98ba3f4716 |
SHA256: | cd9cf022180c8c6f6c4fb0d76476bf2e9382128d28a4686114c50448934e5381 |
SHA512: | 1f97f830da19d686d8a41f8be36809fbd245f8720835561730dd10bf7cbefe03f17e77df32c0d9c1333084fb598f718fec3ad69f6d7c9313a139b7faa872a7c1 |
SSDEEP: | 384:3oyX8glCWUs8PL8wi4OEwH8TIbE91r2fRgJY7viL6CnUaV:Yc8xv5P3DOqnYJu2vq6CnB |
TLSH: | 0472AD7F848814ADC30740BD80627492FBADA9EFB1A3991FE21877D8807659EC750BDC |
File Content Preview: | PK...........X...7U... .......[Content_Types].xmlUT...8..f8..f8..f...n.0.E...............e.T.....U..<...;!.U.%U.M.d..sgby0ZW.[BB.|!.yOd.u0....>y....Iy.\.P.........M..X...s.x/%.9T....s...R..i&...j......:x.O].=.p...Z8.....I........U....Z...........r..s....B |
Icon Hash: | 2764a3aaaeb7bdbf |
Document Type: | OpenXML |
Number of OLE Files: | 1 |
Has Summary Info: | |
Application Name: | |
Encrypted Document: | False |
Contains Word Document Stream: | True |
Contains Workbook/Book Stream: | False |
Contains PowerPoint Document Stream: | False |
Contains Visio Document Stream: | False |
Contains ObjectPool Stream: | False |
Flash Objects Count: | 0 |
Contains VBA Macros: | False |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 4, 2024 21:38:24.595011950 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:24.595060110 CEST | 443 | 49161 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:24.595233917 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:24.600238085 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:24.600255966 CEST | 443 | 49161 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:25.077697992 CEST | 443 | 49161 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:25.077785969 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:25.082381964 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:25.082392931 CEST | 443 | 49161 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:25.082654953 CEST | 443 | 49161 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:25.082704067 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:25.171421051 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:25.212521076 CEST | 443 | 49161 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:25.659940004 CEST | 443 | 49161 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:25.660017014 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:25.660031080 CEST | 443 | 49161 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:25.660077095 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:25.665749073 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:25.665779114 CEST | 443 | 49161 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:25.665791035 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:25.665828943 CEST | 49161 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:26.461303949 CEST | 49162 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:26.461360931 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:26.461429119 CEST | 49162 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:26.461746931 CEST | 49162 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:26.461767912 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:26.943583965 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:26.943670988 CEST | 49162 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:26.947453976 CEST | 49162 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:26.947467089 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:26.947705984 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:26.952450991 CEST | 49162 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:26.996500015 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:27.085331917 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:27.085386038 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:27.085540056 CEST | 49162 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:27.086585999 CEST | 49162 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:27.086604118 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:27.086639881 CEST | 49162 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:27.086646080 CEST | 443 | 49162 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:30.404213905 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:30.404283047 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:30.404346943 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:30.409010887 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:30.409048080 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:30.901720047 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:30.901807070 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:30.906606913 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:30.906634092 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:30.906889915 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:30.923784971 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:30.968506098 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.325195074 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.325259924 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.325320005 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:31.325844049 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:31.325876951 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.325901031 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:31.325908899 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.325917006 CEST | 49163 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:31.325921059 CEST | 443 | 49163 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.497854948 CEST | 49164 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:31.497893095 CEST | 443 | 49164 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.497955084 CEST | 49164 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:31.498188019 CEST | 49164 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:31.498199940 CEST | 443 | 49164 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.971486092 CEST | 443 | 49164 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.971576929 CEST | 49164 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:31.977341890 CEST | 49164 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:31.977351904 CEST | 443 | 49164 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.977592945 CEST | 443 | 49164 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:31.978476048 CEST | 49164 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:32.020493984 CEST | 443 | 49164 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:32.308264971 CEST | 443 | 49164 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:32.308327913 CEST | 443 | 49164 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:32.308368921 CEST | 49164 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:32.308798075 CEST | 49164 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:32.308814049 CEST | 443 | 49164 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.119234085 CEST | 49165 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.119266033 CEST | 443 | 49165 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.122874022 CEST | 49165 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.123373985 CEST | 49165 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.123385906 CEST | 443 | 49165 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.608223915 CEST | 443 | 49165 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.608283043 CEST | 49165 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.613924980 CEST | 49165 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.613936901 CEST | 443 | 49165 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.614212990 CEST | 443 | 49165 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.615436077 CEST | 49165 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.660518885 CEST | 443 | 49165 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.938530922 CEST | 443 | 49165 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.938627958 CEST | 443 | 49165 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.938673973 CEST | 49165 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.938718081 CEST | 49165 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.938735008 CEST | 443 | 49165 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.972611904 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.972639084 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:33.972706079 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.972995996 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:33.973007917 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.455421925 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.455493927 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.456988096 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.456999063 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.458426952 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.458432913 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.600234985 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.600295067 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.600327015 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.600336075 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.600346088 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.600368023 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.600378990 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.600414991 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.600516081 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.600550890 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.600553989 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.600559950 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.600596905 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.600951910 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.601003885 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.601011038 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.601057053 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.601068974 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.601119995 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.603620052 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.605011940 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.605079889 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.605084896 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.605129004 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.691782951 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692275047 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.692293882 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692471027 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692516088 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692526102 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.692533016 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692558050 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.692570925 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.692574978 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692696095 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.692701101 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692744970 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.692774057 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692814112 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.692852020 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692890882 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.692894936 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692958117 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.692961931 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.692970991 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.693003893 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.693676949 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.693773985 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.693815947 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.693823099 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.693829060 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.693857908 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.693865061 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.693867922 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.693906069 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.694493055 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.694540977 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.694549084 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.694591045 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.694601059 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.694649935 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.694653988 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.694833040 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.694837093 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.694876909 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.695400000 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.695447922 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.733735085 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.734838009 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.734863043 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.734904051 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.981806040 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.981916904 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.981959105 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.981990099 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.981990099 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982009888 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982019901 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982048035 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982054949 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982064962 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982074022 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982112885 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982117891 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982151031 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982157946 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982180119 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982192993 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982207060 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982218027 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982244015 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982271910 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982327938 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982482910 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982531071 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982601881 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982640982 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982673883 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982713938 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.982737064 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.982777119 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.983108997 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.983155012 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.983165979 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.983205080 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.983232021 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.983274937 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.983290911 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.983336926 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.983846903 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.986507893 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.986566067 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.986659050 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.986699104 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.986818075 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.986855030 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.987520933 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.987579107 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.988296986 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.988338947 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.988344908 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.988380909 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.991400003 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.991441011 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.991636992 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.991677046 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.991681099 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.991688967 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.991712093 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.992239952 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.992285967 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.992387056 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.992439032 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.993108034 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.993159056 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.993171930 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.993215084 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.993999004 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.994041920 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.994066954 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.994102001 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.994853020 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.994896889 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.994970083 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.995009899 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.995753050 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.995800018 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.995815039 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.995850086 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.996646881 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.996694088 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.996716022 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.996763945 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.997477055 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.997524023 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.997982025 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.998018980 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.998027086 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.998063087 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.998764038 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.998812914 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.999006033 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.999053001 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:34.999133110 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:34.999177933 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.000927925 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.000936031 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.000988007 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.001002073 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.001060009 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.001075029 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.001097918 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.001194000 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.001243114 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.001251936 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.001291037 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.002489090 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.002542019 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.002546072 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.002571106 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.002582073 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.002600908 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.003026009 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.003067017 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.003076077 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.003082037 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.003103018 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.003117085 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.004098892 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.004137039 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.004151106 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.004156113 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.004184008 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.004678965 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.004728079 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.004730940 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.004740000 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.004767895 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.005733967 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.005789995 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.005794048 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.005803108 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.005837917 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.006253004 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.006308079 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.006318092 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.006370068 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.059286118 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.059326887 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.059350967 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.059376955 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.059397936 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.059416056 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.059444904 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.060004950 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.060059071 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.060059071 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.060081959 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.060101986 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.060112000 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.060508966 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.060564995 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.060566902 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.060576916 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.060612917 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.061136007 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.061189890 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.061317921 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.061364889 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.061480999 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.061518908 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.061534882 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.061539888 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.061558008 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.061577082 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.062309027 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.062365055 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.062423944 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.062475920 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.062561989 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.062602043 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.062614918 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.062619925 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.062645912 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.062654018 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.062735081 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.062786102 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.062884092 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.062937021 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.150870085 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.150912046 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.151056051 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.151067019 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.151110888 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.151110888 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.151559114 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.151597023 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.151617050 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.151622057 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.151635885 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.151658058 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.152060986 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.152101994 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.152116060 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.152122974 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.152154922 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.152355909 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.152395964 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.152412891 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.152417898 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.152446032 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.152892113 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.152946949 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.152952909 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.152970076 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.152988911 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.153007984 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.153095007 CEST | 49166 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.153109074 CEST | 443 | 49166 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.197262049 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.197314024 CEST | 443 | 49167 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.197370052 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.197700024 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.197714090 CEST | 443 | 49167 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.684889078 CEST | 443 | 49167 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.684958935 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.686602116 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.686619043 CEST | 443 | 49167 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.688209057 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.688216925 CEST | 443 | 49167 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.819591999 CEST | 443 | 49167 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.819653034 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.819677114 CEST | 443 | 49167 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.819714069 CEST | 443 | 49167 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.819720030 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.819757938 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.819786072 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.819799900 CEST | 443 | 49167 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:35.819812059 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:35.819844961 CEST | 49167 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:36.090228081 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:36.090276003 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:36.090333939 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:36.100688934 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:36.100708008 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:36.583976030 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:36.584053040 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:36.594480038 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:36.594500065 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:36.594758987 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:36.594806910 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:36.677649021 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:36.724508047 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.005739927 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.005817890 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.005850077 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.005850077 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.005872965 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.005883932 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.005889893 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.005912066 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.005916119 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.005953074 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.005956888 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.005965948 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.005991936 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.006030083 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.006033897 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.006074905 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.010495901 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.010571957 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.010576963 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.010611057 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.010617018 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.010628939 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.010651112 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.010672092 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.032651901 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.111108065 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.111166954 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.111179113 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.111212969 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.111217976 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.111252069 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.111268044 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.111270905 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.111289978 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.111309052 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.111396074 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.111432076 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.111447096 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.111478090 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.111921072 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.111967087 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.111970901 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112000942 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112001896 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.112010956 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112032890 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.112037897 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112071037 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.112076044 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112107992 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.112692118 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112735987 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.112741947 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112775087 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.112785101 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112818956 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.112833977 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112864017 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.112867117 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.112896919 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.113528967 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.113570929 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.113574982 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.113605022 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.113605976 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.113612890 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.113639116 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.217915058 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.217969894 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.217994928 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.218041897 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.218046904 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.218056917 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.218075991 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.218092918 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.218097925 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.218156099 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.218159914 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.218195915 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.218271971 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.218303919 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.218363047 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.218401909 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.218441963 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.218480110 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.219136953 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.219188929 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.219330072 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.219376087 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.220024109 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.220072985 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.220217943 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.220257998 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.220263004 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.220303059 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.221112013 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.221159935 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.221296072 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.221345901 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.221613884 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.221664906 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.307646990 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.307703018 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.307708025 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.307718039 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.307732105 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.307750940 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.307754993 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.307786942 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.321280003 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.321335077 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.321403027 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.321446896 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.321646929 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.321698904 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.321705103 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.321741104 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.321984053 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.322020054 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.322029114 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.322033882 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.322047949 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.322074890 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.322386026 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.322427034 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.322431087 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.322438002 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.322448969 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.322473049 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.322771072 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.322815895 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.323118925 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.323163986 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.323173046 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.323183060 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.323210955 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.323249102 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.323281050 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.323286057 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.323302984 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.323318005 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.323332071 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.323391914 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.323436975 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.323908091 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.323956966 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.324196100 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.324239016 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.324244976 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.324249029 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.324270964 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.324289083 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.324346066 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.324377060 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.324388027 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.324434042 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.325095892 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.325144053 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.325238943 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.325284958 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.325367928 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.325412989 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.325417042 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.325457096 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.325975895 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.326021910 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.326055050 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.326096058 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.326174974 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.326220036 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.326857090 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.326905012 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.326910019 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.326942921 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.327058077 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.327069998 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.327111959 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.399689913 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.399774075 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.399789095 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.399822950 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.413213968 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.413275957 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.413321972 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.413366079 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.413548946 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.413583994 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.413599014 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.413604021 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.413616896 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.413636923 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428241968 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.428333044 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428339958 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.428374052 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428406000 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.428436995 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.428457022 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428461075 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.428477049 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428489923 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428509951 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.428531885 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428544998 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428661108 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.428704023 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428719997 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.428769112 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.428819895 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.429404020 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.429466963 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.429471970 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.429514885 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.429527044 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.429567099 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.429723024 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.429864883 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.429915905 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.429920912 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.429960966 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.430084944 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.430130005 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.432843924 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.432879925 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.432903051 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.432907104 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.432919979 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.432946920 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.433021069 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.433033943 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.433078051 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.433084011 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.433089972 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.433115959 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.433130980 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.433264971 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.433276892 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.433299065 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.433564901 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.433618069 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.433626890 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.433660984 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.433700085 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.433743954 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.491439104 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.491508007 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.505095005 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.505129099 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.505158901 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.505162954 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.505173922 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.505198002 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.519675016 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.519706011 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.519740105 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.519743919 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.519753933 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.519779921 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.519802094 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.519848108 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.519876003 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.519936085 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.519979954 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.520090103 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.520304918 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.520350933 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.520356894 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.520365953 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.520387888 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.520808935 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.520836115 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.520853043 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.520859003 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.520875931 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.520900011 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.520931959 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.521034002 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.521080971 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.521204948 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.521522999 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.521589994 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.521637917 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.521681070 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.521683931 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.521692038 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.521719933 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.521840096 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.521878004 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.522011042 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.522141933 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.522181034 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.522186995 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.522191048 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.522217035 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.522228956 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.522233963 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.522243023 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.522257090 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.522373915 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.522732973 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.522787094 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.535182953 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.535264969 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.596748114 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.596807003 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.596811056 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.596827030 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.596858978 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.596865892 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.596949100 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.615212917 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.615277052 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.615279913 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.615291119 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.615323067 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.615340948 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.615391970 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.615587950 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.615631104 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.615637064 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.615642071 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.615679979 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.615717888 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616149902 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.616188049 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.616210938 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616216898 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.616235018 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616260052 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616261959 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.616271973 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.616300106 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616307974 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616312027 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.616339922 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:37.616348028 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616383076 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616585016 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616848946 CEST | 49168 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:37.616858959 CEST | 443 | 49168 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:39.144175053 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:39.149183989 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:39.149286985 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:39.152656078 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:39.157705069 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:39.672600985 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:39.885687113 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:39.885737896 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:39.941478968 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:40.086945057 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:40.196769953 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:40.230725050 CEST | 49170 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:40.230760098 CEST | 443 | 49170 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.230812073 CEST | 49170 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:40.231463909 CEST | 49170 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:40.231487036 CEST | 443 | 49170 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.258111954 CEST | 49171 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:40.258136034 CEST | 443 | 49171 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.258189917 CEST | 49171 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:40.261935949 CEST | 49171 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:40.261946917 CEST | 443 | 49171 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.409729958 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:40.409776926 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:40.712826967 CEST | 443 | 49170 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.712966919 CEST | 49170 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:40.739265919 CEST | 49170 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:40.739283085 CEST | 443 | 49170 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.739569902 CEST | 443 | 49170 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.740716934 CEST | 49170 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:40.744152069 CEST | 443 | 49171 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.744322062 CEST | 49171 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:40.750005960 CEST | 49171 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:40.750020027 CEST | 443 | 49171 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.750287056 CEST | 443 | 49171 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.784511089 CEST | 443 | 49170 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:40.838040113 CEST | 49171 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:40.880507946 CEST | 443 | 49171 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.216145992 CEST | 443 | 49171 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.216224909 CEST | 443 | 49171 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.216311932 CEST | 49171 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:41.216731071 CEST | 443 | 49170 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.216804981 CEST | 443 | 49170 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.216870070 CEST | 49170 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:41.221323967 CEST | 49170 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:41.221338034 CEST | 443 | 49170 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.229581118 CEST | 49171 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:41.286626101 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:41.291495085 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:41.390372992 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:41.478656054 CEST | 49172 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:41.478701115 CEST | 443 | 49172 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.478873968 CEST | 49172 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:41.479509115 CEST | 49172 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:41.479521036 CEST | 443 | 49172 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.605813026 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:41.605887890 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:41.724507093 CEST | 49173 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:41.724549055 CEST | 443 | 49173 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.724622011 CEST | 49173 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:41.765510082 CEST | 49173 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:41.765527964 CEST | 443 | 49173 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:41.982393026 CEST | 443 | 49172 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.062167883 CEST | 49172 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:42.062195063 CEST | 443 | 49172 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.175206900 CEST | 443 | 49172 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.175296068 CEST | 443 | 49172 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.175353050 CEST | 49172 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:42.244645119 CEST | 443 | 49173 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.244764090 CEST | 49173 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:42.254317999 CEST | 49172 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:42.315186977 CEST | 49173 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:42.315200090 CEST | 443 | 49173 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.315944910 CEST | 443 | 49173 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.345237970 CEST | 49173 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:42.388505936 CEST | 443 | 49173 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.446840048 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:42.452143908 CEST | 80 | 49169 | 193.122.130.0 | 192.168.2.22 |
Jul 4, 2024 21:38:42.452195883 CEST | 49169 | 80 | 192.168.2.22 | 193.122.130.0 |
Jul 4, 2024 21:38:42.491157055 CEST | 49174 | 80 | 192.168.2.22 | 193.122.6.168 |
Jul 4, 2024 21:38:42.495985985 CEST | 80 | 49174 | 193.122.6.168 | 192.168.2.22 |
Jul 4, 2024 21:38:42.496047974 CEST | 49174 | 80 | 192.168.2.22 | 193.122.6.168 |
Jul 4, 2024 21:38:42.496218920 CEST | 49174 | 80 | 192.168.2.22 | 193.122.6.168 |
Jul 4, 2024 21:38:42.500957966 CEST | 80 | 49174 | 193.122.6.168 | 192.168.2.22 |
Jul 4, 2024 21:38:42.678138018 CEST | 443 | 49173 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.678237915 CEST | 443 | 49173 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:42.678307056 CEST | 49173 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:42.682348013 CEST | 49173 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:42.682365894 CEST | 443 | 49173 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:43.147842884 CEST | 80 | 49174 | 193.122.6.168 | 192.168.2.22 |
Jul 4, 2024 21:38:43.359566927 CEST | 49174 | 80 | 192.168.2.22 | 193.122.6.168 |
Jul 4, 2024 21:38:43.406956911 CEST | 80 | 49174 | 193.122.6.168 | 192.168.2.22 |
Jul 4, 2024 21:38:43.406994104 CEST | 49174 | 80 | 192.168.2.22 | 193.122.6.168 |
Jul 4, 2024 21:38:43.420968056 CEST | 49175 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:43.421013117 CEST | 443 | 49175 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:43.421060085 CEST | 49175 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:43.421657085 CEST | 49175 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:43.421668053 CEST | 443 | 49175 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:43.901921034 CEST | 443 | 49175 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:43.904927015 CEST | 49175 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:43.904952049 CEST | 443 | 49175 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:44.056591034 CEST | 443 | 49175 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:44.056673050 CEST | 443 | 49175 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:44.056792021 CEST | 49175 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:44.057173014 CEST | 49175 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:44.071229935 CEST | 49174 | 80 | 192.168.2.22 | 193.122.6.168 |
Jul 4, 2024 21:38:44.076348066 CEST | 80 | 49174 | 193.122.6.168 | 192.168.2.22 |
Jul 4, 2024 21:38:44.076406002 CEST | 49174 | 80 | 192.168.2.22 | 193.122.6.168 |
Jul 4, 2024 21:38:44.094717979 CEST | 49176 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:44.099569082 CEST | 80 | 49176 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:44.099626064 CEST | 49176 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:44.099689960 CEST | 49176 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:44.104598999 CEST | 80 | 49176 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:45.822069883 CEST | 80 | 49176 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:45.836863041 CEST | 49177 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:45.836891890 CEST | 443 | 49177 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:45.836947918 CEST | 49177 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:45.837373972 CEST | 49177 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:45.837387085 CEST | 443 | 49177 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:46.027173042 CEST | 49176 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:46.327091932 CEST | 443 | 49177 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:46.330193043 CEST | 49177 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:46.330207109 CEST | 443 | 49177 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:46.481321096 CEST | 443 | 49177 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:46.481401920 CEST | 443 | 49177 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:46.481566906 CEST | 49177 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:46.481869936 CEST | 49177 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:46.732060909 CEST | 49178 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:46.736953974 CEST | 80 | 49178 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:46.737095118 CEST | 49178 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:46.737095118 CEST | 49178 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:46.741944075 CEST | 80 | 49178 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:47.441788912 CEST | 80 | 49178 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:47.456379890 CEST | 49179 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:47.456418037 CEST | 443 | 49179 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:47.456645012 CEST | 49179 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:47.458832979 CEST | 49179 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:47.458852053 CEST | 443 | 49179 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:47.633728027 CEST | 80 | 49178 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:47.633891106 CEST | 49178 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:47.944825888 CEST | 443 | 49179 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:47.947844028 CEST | 49179 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:47.947859049 CEST | 443 | 49179 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:48.085783005 CEST | 443 | 49179 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:48.085867882 CEST | 443 | 49179 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:48.086158037 CEST | 49179 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:48.086477041 CEST | 49179 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:48.099313021 CEST | 49178 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:48.106019974 CEST | 80 | 49178 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:48.106081963 CEST | 49178 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:48.121505976 CEST | 49180 | 80 | 192.168.2.22 | 132.226.247.73 |
Jul 4, 2024 21:38:48.126471996 CEST | 80 | 49180 | 132.226.247.73 | 192.168.2.22 |
Jul 4, 2024 21:38:48.126537085 CEST | 49180 | 80 | 192.168.2.22 | 132.226.247.73 |
Jul 4, 2024 21:38:48.126636982 CEST | 49180 | 80 | 192.168.2.22 | 132.226.247.73 |
Jul 4, 2024 21:38:48.131392956 CEST | 80 | 49180 | 132.226.247.73 | 192.168.2.22 |
Jul 4, 2024 21:38:48.818133116 CEST | 80 | 49180 | 132.226.247.73 | 192.168.2.22 |
Jul 4, 2024 21:38:48.879324913 CEST | 49181 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:48.879360914 CEST | 443 | 49181 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:48.879416943 CEST | 49181 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:48.879801035 CEST | 49181 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:48.879811049 CEST | 443 | 49181 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:49.022394896 CEST | 49180 | 80 | 192.168.2.22 | 132.226.247.73 |
Jul 4, 2024 21:38:49.370244026 CEST | 443 | 49181 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:49.377774000 CEST | 49181 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:49.377795935 CEST | 443 | 49181 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:49.573259115 CEST | 443 | 49181 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:49.573349953 CEST | 443 | 49181 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:49.573621988 CEST | 49181 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:49.573945045 CEST | 49181 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:49.585875988 CEST | 49180 | 80 | 192.168.2.22 | 132.226.247.73 |
Jul 4, 2024 21:38:49.591025114 CEST | 80 | 49180 | 132.226.247.73 | 192.168.2.22 |
Jul 4, 2024 21:38:49.591097116 CEST | 49180 | 80 | 192.168.2.22 | 132.226.247.73 |
Jul 4, 2024 21:38:49.611133099 CEST | 49182 | 80 | 192.168.2.22 | 132.226.8.169 |
Jul 4, 2024 21:38:49.619210005 CEST | 80 | 49182 | 132.226.8.169 | 192.168.2.22 |
Jul 4, 2024 21:38:49.619283915 CEST | 49182 | 80 | 192.168.2.22 | 132.226.8.169 |
Jul 4, 2024 21:38:49.619333982 CEST | 49182 | 80 | 192.168.2.22 | 132.226.8.169 |
Jul 4, 2024 21:38:49.626729012 CEST | 80 | 49182 | 132.226.8.169 | 192.168.2.22 |
Jul 4, 2024 21:38:50.781601906 CEST | 80 | 49182 | 132.226.8.169 | 192.168.2.22 |
Jul 4, 2024 21:38:50.797463894 CEST | 49183 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:50.797501087 CEST | 443 | 49183 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:50.797580957 CEST | 49183 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:50.797837973 CEST | 49183 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:50.797849894 CEST | 443 | 49183 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:50.987988949 CEST | 49182 | 80 | 192.168.2.22 | 132.226.8.169 |
Jul 4, 2024 21:38:50.989830017 CEST | 80 | 49182 | 132.226.8.169 | 192.168.2.22 |
Jul 4, 2024 21:38:50.992314100 CEST | 49182 | 80 | 192.168.2.22 | 132.226.8.169 |
Jul 4, 2024 21:38:51.281749964 CEST | 443 | 49183 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:51.287225962 CEST | 49183 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:51.287239075 CEST | 443 | 49183 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:51.422379971 CEST | 443 | 49183 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:51.422451019 CEST | 443 | 49183 | 188.114.96.3 | 192.168.2.22 |
Jul 4, 2024 21:38:51.422660112 CEST | 49183 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:51.422962904 CEST | 49183 | 443 | 192.168.2.22 | 188.114.96.3 |
Jul 4, 2024 21:38:51.435355902 CEST | 49182 | 80 | 192.168.2.22 | 132.226.8.169 |
Jul 4, 2024 21:38:51.440567970 CEST | 80 | 49182 | 132.226.8.169 | 192.168.2.22 |
Jul 4, 2024 21:38:51.440634012 CEST | 49182 | 80 | 192.168.2.22 | 132.226.8.169 |
Jul 4, 2024 21:38:51.455338955 CEST | 49184 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:51.460565090 CEST | 80 | 49184 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:51.460638046 CEST | 49184 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:51.460690022 CEST | 49184 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:51.466067076 CEST | 80 | 49184 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:52.037347078 CEST | 80 | 49184 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:38:52.057205915 CEST | 49185 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:52.057255030 CEST | 443 | 49185 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:52.057311058 CEST | 49185 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:52.057631016 CEST | 49185 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:52.057647943 CEST | 443 | 49185 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:52.234733105 CEST | 49184 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:38:52.538580894 CEST | 443 | 49185 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:52.542145014 CEST | 49185 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:52.542188883 CEST | 443 | 49185 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:52.679672003 CEST | 443 | 49185 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:52.679754019 CEST | 443 | 49185 | 188.114.97.3 | 192.168.2.22 |
Jul 4, 2024 21:38:52.680283070 CEST | 49185 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:38:52.680891037 CEST | 49185 | 443 | 192.168.2.22 | 188.114.97.3 |
Jul 4, 2024 21:39:50.821662903 CEST | 80 | 49176 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:39:50.821801901 CEST | 49176 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:39:57.039510965 CEST | 80 | 49184 | 158.101.44.242 | 192.168.2.22 |
Jul 4, 2024 21:39:57.039606094 CEST | 49184 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:40:32.060733080 CEST | 49184 | 80 | 192.168.2.22 | 158.101.44.242 |
Jul 4, 2024 21:40:32.065638065 CEST | 80 | 49184 | 158.101.44.242 | 192.168.2.22 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 4, 2024 21:38:23.992229939 CEST | 54562 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:24.591535091 CEST | 53 | 54562 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:26.436096907 CEST | 52917 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:26.448363066 CEST | 53 | 52917 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:26.450126886 CEST | 62751 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:26.461026907 CEST | 53 | 62751 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:30.387315989 CEST | 57893 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:30.394522905 CEST | 53 | 57893 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:30.397080898 CEST | 54821 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:30.403829098 CEST | 53 | 54821 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:31.474174023 CEST | 54719 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:31.488965034 CEST | 53 | 54719 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:31.490118027 CEST | 49881 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:31.497627020 CEST | 53 | 49881 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:33.005484104 CEST | 54998 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:33.017782927 CEST | 53 | 54998 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:33.020697117 CEST | 52781 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:33.115381002 CEST | 53 | 52781 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:36.066443920 CEST | 63926 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:36.074003935 CEST | 53 | 63926 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:39.015136003 CEST | 65510 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:39.021970987 CEST | 53 | 65510 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:39.118216991 CEST | 62672 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:39.125556946 CEST | 53 | 62672 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:40.214000940 CEST | 56475 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:40.220890999 CEST | 53 | 56475 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:40.222974062 CEST | 49384 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:40.229613066 CEST | 53 | 49384 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:40.245145082 CEST | 54842 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:40.257487059 CEST | 53 | 54842 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:41.702188969 CEST | 58105 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:41.708960056 CEST | 53 | 58105 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:41.710690022 CEST | 64928 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:41.717355013 CEST | 53 | 64928 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:42.463310957 CEST | 57390 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:42.469697952 CEST | 53 | 57390 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:42.480763912 CEST | 58095 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:42.487715960 CEST | 53 | 58095 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:43.171099901 CEST | 54261 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:43.408374071 CEST | 53 | 54261 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:43.408622980 CEST | 54261 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:43.420458078 CEST | 53 | 54261 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:44.078524113 CEST | 60507 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:44.085685968 CEST | 53 | 60507 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:44.087956905 CEST | 50446 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:44.094325066 CEST | 53 | 50446 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:45.829417944 CEST | 55939 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:45.836422920 CEST | 53 | 55939 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:46.714828014 CEST | 49608 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:46.721872091 CEST | 53 | 49608 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:46.725192070 CEST | 61486 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:46.731561899 CEST | 53 | 61486 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:47.449202061 CEST | 62453 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:47.455936909 CEST | 53 | 62453 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:48.105139017 CEST | 50568 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:48.111586094 CEST | 53 | 50568 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:48.114401102 CEST | 61467 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:48.121042013 CEST | 53 | 61467 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:48.866677046 CEST | 61618 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:48.877582073 CEST | 53 | 61618 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:49.591061115 CEST | 54422 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:49.599879026 CEST | 53 | 54422 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:49.601973057 CEST | 52074 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:49.610836983 CEST | 53 | 52074 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:50.787220955 CEST | 50337 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:50.797138929 CEST | 53 | 50337 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:51.440439939 CEST | 61826 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:51.446749926 CEST | 53 | 61826 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:51.448702097 CEST | 56329 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:51.455014944 CEST | 53 | 56329 | 8.8.8.8 | 192.168.2.22 |
Jul 4, 2024 21:38:52.045350075 CEST | 63469 | 53 | 192.168.2.22 | 8.8.8.8 |
Jul 4, 2024 21:38:52.056853056 CEST | 53 | 63469 | 8.8.8.8 | 192.168.2.22 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Jul 4, 2024 21:38:23.992229939 CEST | 192.168.2.22 | 8.8.8.8 | 0xcfea | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:26.436096907 CEST | 192.168.2.22 | 8.8.8.8 | 0xb60a | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:26.450126886 CEST | 192.168.2.22 | 8.8.8.8 | 0xb613 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:30.387315989 CEST | 192.168.2.22 | 8.8.8.8 | 0x1100 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:30.397080898 CEST | 192.168.2.22 | 8.8.8.8 | 0x2664 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:31.474174023 CEST | 192.168.2.22 | 8.8.8.8 | 0xd97e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:31.490118027 CEST | 192.168.2.22 | 8.8.8.8 | 0x9c5b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:33.005484104 CEST | 192.168.2.22 | 8.8.8.8 | 0x4189 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:33.020697117 CEST | 192.168.2.22 | 8.8.8.8 | 0x2383 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:36.066443920 CEST | 192.168.2.22 | 8.8.8.8 | 0x76b5 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:39.015136003 CEST | 192.168.2.22 | 8.8.8.8 | 0x16ef | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:39.118216991 CEST | 192.168.2.22 | 8.8.8.8 | 0x5826 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:40.214000940 CEST | 192.168.2.22 | 8.8.8.8 | 0x1185 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:40.222974062 CEST | 192.168.2.22 | 8.8.8.8 | 0x98ab | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:40.245145082 CEST | 192.168.2.22 | 8.8.8.8 | 0xd553 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:41.702188969 CEST | 192.168.2.22 | 8.8.8.8 | 0xae0f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:41.710690022 CEST | 192.168.2.22 | 8.8.8.8 | 0x61d4 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:42.463310957 CEST | 192.168.2.22 | 8.8.8.8 | 0x18a5 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:42.480763912 CEST | 192.168.2.22 | 8.8.8.8 | 0x7134 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:43.171099901 CEST | 192.168.2.22 | 8.8.8.8 | 0x75ba | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:43.408622980 CEST | 192.168.2.22 | 8.8.8.8 | 0x75ba | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:44.078524113 CEST | 192.168.2.22 | 8.8.8.8 | 0x2525 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:44.087956905 CEST | 192.168.2.22 | 8.8.8.8 | 0x79e7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:45.829417944 CEST | 192.168.2.22 | 8.8.8.8 | 0x3dd9 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:46.714828014 CEST | 192.168.2.22 | 8.8.8.8 | 0xbe2d | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:46.725192070 CEST | 192.168.2.22 | 8.8.8.8 | 0x6bd4 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:47.449202061 CEST | 192.168.2.22 | 8.8.8.8 | 0x2c90 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:48.105139017 CEST | 192.168.2.22 | 8.8.8.8 | 0x2067 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:48.114401102 CEST | 192.168.2.22 | 8.8.8.8 | 0x57fd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:48.866677046 CEST | 192.168.2.22 | 8.8.8.8 | 0x1ed6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:49.591061115 CEST | 192.168.2.22 | 8.8.8.8 | 0x194 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:49.601973057 CEST | 192.168.2.22 | 8.8.8.8 | 0x2284 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:50.787220955 CEST | 192.168.2.22 | 8.8.8.8 | 0x3e63 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:51.440439939 CEST | 192.168.2.22 | 8.8.8.8 | 0x70ac | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:51.448702097 CEST | 192.168.2.22 | 8.8.8.8 | 0xf6b4 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:38:52.045350075 CEST | 192.168.2.22 | 8.8.8.8 | 0xb809 | Standard query (0) | A (IP address) | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Jul 4, 2024 21:38:24.591535091 CEST | 8.8.8.8 | 192.168.2.22 | 0xcfea | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:24.591535091 CEST | 8.8.8.8 | 192.168.2.22 | 0xcfea | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:26.448363066 CEST | 8.8.8.8 | 192.168.2.22 | 0xb60a | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:26.448363066 CEST | 8.8.8.8 | 192.168.2.22 | 0xb60a | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:26.461026907 CEST | 8.8.8.8 | 192.168.2.22 | 0xb613 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:26.461026907 CEST | 8.8.8.8 | 192.168.2.22 | 0xb613 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:30.394522905 CEST | 8.8.8.8 | 192.168.2.22 | 0x1100 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:30.394522905 CEST | 8.8.8.8 | 192.168.2.22 | 0x1100 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:30.403829098 CEST | 8.8.8.8 | 192.168.2.22 | 0x2664 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:30.403829098 CEST | 8.8.8.8 | 192.168.2.22 | 0x2664 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:31.488965034 CEST | 8.8.8.8 | 192.168.2.22 | 0xd97e | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:31.488965034 CEST | 8.8.8.8 | 192.168.2.22 | 0xd97e | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:31.497627020 CEST | 8.8.8.8 | 192.168.2.22 | 0x9c5b | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:31.497627020 CEST | 8.8.8.8 | 192.168.2.22 | 0x9c5b | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:33.017782927 CEST | 8.8.8.8 | 192.168.2.22 | 0x4189 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:33.017782927 CEST | 8.8.8.8 | 192.168.2.22 | 0x4189 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:33.115381002 CEST | 8.8.8.8 | 192.168.2.22 | 0x2383 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:33.115381002 CEST | 8.8.8.8 | 192.168.2.22 | 0x2383 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:36.074003935 CEST | 8.8.8.8 | 192.168.2.22 | 0x76b5 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:36.074003935 CEST | 8.8.8.8 | 192.168.2.22 | 0x76b5 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.021970987 CEST | 8.8.8.8 | 192.168.2.22 | 0x16ef | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.021970987 CEST | 8.8.8.8 | 192.168.2.22 | 0x16ef | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.021970987 CEST | 8.8.8.8 | 192.168.2.22 | 0x16ef | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.021970987 CEST | 8.8.8.8 | 192.168.2.22 | 0x16ef | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.021970987 CEST | 8.8.8.8 | 192.168.2.22 | 0x16ef | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.021970987 CEST | 8.8.8.8 | 192.168.2.22 | 0x16ef | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.125556946 CEST | 8.8.8.8 | 192.168.2.22 | 0x5826 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.125556946 CEST | 8.8.8.8 | 192.168.2.22 | 0x5826 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.125556946 CEST | 8.8.8.8 | 192.168.2.22 | 0x5826 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.125556946 CEST | 8.8.8.8 | 192.168.2.22 | 0x5826 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.125556946 CEST | 8.8.8.8 | 192.168.2.22 | 0x5826 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:39.125556946 CEST | 8.8.8.8 | 192.168.2.22 | 0x5826 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:40.220890999 CEST | 8.8.8.8 | 192.168.2.22 | 0x1185 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:40.220890999 CEST | 8.8.8.8 | 192.168.2.22 | 0x1185 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:40.229613066 CEST | 8.8.8.8 | 192.168.2.22 | 0x98ab | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:40.229613066 CEST | 8.8.8.8 | 192.168.2.22 | 0x98ab | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:40.257487059 CEST | 8.8.8.8 | 192.168.2.22 | 0xd553 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:40.257487059 CEST | 8.8.8.8 | 192.168.2.22 | 0xd553 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:41.708960056 CEST | 8.8.8.8 | 192.168.2.22 | 0xae0f | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:41.708960056 CEST | 8.8.8.8 | 192.168.2.22 | 0xae0f | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:41.717355013 CEST | 8.8.8.8 | 192.168.2.22 | 0x61d4 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:41.717355013 CEST | 8.8.8.8 | 192.168.2.22 | 0x61d4 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.469697952 CEST | 8.8.8.8 | 192.168.2.22 | 0x18a5 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.469697952 CEST | 8.8.8.8 | 192.168.2.22 | 0x18a5 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.469697952 CEST | 8.8.8.8 | 192.168.2.22 | 0x18a5 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.469697952 CEST | 8.8.8.8 | 192.168.2.22 | 0x18a5 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.469697952 CEST | 8.8.8.8 | 192.168.2.22 | 0x18a5 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.469697952 CEST | 8.8.8.8 | 192.168.2.22 | 0x18a5 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.487715960 CEST | 8.8.8.8 | 192.168.2.22 | 0x7134 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.487715960 CEST | 8.8.8.8 | 192.168.2.22 | 0x7134 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.487715960 CEST | 8.8.8.8 | 192.168.2.22 | 0x7134 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.487715960 CEST | 8.8.8.8 | 192.168.2.22 | 0x7134 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.487715960 CEST | 8.8.8.8 | 192.168.2.22 | 0x7134 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:42.487715960 CEST | 8.8.8.8 | 192.168.2.22 | 0x7134 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:43.408374071 CEST | 8.8.8.8 | 192.168.2.22 | 0x75ba | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:43.408374071 CEST | 8.8.8.8 | 192.168.2.22 | 0x75ba | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:43.420458078 CEST | 8.8.8.8 | 192.168.2.22 | 0x75ba | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:43.420458078 CEST | 8.8.8.8 | 192.168.2.22 | 0x75ba | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.085685968 CEST | 8.8.8.8 | 192.168.2.22 | 0x2525 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.085685968 CEST | 8.8.8.8 | 192.168.2.22 | 0x2525 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.085685968 CEST | 8.8.8.8 | 192.168.2.22 | 0x2525 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.085685968 CEST | 8.8.8.8 | 192.168.2.22 | 0x2525 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.085685968 CEST | 8.8.8.8 | 192.168.2.22 | 0x2525 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.085685968 CEST | 8.8.8.8 | 192.168.2.22 | 0x2525 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.094325066 CEST | 8.8.8.8 | 192.168.2.22 | 0x79e7 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.094325066 CEST | 8.8.8.8 | 192.168.2.22 | 0x79e7 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.094325066 CEST | 8.8.8.8 | 192.168.2.22 | 0x79e7 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.094325066 CEST | 8.8.8.8 | 192.168.2.22 | 0x79e7 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.094325066 CEST | 8.8.8.8 | 192.168.2.22 | 0x79e7 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:44.094325066 CEST | 8.8.8.8 | 192.168.2.22 | 0x79e7 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:45.836422920 CEST | 8.8.8.8 | 192.168.2.22 | 0x3dd9 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:45.836422920 CEST | 8.8.8.8 | 192.168.2.22 | 0x3dd9 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.721872091 CEST | 8.8.8.8 | 192.168.2.22 | 0xbe2d | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.721872091 CEST | 8.8.8.8 | 192.168.2.22 | 0xbe2d | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.721872091 CEST | 8.8.8.8 | 192.168.2.22 | 0xbe2d | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.721872091 CEST | 8.8.8.8 | 192.168.2.22 | 0xbe2d | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.721872091 CEST | 8.8.8.8 | 192.168.2.22 | 0xbe2d | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.721872091 CEST | 8.8.8.8 | 192.168.2.22 | 0xbe2d | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.731561899 CEST | 8.8.8.8 | 192.168.2.22 | 0x6bd4 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.731561899 CEST | 8.8.8.8 | 192.168.2.22 | 0x6bd4 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.731561899 CEST | 8.8.8.8 | 192.168.2.22 | 0x6bd4 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.731561899 CEST | 8.8.8.8 | 192.168.2.22 | 0x6bd4 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.731561899 CEST | 8.8.8.8 | 192.168.2.22 | 0x6bd4 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:46.731561899 CEST | 8.8.8.8 | 192.168.2.22 | 0x6bd4 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:47.455936909 CEST | 8.8.8.8 | 192.168.2.22 | 0x2c90 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:47.455936909 CEST | 8.8.8.8 | 192.168.2.22 | 0x2c90 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.111586094 CEST | 8.8.8.8 | 192.168.2.22 | 0x2067 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.111586094 CEST | 8.8.8.8 | 192.168.2.22 | 0x2067 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.111586094 CEST | 8.8.8.8 | 192.168.2.22 | 0x2067 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.111586094 CEST | 8.8.8.8 | 192.168.2.22 | 0x2067 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.111586094 CEST | 8.8.8.8 | 192.168.2.22 | 0x2067 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.111586094 CEST | 8.8.8.8 | 192.168.2.22 | 0x2067 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.121042013 CEST | 8.8.8.8 | 192.168.2.22 | 0x57fd | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.121042013 CEST | 8.8.8.8 | 192.168.2.22 | 0x57fd | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.121042013 CEST | 8.8.8.8 | 192.168.2.22 | 0x57fd | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.121042013 CEST | 8.8.8.8 | 192.168.2.22 | 0x57fd | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.121042013 CEST | 8.8.8.8 | 192.168.2.22 | 0x57fd | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.121042013 CEST | 8.8.8.8 | 192.168.2.22 | 0x57fd | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.877582073 CEST | 8.8.8.8 | 192.168.2.22 | 0x1ed6 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:48.877582073 CEST | 8.8.8.8 | 192.168.2.22 | 0x1ed6 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.599879026 CEST | 8.8.8.8 | 192.168.2.22 | 0x194 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.599879026 CEST | 8.8.8.8 | 192.168.2.22 | 0x194 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.599879026 CEST | 8.8.8.8 | 192.168.2.22 | 0x194 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.599879026 CEST | 8.8.8.8 | 192.168.2.22 | 0x194 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.599879026 CEST | 8.8.8.8 | 192.168.2.22 | 0x194 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.599879026 CEST | 8.8.8.8 | 192.168.2.22 | 0x194 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.610836983 CEST | 8.8.8.8 | 192.168.2.22 | 0x2284 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.610836983 CEST | 8.8.8.8 | 192.168.2.22 | 0x2284 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.610836983 CEST | 8.8.8.8 | 192.168.2.22 | 0x2284 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.610836983 CEST | 8.8.8.8 | 192.168.2.22 | 0x2284 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.610836983 CEST | 8.8.8.8 | 192.168.2.22 | 0x2284 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:49.610836983 CEST | 8.8.8.8 | 192.168.2.22 | 0x2284 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:50.797138929 CEST | 8.8.8.8 | 192.168.2.22 | 0x3e63 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:50.797138929 CEST | 8.8.8.8 | 192.168.2.22 | 0x3e63 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.446749926 CEST | 8.8.8.8 | 192.168.2.22 | 0x70ac | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.446749926 CEST | 8.8.8.8 | 192.168.2.22 | 0x70ac | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.446749926 CEST | 8.8.8.8 | 192.168.2.22 | 0x70ac | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.446749926 CEST | 8.8.8.8 | 192.168.2.22 | 0x70ac | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.446749926 CEST | 8.8.8.8 | 192.168.2.22 | 0x70ac | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.446749926 CEST | 8.8.8.8 | 192.168.2.22 | 0x70ac | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.455014944 CEST | 8.8.8.8 | 192.168.2.22 | 0xf6b4 | No error (0) | checkip.dyndns.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.455014944 CEST | 8.8.8.8 | 192.168.2.22 | 0xf6b4 | No error (0) | 193.122.130.0 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.455014944 CEST | 8.8.8.8 | 192.168.2.22 | 0xf6b4 | No error (0) | 158.101.44.242 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.455014944 CEST | 8.8.8.8 | 192.168.2.22 | 0xf6b4 | No error (0) | 132.226.247.73 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.455014944 CEST | 8.8.8.8 | 192.168.2.22 | 0xf6b4 | No error (0) | 193.122.6.168 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:51.455014944 CEST | 8.8.8.8 | 192.168.2.22 | 0xf6b4 | No error (0) | 132.226.8.169 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:52.056853056 CEST | 8.8.8.8 | 192.168.2.22 | 0xb809 | No error (0) | 188.114.97.3 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:38:52.056853056 CEST | 8.8.8.8 | 192.168.2.22 | 0xb809 | No error (0) | 188.114.96.3 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.22 | 49169 | 193.122.130.0 | 80 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Jul 4, 2024 21:38:39.152656078 CEST | 151 | OUT | |
Jul 4, 2024 21:38:39.672600985 CEST | 320 | IN | |
Jul 4, 2024 21:38:39.885687113 CEST | 320 | IN | |
Jul 4, 2024 21:38:39.941478968 CEST | 127 | OUT | |
Jul 4, 2024 21:38:40.196769953 CEST | 320 | IN | |
Jul 4, 2024 21:38:40.409729958 CEST | 320 | IN | |
Jul 4, 2024 21:38:41.286626101 CEST | 127 | OUT | |
Jul 4, 2024 21:38:41.390372992 CEST | 320 | IN | |
Jul 4, 2024 21:38:41.605813026 CEST | 320 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.22 | 49174 | 193.122.6.168 | 80 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Jul 4, 2024 21:38:42.496218920 CEST | 127 | OUT | |
Jul 4, 2024 21:38:43.147842884 CEST | 320 | IN | |
Jul 4, 2024 21:38:43.406956911 CEST | 320 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.22 | 49176 | 158.101.44.242 | 80 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Jul 4, 2024 21:38:44.099689960 CEST | 127 | OUT | |
Jul 4, 2024 21:38:45.822069883 CEST | 320 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.22 | 49178 | 158.101.44.242 | 80 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Jul 4, 2024 21:38:46.737095118 CEST | 151 | OUT | |
Jul 4, 2024 21:38:47.441788912 CEST | 320 | IN | |
Jul 4, 2024 21:38:47.633728027 CEST | 320 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.22 | 49180 | 132.226.247.73 | 80 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Jul 4, 2024 21:38:48.126636982 CEST | 151 | OUT | |
Jul 4, 2024 21:38:48.818133116 CEST | 320 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.22 | 49182 | 132.226.8.169 | 80 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Jul 4, 2024 21:38:49.619333982 CEST | 151 | OUT | |
Jul 4, 2024 21:38:50.781601906 CEST | 272 | IN | |
Jul 4, 2024 21:38:50.989830017 CEST | 272 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.22 | 49184 | 158.101.44.242 | 80 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Jul 4, 2024 21:38:51.460690022 CEST | 151 | OUT | |
Jul 4, 2024 21:38:52.037347078 CEST | 320 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.22 | 49161 | 188.114.97.3 | 443 | 2544 | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:25 UTC | 131 | OUT | |
2024-07-04 19:38:25 UTC | 707 | IN | |
2024-07-04 19:38:25 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.22 | 49162 | 188.114.97.3 | 443 | 2544 | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:26 UTC | 117 | OUT | |
2024-07-04 19:38:27 UTC | 833 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
2 | 192.168.2.22 | 49163 | 188.114.96.3 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:30 UTC | 126 | OUT | |
2024-07-04 19:38:31 UTC | 699 | IN | |
2024-07-04 19:38:31 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
3 | 192.168.2.22 | 49164 | 188.114.96.3 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:31 UTC | 156 | OUT | |
2024-07-04 19:38:32 UTC | 724 | IN | |
2024-07-04 19:38:32 UTC | 231 | IN | |
2024-07-04 19:38:32 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
4 | 192.168.2.22 | 49165 | 188.114.97.3 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:33 UTC | 156 | OUT | |
2024-07-04 19:38:33 UTC | 732 | IN | |
2024-07-04 19:38:33 UTC | 231 | IN | |
2024-07-04 19:38:33 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.22 | 49166 | 188.114.97.3 | 443 | 2544 | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:34 UTC | 347 | OUT | |
2024-07-04 19:38:34 UTC | 835 | IN | |
2024-07-04 19:38:34 UTC | 534 | IN | |
2024-07-04 19:38:34 UTC | 1369 | IN | |
2024-07-04 19:38:34 UTC | 1369 | IN | |
2024-07-04 19:38:34 UTC | 1369 | IN | |
2024-07-04 19:38:34 UTC | 1369 | IN | |
2024-07-04 19:38:34 UTC | 1369 | IN | |
2024-07-04 19:38:34 UTC | 1369 | IN | |
2024-07-04 19:38:34 UTC | 1369 | IN | |
2024-07-04 19:38:34 UTC | 1369 | IN | |
2024-07-04 19:38:34 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.22 | 49167 | 188.114.97.3 | 443 | 2544 | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:35 UTC | 136 | OUT | |
2024-07-04 19:38:35 UTC | 835 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.22 | 49168 | 188.114.97.3 | 443 | 3436 | C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.EXE |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:36 UTC | 303 | OUT | |
2024-07-04 19:38:37 UTC | 761 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN | |
2024-07-04 19:38:37 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
8 | 192.168.2.22 | 49170 | 188.114.97.3 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:40 UTC | 156 | OUT | |
2024-07-04 19:38:41 UTC | 722 | IN | |
2024-07-04 19:38:41 UTC | 231 | IN | |
2024-07-04 19:38:41 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.22 | 49171 | 188.114.96.3 | 443 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:40 UTC | 84 | OUT | |
2024-07-04 19:38:41 UTC | 706 | IN | |
2024-07-04 19:38:41 UTC | 340 | IN | |
2024-07-04 19:38:41 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.22 | 49172 | 188.114.96.3 | 443 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:42 UTC | 60 | OUT | |
2024-07-04 19:38:42 UTC | 712 | IN | |
2024-07-04 19:38:42 UTC | 340 | IN | |
2024-07-04 19:38:42 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
11 | 192.168.2.22 | 49173 | 188.114.96.3 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:42 UTC | 156 | OUT | |
2024-07-04 19:38:42 UTC | 720 | IN | |
2024-07-04 19:38:42 UTC | 231 | IN | |
2024-07-04 19:38:42 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
12 | 192.168.2.22 | 49175 | 188.114.96.3 | 443 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:43 UTC | 84 | OUT | |
2024-07-04 19:38:44 UTC | 708 | IN | |
2024-07-04 19:38:44 UTC | 340 | IN | |
2024-07-04 19:38:44 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
13 | 192.168.2.22 | 49177 | 188.114.96.3 | 443 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:46 UTC | 84 | OUT | |
2024-07-04 19:38:46 UTC | 710 | IN | |
2024-07-04 19:38:46 UTC | 340 | IN | |
2024-07-04 19:38:46 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
14 | 192.168.2.22 | 49179 | 188.114.97.3 | 443 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:47 UTC | 84 | OUT | |
2024-07-04 19:38:48 UTC | 706 | IN | |
2024-07-04 19:38:48 UTC | 340 | IN | |
2024-07-04 19:38:48 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
15 | 192.168.2.22 | 49181 | 188.114.96.3 | 443 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:49 UTC | 60 | OUT | |
2024-07-04 19:38:49 UTC | 712 | IN | |
2024-07-04 19:38:49 UTC | 340 | IN | |
2024-07-04 19:38:49 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
16 | 192.168.2.22 | 49183 | 188.114.96.3 | 443 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:51 UTC | 84 | OUT | |
2024-07-04 19:38:51 UTC | 706 | IN | |
2024-07-04 19:38:51 UTC | 340 | IN | |
2024-07-04 19:38:51 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
17 | 192.168.2.22 | 49185 | 188.114.97.3 | 443 | 3532 | C:\Users\user\AppData\Roaming\obi23456.scr |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:38:52 UTC | 84 | OUT | |
2024-07-04 19:38:52 UTC | 706 | IN | |
2024-07-04 19:38:52 UTC | 340 | IN | |
2024-07-04 19:38:52 UTC | 5 | IN |
Click to jump to process
Click to jump to process
back
Click to dive into process behavior distribution
Click to jump to process
Target ID: | 0 |
Start time: | 15:38:20 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Microsoft Office\Office14\WINWORD.EXE |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x13f0b0000 |
File size: | 1'423'704 bytes |
MD5 hash: | 9EE74859D22DAE61F1750B3A1BACB6F5 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |
Target ID: | 9 |
Start time: | 15:38:35 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.EXE |
Wow64 process (32bit): | true |
Commandline: | |
Imagebase: | 0x400000 |
File size: | 543'304 bytes |
MD5 hash: | A87236E214F6D42A65F5DEDAC816AEC8 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | high |
Has exited: | true |
Target ID: | 10 |
Start time: | 15:38:36 |
Start date: | 04/07/2024 |
Path: | C:\Users\user\AppData\Roaming\obi23456.scr |
Wow64 process (32bit): | true |
Commandline: | |
Imagebase: | 0x880000 |
File size: | 520'704 bytes |
MD5 hash: | F7BDADAFF67E573F145D2E8E32E32CD8 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Yara matches: |
|
Antivirus matches: |
|
Reputation: | low |
Has exited: | true |
Target ID: | 11 |
Start time: | 15:38:37 |
Start date: | 04/07/2024 |
Path: | C:\Users\user\AppData\Roaming\obi23456.scr |
Wow64 process (32bit): | true |
Commandline: | |
Imagebase: | 0x880000 |
File size: | 520'704 bytes |
MD5 hash: | F7BDADAFF67E573F145D2E8E32E32CD8 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Yara matches: |
|
Reputation: | low |
Has exited: | false |
Execution Graph
Execution Coverage: | 28.9% |
Dynamic/Decrypted Code Coverage: | 100% |
Signature Coverage: | 27.3% |
Total number of Nodes: | 44 |
Total number of Limit Nodes: | 1 |
Graph
Function 0018425F Relevance: 1.9, Strings: 1, Instructions: 624COMMON
Control-flow Graph
Strings |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Control-flow Graph
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Control-flow Graph
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Control-flow Graph
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Control-flow Graph
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00183F98 Relevance: 1.6, APIs: 1, Instructions: 106memoryCOMMON
Control-flow Graph
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 001851C8 Relevance: 1.6, APIs: 1, Instructions: 103COMMON
Control-flow Graph
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00183FA0 Relevance: 1.6, APIs: 1, Instructions: 101memoryCOMMON
Control-flow Graph
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 001851D0 Relevance: 1.6, APIs: 1, Instructions: 100COMMON
Control-flow Graph
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00183D18 Relevance: 1.6, APIs: 1, Instructions: 95threadCOMMON
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00183D20 Relevance: 1.6, APIs: 1, Instructions: 94threadCOMMON
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 001840B9 Relevance: 1.6, APIs: 1, Instructions: 76threadCOMMON
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 001840C0 Relevance: 1.6, APIs: 1, Instructions: 73threadCOMMON
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0012D4CC Relevance: .1, Instructions: 75COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0013D1E8 Relevance: .1, Instructions: 72COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0013D01C Relevance: .1, Instructions: 72COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0013D006 Relevance: .1, Instructions: 63COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0012D4C7 Relevance: .1, Instructions: 56COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0013D1E3 Relevance: .1, Instructions: 53COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Execution Graph
Execution Coverage: | 14.3% |
Dynamic/Decrypted Code Coverage: | 100% |
Signature Coverage: | 50% |
Total number of Nodes: | 14 |
Total number of Limit Nodes: | 0 |
Graph
Function 01EA6CC8 Relevance: 11.7, Strings: 9, Instructions: 461COMMON
Control-flow Graph
Strings |
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA6CBC Relevance: 11.6, Strings: 9, Instructions: 366COMMON
Control-flow Graph
Strings |
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Control-flow Graph
APIs |
|
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA5E58 Relevance: .7, Instructions: 745COMMON
Control-flow Graph
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00505B18 Relevance: .7, Instructions: 715COMMON
Control-flow Graph
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00505038 Relevance: .6, Instructions: 596COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00506740 Relevance: .3, Instructions: 278COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 005078C1 Relevance: .3, Instructions: 276COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00507D20 Relevance: .2, Instructions: 224COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00507D30 Relevance: .2, Instructions: 220COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAD4E0 Relevance: .2, Instructions: 219COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAE7C0 Relevance: .2, Instructions: 219COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAF460 Relevance: .2, Instructions: 219COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAEE10 Relevance: .2, Instructions: 219COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01F90CD8 Relevance: .2, Instructions: 219COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01F90040 Relevance: .2, Instructions: 219COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAE178 Relevance: .2, Instructions: 218COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EADB30 Relevance: .2, Instructions: 218COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01F90690 Relevance: .2, Instructions: 218COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00508072 Relevance: .2, Instructions: 202COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01F90680 Relevance: .2, Instructions: 165COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAE168 Relevance: .2, Instructions: 164COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EADB21 Relevance: .2, Instructions: 164COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EADB24 Relevance: .2, Instructions: 164COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAE16C Relevance: .2, Instructions: 163COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01F90006 Relevance: .1, Instructions: 125COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAEE00 Relevance: .1, Instructions: 109COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01F90CC8 Relevance: .1, Instructions: 109COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAD4CF Relevance: .1, Instructions: 108COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAF451 Relevance: .1, Instructions: 108COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAE7B0 Relevance: .1, Instructions: 107COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAF454 Relevance: .1, Instructions: 106COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01F90CCC Relevance: .1, Instructions: 105COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAD4D8 Relevance: .1, Instructions: 104COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAEE08 Relevance: .1, Instructions: 104COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01F90038 Relevance: .1, Instructions: 104COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAE7BC Relevance: .1, Instructions: 103COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAF45C Relevance: .1, Instructions: 103COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAEE0C Relevance: .1, Instructions: 102COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0050FE53 Relevance: 1.6, APIs: 1, Instructions: 122COMMON
Control-flow Graph
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA5E48 Relevance: .2, Instructions: 174COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EACF11 Relevance: .1, Instructions: 120COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EACF30 Relevance: .1, Instructions: 111COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0043D044 Relevance: .1, Instructions: 72COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0043D03F Relevance: .1, Instructions: 53COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAC8D8 Relevance: .3, Instructions: 296COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00507000 Relevance: .3, Instructions: 278COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00506BA0 Relevance: .3, Instructions: 276COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 00507460 Relevance: .3, Instructions: 274COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA98E8 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA32E8 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA25E0 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA4CF8 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAA5F0 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA3FF0 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA18D8 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA0BD0 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EABBD0 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA55A8 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA48A0 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAAEA0 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA2188 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA1480 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAC480 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAA198 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA3B98 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA2E90 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA9468 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA0778 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAB778 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA4448 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAAA48 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA9D40 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA3740 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA5150 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA1028 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAC028 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA0320 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EAB320 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA2A38 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA1D30 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA5A00 Relevance: .3, Instructions: 268COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA7698 Relevance: .2, Instructions: 222COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0050566A Relevance: .2, Instructions: 193COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA7688 Relevance: .1, Instructions: 131COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 0050584B Relevance: .1, Instructions: 116COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|
Function 01EA79AE Relevance: .0, Instructions: 17COMMON
Memory Dump Source |
|
Joe Sandbox IDA Plugin |
|
Similarity |
|