Windows
Analysis Report
https://rjnmail-my.sharepoint.com/:o:/p/shaam_merai/EngmZjy5pp1NkcIOlH0JzQYB5TfOUcr0IweEkkbuVBLAOw?e=5%3a4gX9qV&at=9&xsdata=MDV8MDJ8aGVscGRlc2tAcGVvLm9uLmNhfDIxMDE5Zjc5YTRmMzRhYjU2N2EyMDhkYzk3OTEzMDIyfDM5ZWU5NzA0NDNjZjRiMWQ4YjIyMjU1NjlkYTgzNzExfDB8MHw2Mzg1NTE4OTcwNDAxNjQ5MzZ8VW5rbm93bnxUV0ZwYkdac2Iz
Overview
General Information
Detection
Score: | 1 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
chrome.exe (PID: 5948 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) chrome.exe (PID: 2148 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2276 --fi eld-trial- handle=222 4,i,923642 5076649525 401,173737 6822261799 0273,26214 4 --disabl e-features =Optimizat ionGuideMo delDownloa ding,Optim izationHin ts,Optimiz ationHints Fetching,O ptimizatio nTargetPre diction /p refetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
chrome.exe (PID: 4524 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://rjnma il-my.shar epoint.com /:o:/p/sha am_merai/E ngmZjy5pp1 NkcIOlH0Jz QYB5TfOUcr 0IweEkkbuV BLAOw?e=5% 3a4gX9qV&a t=9&xsdata =MDV8MDJ8a GVscGRlc2t AcGVvLm9uL mNhfDIxMDE 5Zjc5YTRmM zRhYjU2N2E yMDhkYzk3O TEzMDIyfDM 5ZWU5NzA0N DNjZjRiMWQ 4YjIyMjU1N jlkYTgzNzE xfDB8MHw2M zg1NTE4OTc wNDAxNjQ5M zZ8VW5rbm9 3bnxUV0ZwY kdac2IzZDh leUpXSWpva U1DNHdMakF 3TURBaUxDS lFJam9pVjJ sdU16SWlMQ 0pCVGlJNkl rMWhhV3dpT ENKWFZDSTZ NbjA9fDB8f Hw%3d&sdat a=MUp2OGFE K3NHbGVRek VTc2p5bVdw TlljQ3VoVk tJSWZxMS9F alg2ZWhHOD 0%3d" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Click to jump to signature section
There are no malicious signatures, click here to show all signatures.
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | File created: | Jump to behavior |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: | ||
Source: | LNK file: |
Source: | Window detected: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | 1 Registry Run Keys / Startup Folder | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | 1 Registry Run Keys / Startup Folder | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
dual-spo-0005.spo-msedge.net | 13.107.136.10 | true | false | unknown | |
www.google.com | 172.217.18.100 | true | false | unknown | |
rjnmail-my.sharepoint.com | unknown | unknown | false | unknown | |
spo.nel.measure.office.net | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | unknown | ||
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
13.107.136.10 | dual-spo-0005.spo-msedge.net | United States | 8068 | MICROSOFT-CORP-MSN-AS-BLOCKUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
172.217.18.100 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.5 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1467843 |
Start date and time: | 2024-07-04 21:42:55 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 2m 56s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://rjnmail-my.sharepoint.com/:o:/p/shaam_merai/EngmZjy5pp1NkcIOlH0JzQYB5TfOUcr0IweEkkbuVBLAOw?e=5%3a4gX9qV&at=9&xsdata=MDV8MDJ8aGVscGRlc2tAcGVvLm9uLmNhfDIxMDE5Zjc5YTRmMzRhYjU2N2EyMDhkYzk3OTEzMDIyfDM5ZWU5NzA0NDNjZjRiMWQ4YjIyMjU1NjlkYTgzNzExfDB8MHw2Mzg1NTE4OTcwNDAxNjQ5MzZ8VW5rbm93bnxUV0ZwYkdac2IzZDhleUpXSWpvaU1DNHdMakF3TURBaUxDSlFJam9pVjJsdU16SWlMQ0pCVGlJNklrMWhhV3dpTENKWFZDSTZNbjA9fDB8fHw%3d&sdata=MUp2OGFEK3NHbGVRekVTc2p5bVdwTlljQ3VoVktJSWZxMS9Falg2ZWhHOD0%3d |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 8 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | CLEAN |
Classification: | clean1.win@16/33@8/4 |
- Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 216.58.212.131, 142.250.110.84, 172.217.18.14, 34.104.35.123, 2.22.242.16, 2.22.242.64, 2.19.126.199, 2.19.126.200, 88.221.110.121, 192.229.221.95, 142.250.65.227
- Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, 201091-ipv4v6w.farm.dprodmgd108.sharepointonline.com.akadns.net, e40491.dscd.akamaiedge.net, ctldl.windowsupdate.com, clientservices.googleapis.com, res-1.cdn.office.net, a1894.dscb.akamai.net, fe3cr.delivery.mp.microsoft.com, clients2.google.com, ocsp.digicert.com, edgedl.me.gvt1.com, nel.measure.office.net.edgesuite.net, update.googleapis.com, clients.l.google.com, res-1.cdn.office.net-c.edgekey.net, res-1.cdn.office.net-c.edgekey.net.globalredir.akadns.net
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
- Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- VT rate limit hit for: https://rjnmail-my.sharepoint.com/:o:/p/shaam_merai/EngmZjy5pp1NkcIOlH0JzQYB5TfOUcr0IweEkkbuVBLAOw?e=5%3a4gX9qV&at=9&xsdata=MDV8MDJ8aGVscGRlc2tAcGVvLm9uLmNhfDIxMDE5Zjc5YTRmMzRhYjU2N2EyMDhkYzk3OTEzMDIyfDM5ZWU5NzA0NDNjZjRiMWQ4YjIyMjU1NjlkYTgzNzExfDB8MHw2Mzg1NTE4OTcwNDAxNjQ5MzZ8VW5rbm93bnxUV0ZwYkdac2IzZDhleUpXSWpvaU1DNHdMakF3TURBaUxDSlFJam9pVjJsdU16SWlMQ0pCVGlJNklrMWhhV3dpTENKWFZDSTZNbjA9fDB8fHw%3d&sdata=MUp2OGFEK3NHbGVRekVTc2p5bVdwTlljQ3VoVktJSWZxMS9Falg2ZWhHOD0%3d
Input | Output |
---|---|
URL: https://rjnmail-my.sharepoint.com/:o:/p/shaam_merai/EngmZjy5pp1NkcIOlH0JzQYB5TfOUcr0IweEkkbuVBLAOw?e=5%3a4gX9qV&at=9&xsdata=MDV8MDJ8aGVscGRlc2tAcGVvLm9uLmNhfDIxMDE5Zjc5YTRmMzRhYjU2N2EyMDhkYzk3OTEzMDIyfDM5ZWU5NzA0NDNjZjRiMWQ4YjIyMjU1NjlkYTgzNzExfDB8MHw2Mzg Model: Perplexity: mixtral-8x7b-instruct | {"loginform": false,"urgency": false,"captcha": false,"reasons": ["The text 'Sorry, something went wrong' does not indicate a sense of urgency.","The text does not contain a login form, as it does not request sensitive information.","The text does not contain a CAPTCHA or any other anti-robot detection mechanism."]} |
Title: Error OCR: Sorry, something went wrong Sorry: you cannot access this document. Please contact the person who shared it u,ith you. Techmcal Details Troubleshoot Issues with Microsoft SharePomt Foundation. Correlation ID 311739a1-ff39 OOOO-1ccS-3dOde28149tb Date and Time: 7 4/2024 PM Go back to site | |
URL: https://rjnmail-my.sharepoint.com/:o:/p/shaam_merai/EngmZjy5pp1NkcIOlH0JzQYB5TfOUcr0IweEkkbuVBLAOw?e=5%3a4gX9qV&at=9&xsdata=MDV8MDJ8aGVscGRlc2tAcGVvLm9uLmNhfDIxMDE5Zjc5YTRmMzRhYjU2N2EyMDhkYzk3OTEzMDIyfDM5ZWU5NzA0NDNjZjRiMWQ4YjIyMjU1NjlkYTgzNzExfDB8MHw2Mzg Model: Perplexity: mixtral-8x7b-instruct | {"loginform": false,"urgency": false,"captcha": false,"reasons": ["The text 'Sorry, something went wrong' does not indicate a login form on the webpage.","The text does not create a sense of urgency, as it does not encourage the user to take immediate action.","There is no mention of a CAPTCHA or any other anti-robot detection mechanism on the webpage."]} |
Title: Error OCR: Sorry, something went wrong Sorry: you cannot access this document. Please contact the person who shared it u,ith you. echmcal Detail Troubleshoot Issues with Microsoft SharePomt Foundation. Correlation ID 311739a1-ff39 OOOO-1ccS-3dOde28149tb Date and Time: 7 4/2024 PM Go back to site |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2677 |
Entropy (8bit): | 3.9850428197802183 |
Encrypted: | false |
SSDEEP: | 48:8X3drcTLAkcHfidAKZdA19ehwiZUklqehekJy+3:8hcHPw/Yy |
MD5: | 124F80B1839954D3A4337F8839AE96F5 |
SHA1: | 05172BF0EDC80A03F0B5D5EF2842758F902501E7 |
SHA-256: | D96D8C430D9B713A831DA2DAE66F9226DFB9C486A7E62221BD7C955626870B0B |
SHA-512: | 5C946C0DF1C4521FD4D24DFC53F62BB983360D910366BAD01C98AED9D2899F46AC05D559493457EB7F94F7019931642D091A449F107060616ADF6EF1FD7B772D |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2679 |
Entropy (8bit): | 4.0014989507519605 |
Encrypted: | false |
SSDEEP: | 48:8odrcTLAkcHfidAKZdA1weh/iZUkAQkqehvkJy+2:8ocHPK9Q0Yy |
MD5: | 0012A5C3197C9948FB424A2E8D1E20D3 |
SHA1: | 6454404120455E45544531309E4BA78B69C08F73 |
SHA-256: | F6B9CF810CB03CB775EF9B087894031EB51FC49C0E2E087123E5779066C0AA78 |
SHA-512: | BE9E03E0BBB112EC880DF1687A8ECB489846CC1087024AA21B559EE73027C23C708E146BA13F077F203181B7070154CF5F4A3BB39ED7404756FCD7DA59CF06FC |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2693 |
Entropy (8bit): | 4.0091520323718965 |
Encrypted: | false |
SSDEEP: | 48:8xldrcTLAksHfidAKZdA14tseh7sFiZUkmgqeh7s9kJy+BX:8xzcHPinjYy |
MD5: | B26C965C3F4B18A89C3772CC7AC3F529 |
SHA1: | B2D3FFBDBC804DE55511BE08388403DE2A577871 |
SHA-256: | 38B0C5D0C979D3CA005E9D447033534FB247934C25B4B2007B0BFAA89FE135D9 |
SHA-512: | 8C0BE5CF8EB438E67C2A142067C6A5D00BA089231BBAF99E42F98C892CCAEC3CFF9CF51A429D8C4C7DB9ABB3C2E5F5183CF1F21FC4C78990B16DA8E8B5991607 |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2681 |
Entropy (8bit): | 3.999490973606819 |
Encrypted: | false |
SSDEEP: | 48:8GdrcTLAkcHfidAKZdA1vehDiZUkwqehLkJy+R:8acHPRlYy |
MD5: | 46C809F66E78EE5E19BCDDF1521F8453 |
SHA1: | 26045EB03FE181540A59CC99ABBEB167FA3ABCD6 |
SHA-256: | 81A43FAB79DD2867B8883C02B375BF34C60559A03034FDC37C93854B4C42D9DC |
SHA-512: | 64BC6DD1433C8274DB730743A63CBE37C8B3349B7459809FDF06A6A8D76ADD546A18EDEB62D65B94F8660654DA2E589CEF41E8F3647EC7B3EA32BFCB582BBE5F |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2681 |
Entropy (8bit): | 3.9891887618430495 |
Encrypted: | false |
SSDEEP: | 48:8WdrcTLAkcHfidAKZdA1hehBiZUk1W1qehRkJy+C:8KcHPx9xYy |
MD5: | 549D5CBF8C34475E4C15A4BC2BF1988B |
SHA1: | 73566D8BF86BC533E1C86FE4C77F94230A7084A7 |
SHA-256: | 0E14EA232F2054E4222D512C5D223F342B923362A0B18CA1AE011A0322D29F6C |
SHA-512: | 774F7C617BCCE2D1624E339D631DC3180E520B59D3E4D898D1EB6BF58557105C745D85D804DFBE8F48AE3F3FD12A19A7A0FBFACF279F598B3BE6104FA21193DE |
Malicious: | false |
Reputation: | low |
Preview: |
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Download File
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2683 |
Entropy (8bit): | 4.0003999119181435 |
Encrypted: | false |
SSDEEP: | 48:8KdrcTLAkcHfidAKZdA1duT+ehOuTbbiZUk5OjqehOuTbjkJy+yT+:8GcHPtT/TbxWOvTbjYy7T |
MD5: | 9AF2DE640EEDADA639AE96724B3BF52F |
SHA1: | 7827F84A4BCE925A8C66487141926C85927A6C94 |
SHA-256: | E8228B255FB3EC7B98975F0A03330BECBF182D069E230B591144F4DB884D54F7 |
SHA-512: | E31807D2C7A9A92129F67619E3625C517F72313C8E40DFAFAA1F080332183E32BA446879F37D62E438D585E09F1ABA9AD115F2F7A500AF8BCE96F96C2364A0C0 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 9984 |
Entropy (8bit): | 7.979200972475404 |
Encrypted: | false |
SSDEEP: | 192:/Z/x+yzJpYhEFmtHByePw0JwScHXWumyaxkomNwWs8pQegUOX+B/rHiG:/JP8hEFshyePw8cHXx58k3OWVpQegUO0 |
MD5: | 027A7D52E1CEED8AEF7DC13505B81D36 |
SHA1: | 33CF0BCE6A4C8B44B4A80B3116C978C12EE93FD0 |
SHA-256: | 29061464FB6FCE2326B952EACAA95C3C6183BFEA74C3851390E9838720D372A6 |
SHA-512: | FCDDEBF6DE759B5079E7DF2432771A866DE1824B119AD8CB3BAE11F9FAA060B943D52F121E4C63E7E20D43F31B2220C1D4E9C24A20004C4B061CD1A0A5EE5AC9 |
Malicious: | false |
Reputation: | low |
URL: | https://rjnmail-my.sharepoint.com/ScriptResource.axd?d=sFKYt98rkOEepMD8HaYdQxw0MdI8XppwKu-u05zm-jrdxw_0lu_7y2XSfk2fjigBSMiXa-lE5A34AyUu4bGg1HoWgo42ZIBCrXE8VVmtBgVmQ72TbUOinfYqW44dx5TAwOn4gaZ14vXlYqMzaycjq_il_bbHsGdSivnjJD1G3gQv2-7SLslJ_DcgLBUXY2VD0&t=74258c30 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 294299 |
Entropy (8bit): | 5.325494649328898 |
Encrypted: | false |
SSDEEP: | 1536:k6Bi397Ra/9FjWr5JwiaPyJmbu52JmKI1DS9sw83nm5ZMUuj24S+o0WmuGUmh4jN:Lvf42B9HecP |
MD5: | C002BB0EB0C85B5C943E860D47D670E6 |
SHA1: | 5CFB54603DF1D19741B53057948454EBD019BDDC |
SHA-256: | 763520E7504C16BD8816F508C3FC4309180A6F7FD0623CA2744818B6999B6974 |
SHA-512: | 657093C5C74E4DF4229F318CE26F236EA57866511A82D97E29D4E3121E31C3A251A256E3A5001F061DA5608E09445E16DF876EEC3A1E19160CBE470B0C74B39A |
Malicious: | false |
Reputation: | low |
URL: | https://rjnmail-my.sharepoint.com/_layouts/15/1033/styles/corev15.css?rev=tMQyIYuqg6gA5d4OhqkBpg%3D%3DTAG70 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 456 |
Entropy (8bit): | 5.229841670569642 |
Encrypted: | false |
SSDEEP: | 6:A+roDEH6IgMbIZc8Z11+cJF5IKMPAI0qKIKMPAI0qeCMRTxIj+01KyBui9YDre:A+MYcYkc8Z18cJ/ASAWCKx2+Wuit |
MD5: | C00C5934432450DB1EB2A306922FDF4D |
SHA1: | 7A1BE0832268B1665D75593CF1AC1EB3F1097D75 |
SHA-256: | A742ACE9C468D77041CE881436B6C7F5B8D1E06C2ED00D0E38FFA834702D7C2E |
SHA-512: | A8716400FB56174A049C895A71708FD0885F2A425FDD5168E391A17907F952A0FAF4D5539433F1A721DEBA05CAFF4125B4E5DD3802213759BBB634D9A0E8CFD8 |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.25019.12007/blank.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 622 |
Entropy (8bit): | 5.030708856292114 |
Encrypted: | false |
SSDEEP: | 12:UXRtEohlWNmONv0MBR0/vUvFa9vN8ESve77Lxukm3auDjqHV:Ofa9n2H8qzxukmKuDjkV |
MD5: | B45EDFC9FCDB690CCDA004A8483955E0 |
SHA1: | BAEDF73329EABB32504CAC640538EE3B6B31819F |
SHA-256: | E817BF53005172205995AA07E0021BD8254A0204A1177E925F365E838C32D069 |
SHA-512: | E2709C77BA686FC58FE528EC2C2CEB6B9C84D045018D77FB9B376359F204FB6B889910B6748C978B4FF9712A7611342DF3C8C59711AA42090219DEC0C83778D2 |
Malicious: | false |
Reputation: | low |
URL: | https://rjnmail-my.sharepoint.com/_layouts/15/1033/styles/error.css?rev=tF7fyfzbaQzNoASoSDlV4A%3D%3DTAG70 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 35238 |
Entropy (8bit): | 5.390650418562352 |
Encrypted: | false |
SSDEEP: | 768:PrxzCC2akwbs7lSZTprPaTrPyrfKwKTZiNOzpCk47S:hsp7ly9rP0S4pCkx |
MD5: | C637DE6889D81964119BA1FD124E2454 |
SHA1: | 5DB2B1681BE6FF9A7B26E269CD80D817D41A01BE |
SHA-256: | 18E8366C8C5590C3D056BA6CA9691B7471D6970EE00D0E22A4B68E517B54F087 |
SHA-512: | 78288767F08DB38F6DC8C366546CECC05DF35C25BCD898B94DCCC5ECCB3ACD7807817BAF813BCA11F4CCAC169A980E4F10EBF4334000C4D2D0F74DCC30BB36EE |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.25019.12007/theming.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 511765 |
Entropy (8bit): | 5.440740942962719 |
Encrypted: | false |
SSDEEP: | 12288:l3OkpWeupsTyhEQLQr4ABnIF7wEyAJU7/:l3OkpWeuGTyhEQLQr4ABnIdwEyAm |
MD5: | 4832BF4EE58A9C0023A855E80A5B424A |
SHA1: | 7C98E34B1A2AE96D2337467F843DD1524E458A70 |
SHA-256: | 49173F537CADBE461A165497605DD15628D613C75C4D64A7BA0F6D1F4AE5E4EF |
SHA-512: | 2251AF81EB0EC4627B11A5E8B6509AA6194288DD780D72E33EFDB0B7137ADF3E4CD14B3DE3BE320B4CFA3C299BF3FDF32F96982ACB45D31BA7CB9963748B064C |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.25019.12007/core.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 7886 |
Entropy (8bit): | 3.9482833105763633 |
Encrypted: | false |
SSDEEP: | 48:gubb4a2MNTgopLqyhFTv07EVc91JbV5FIXH0wp53O:Bbb4a5NTX1c9L6E |
MD5: | 0B60F3C9E4DA6E807E808DA7360F24F2 |
SHA1: | 9AFC7ABB910DE855EFB426206E547574A1E074B7 |
SHA-256: | ADDEEDEEEF393B6B1BE5BBB099B656DCD797334FF972C495CCB09CFCB1A78341 |
SHA-512: | 1328363987ABBAD1B927FC95F0A3D5646184EF69D66B42F32D1185EE06603AE1A574FAC64472FB6E349C2CE99F9B54407BA72B2908CA7AB01D023EC2F47E7E80 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 25609 |
Entropy (8bit): | 7.992070293592458 |
Encrypted: | true |
SSDEEP: | 768:65FO8CctusRS+4iLLuVC9Vri5MLPMTleAD5:8FbxwsR/4iAz5MbMl5 |
MD5: | B62553925BD98826C60457D2EB6B9A46 |
SHA1: | 84DBBB6D9B36A587C21B5A56B1D9E587E33BA943 |
SHA-256: | C58166FE4DF4BA8F25A960C21451EAF841D97F6F552F104E43431C9DB1C2E2CC |
SHA-512: | 7B6872144AE308224FF671A1EC63F040A40115888790CF6834AD85D517471CE5DAD3EC297EE751FB196B55118A181017151F7F06FCE0F2F26FF94E8EEC070033 |
Malicious: | false |
Reputation: | low |
URL: | https://rjnmail-my.sharepoint.com/ScriptResource.axd?d=m0jG364j4NGS2YAs366ZrZDboV4Z4bFzITp5H7GFyGl5jl65Lbpu-UrJGNYkJiyMKh_2o8DlLjj2JCb-mjtO9VW3kGmOPrqQt-uz2hmCl3mvyRBTYzSNC0LScv0k4JPTUCKJ93XWl7YzfH_wwkM9o132ph7t7ADI0-vM90YnialpRvumW-KQRu8tslYSpNAz0&t=74258c30 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 23594 |
Entropy (8bit): | 5.107347306409284 |
Encrypted: | false |
SSDEEP: | 384:zyWvVsT5pTtxJOyNm7lMqasjI8LWv3n8wyM:zJsT5pTt7kK+M |
MD5: | 964FCB2BAF87049DC68975291AE89431 |
SHA1: | D0CD8C989D44BC531472B632868D3FB2DE4B3184 |
SHA-256: | B8F7BD568E379502CF0C00027581D2761C7DC14B166F5D25FC048A0B56B7BFBB |
SHA-512: | 03CB58D197A776F9C315C2A14B9C034D88C7B7E9F4247C5698396F4FE7363A22FC2042A24C02A245C7E035DD2862F88E8EF46A7E5A269EDC2B69E39752A52987 |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.25019.12007/1033/initstrings.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 7886 |
Entropy (8bit): | 3.9482833105763633 |
Encrypted: | false |
SSDEEP: | 48:gubb4a2MNTgopLqyhFTv07EVc91JbV5FIXH0wp53O:Bbb4a5NTX1c9L6E |
MD5: | 0B60F3C9E4DA6E807E808DA7360F24F2 |
SHA1: | 9AFC7ABB910DE855EFB426206E547574A1E074B7 |
SHA-256: | ADDEEDEEEF393B6B1BE5BBB099B656DCD797334FF972C495CCB09CFCB1A78341 |
SHA-512: | 1328363987ABBAD1B927FC95F0A3D5646184EF69D66B42F32D1185EE06603AE1A574FAC64472FB6E349C2CE99F9B54407BA72B2908CA7AB01D023EC2F47E7E80 |
Malicious: | false |
Reputation: | low |
URL: | https://rjnmail-my.sharepoint.com/_layouts/15/images/favicon.ico?rev=47 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 227571 |
Entropy (8bit): | 5.005677946181372 |
Encrypted: | false |
SSDEEP: | 6144:aVF2h8ouk20jU7fD2aZ8uemAm1YqnhmsFVsvz1oBdOA3NnWzNhrYFiS:Q3/k2qU7fD2aZ8uIRp+CS |
MD5: | 8E0F868C45B6A53ACBAB5731F0CE41E3 |
SHA1: | 6B224EC173092B895CFD44EA565C7F1042C3840B |
SHA-256: | 4A735B70735E9B4DBC961D164261F653BCEDDB225ECC0236F6824D83B8B15E8D |
SHA-512: | CFAF2287D1FEB5A97062C765DD16ADE3AEF6848832EEF12DCE1A3C825B94BF620D0CD2F857132906D066332E0271DC6F06C4C675B1431F9458A7CA1A7F2A61BA |
Malicious: | false |
Reputation: | low |
URL: | https://rjnmail-my.sharepoint.com/:o:/p/shaam_merai/EngmZjy5pp1NkcIOlH0JzQYB5TfOUcr0IweEkkbuVBLAOw?e=5%3a4gX9qV&at=9&xsdata=MDV8MDJ8aGVscGRlc2tAcGVvLm9uLmNhfDIxMDE5Zjc5YTRmMzRhYjU2N2EyMDhkYzk3OTEzMDIyfDM5ZWU5NzA0NDNjZjRiMWQ4YjIyMjU1NjlkYTgzNzExfDB8MHw2Mzg1NTE4OTcwNDAxNjQ5MzZ8VW5rbm93bnxUV0ZwYkdac2IzZDhleUpXSWpvaU1DNHdMakF3TURBaUxDSlFJam9pVjJsdU16SWlMQ0pCVGlJNklrMWhhV3dpTENKWFZDSTZNbjA9fDB8fHw%3d&sdata=MUp2OGFEK3NHbGVRekVTc2p5bVdwTlljQ3VoVktJSWZxMS9Falg2ZWhHOD0%3d |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 186722 |
Entropy (8bit): | 5.127936869447186 |
Encrypted: | false |
SSDEEP: | 1536:qofu83Pw6jz1+8YZwf7BN6pJsnNxezT8+zacaS8Ob4C//aT5L4DK:883z5+nMDEuvezT8++6kZCe |
MD5: | 2DE2482829622DE740DB42E04CBCD047 |
SHA1: | 2A88D65A01BDA232B97B24163F66BA7F90A63386 |
SHA-256: | 947D9E7117E8528021EC98FBBD6FE75A4D393A699DFFFFB3A2803EAE42845CEB |
SHA-512: | 35A2B88CF1FD1505BAD30CF68FB235ED5E5029D4824EC8586452A53E820563229AEA06156B46702C5046DC4BCE0046DFC74E934E215BFDD040B2715D298E8886 |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.25019.12007/1033/strings.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 23063 |
Entropy (8bit): | 4.7535440881548165 |
Encrypted: | false |
SSDEEP: | 384:GvUzYI+Vi4g1V5it1ONhA6w+Kv8i/4CYzLKL4DrLU0iTxZTAzIzrwDlTWMClQip9:bkON69kClQq8hDRJHp2tWU25Zt/gREVG |
MD5: | 90EA7274F19755002360945D54C2A0D7 |
SHA1: | 647B5D8BF7D119A2C97895363A07A0C6EB8CD284 |
SHA-256: | 40732E9DCFA704CF615E4691BB07AECFD1CC5E063220A46E4A7FF6560C77F5DB |
SHA-512: | 7474667800FF52A0031029CC338F81E1586F237EB07A49183008C8EC44A8F67B37E5E896573F089A50283DF96A1C8F185E53D667741331B647894532669E2C07 |
Malicious: | false |
Reputation: | low |
URL: | https://rjnmail-my.sharepoint.com/WebResource.axd?d=cJDku4LPR0hyEjv_M8Kns8-LnsNih-hW-uLOSr1zW1jQmNRW7lEiJ5sSjrYld8ki7UcxJbybV3H2_HmR_ribQxD8ZBjx1xRfOab_Fx2WmQs1&t=638533172441064469 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 340993 |
Entropy (8bit): | 5.442857712532807 |
Encrypted: | false |
SSDEEP: | 6144:iXVJjsUJaW86hPIjcfb+47IunpizIcxdS+MI4Ny6qF+HNJdWLWnAboc3lexR1Yh5:iXVJjsUPV0ugzIE |
MD5: | 1CFE669C56C16B6E05ECE68B579BECF0 |
SHA1: | 43E0986C77CC738D318DECDFCEA3BA3C7E86DA0E |
SHA-256: | DD19BB9BE9A5959BC1BD732EFABBCC88B5A07782513851B6EC86962A6F237F27 |
SHA-512: | F41681D88AFC0FA6A2B5744BAAF1BB2F14FCBD6684F421DD021BE303F3E5D35835F8FD95EA90163D745065D8692DCDA2C9E8178458488D0DEDBDA943D358B1DB |
Malicious: | false |
Reputation: | low |
URL: | https://res-1.cdn.office.net/bld/_layouts/15/16.0.25019.12007/init.js |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 4, 2024 21:43:41.338597059 CEST | 49674 | 443 | 192.168.2.5 | 23.1.237.91 |
Jul 4, 2024 21:43:41.338607073 CEST | 49675 | 443 | 192.168.2.5 | 23.1.237.91 |
Jul 4, 2024 21:43:41.432385921 CEST | 49673 | 443 | 192.168.2.5 | 23.1.237.91 |
Jul 4, 2024 21:43:46.958168983 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:46.958210945 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:46.958292007 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:46.958538055 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:46.958545923 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:46.958606005 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:46.958751917 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:46.958767891 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:46.958976984 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:46.958991051 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.548857927 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.549139023 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.549181938 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.550182104 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.550247908 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.551307917 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.551389933 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.551544905 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.551554918 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.555502892 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.555687904 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.555696964 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.556658030 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.556716919 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.557166100 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.557214975 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.594407082 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.609724045 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.609733105 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.657064915 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.993330956 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.993362904 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.993506908 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.993551016 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.993601084 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.994350910 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.994362116 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.994471073 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.994482040 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.994514942 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.994566917 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:47.994575024 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:47.994610071 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.008804083 CEST | 49712 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.008856058 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.008924007 CEST | 49712 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.008997917 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.009216070 CEST | 49712 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.009238005 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.056509972 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.083018064 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.083141088 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.083172083 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.083425045 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.083498001 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.083508968 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.084424973 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.084491968 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.084501028 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.085320950 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.085381985 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.085391045 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.138753891 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.168751955 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.168775082 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.168874979 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.168910980 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.168956995 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.169857025 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.169866085 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.169898987 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.169912100 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.169934034 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.169977903 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.169984102 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.172647953 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.172660112 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.172751904 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.172775030 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.173091888 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.173126936 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.173156023 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.173171997 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.173183918 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.174164057 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.174237967 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.174256086 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.174292088 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.174341917 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.174350977 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.174860954 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.174916029 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.174926996 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.175018072 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.175062895 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.175076008 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.175626040 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.175683975 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.175694942 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.177560091 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.177634954 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.177659035 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.181600094 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.181637049 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.181718111 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.182015896 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.182028055 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.196288109 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.196331978 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.196394920 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.197117090 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.197144985 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.197509050 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.197525978 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.197582960 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.197768927 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.197777987 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.215413094 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.231471062 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.262557983 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.262567997 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.262650967 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.262691021 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.262706041 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.262713909 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.262753963 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.262763023 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.262979031 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.263014078 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.263041019 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.263048887 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.263078928 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.263200998 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.263211012 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.263240099 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.263257027 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.263286114 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.263427973 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.263480902 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.263489008 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.264043093 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.264059067 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.264096975 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.264106989 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.264133930 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.264807940 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.264815092 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.264858961 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.264893055 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.264899015 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.265304089 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.265357971 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.265367985 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.266017914 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.266074896 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.266102076 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.267527103 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.267545938 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.267585039 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.267606974 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.267620087 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.268007040 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.268022060 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.268060923 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.268071890 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.268086910 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.268598080 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.268626928 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.268671036 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.268680096 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.268697977 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.268979073 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.268994093 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.269041061 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.269052029 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.269084930 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.269102097 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.269165993 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.269210100 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.269295931 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.269321918 CEST | 443 | 49710 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.269332886 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.269362926 CEST | 49710 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.307265043 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.357811928 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.357822895 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.357918978 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.357949972 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.358287096 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.358319998 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.358340025 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.358346939 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.358369112 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.358777046 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.358827114 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.358834982 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.359078884 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.359131098 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.359143019 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.360243082 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.360325098 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.360338926 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.360502958 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.360548973 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.360557079 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.361248016 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.361310959 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.361325026 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.362114906 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.362173080 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.362185001 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.417256117 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.452209949 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.452227116 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.452316999 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.452353001 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.452647924 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.452680111 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.452698946 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.452704906 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.452724934 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.453033924 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.453088045 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.453095913 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.453789949 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.453846931 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.453859091 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.454767942 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.454782009 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.454833031 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.454850912 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.454863071 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.455930948 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.455954075 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.456024885 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.456037045 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.457439899 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.457456112 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.457513094 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.457525969 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.457546949 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.458471060 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.458489895 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.458529949 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.458537102 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.458573103 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.459603071 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.459616899 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.459678888 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.459691048 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.511112928 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.546897888 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.546916962 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.546998978 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.547034025 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.547076941 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.547214985 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.547230005 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.547283888 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.547291994 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.547313929 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.547336102 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.547790051 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.547811985 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.547858953 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.547866106 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.547883987 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.547907114 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.548541069 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.548558950 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.548607111 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.548615932 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.548645020 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.548666000 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.550029039 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.550086021 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.550128937 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.555634022 CEST | 49709 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.555655003 CEST | 443 | 49709 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.620270014 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.624805927 CEST | 49712 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.624846935 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.625206947 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.625858068 CEST | 49712 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.625932932 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.626466036 CEST | 49712 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.672503948 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.763392925 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.768784046 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.795422077 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.804935932 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.814424992 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.814496040 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.814548969 CEST | 49712 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.824021101 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.855287075 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.988943100 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.988955021 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.989168882 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.989177942 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.989579916 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.989978075 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.989983082 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.990082979 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.990094900 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.990138054 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.991076946 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.991089106 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.991134882 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.992680073 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.992742062 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.997211933 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.997461081 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:48.999747038 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:48.999842882 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.004730940 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.004878998 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.004884958 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.005254984 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.005261898 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.045294046 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.045335054 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.048127890 CEST | 49712 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.048155069 CEST | 443 | 49712 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.048507929 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.129895926 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.129920959 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.129967928 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.129983902 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.130022049 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.130436897 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.130446911 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.130467892 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.130481005 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.130513906 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.131994009 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.132018089 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.132047892 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.132061005 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.132791042 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.132800102 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.132838964 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.132848978 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.132858992 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.132879972 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.132896900 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.132937908 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.133764029 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.133789062 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.133836031 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.133845091 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.133899927 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.135690928 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.135699987 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.135741949 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.135771990 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.135776997 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.135844946 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.135848045 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.135880947 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.135886908 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.135914087 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.135943890 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.155451059 CEST | 49719 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.155462980 CEST | 443 | 49719 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.221082926 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.221092939 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.221155882 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.221311092 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.221364021 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.221405983 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.223882914 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.223923922 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.223943949 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.223953962 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.224004984 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.224009991 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.224026918 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.224064112 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.226435900 CEST | 49718 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.226454020 CEST | 443 | 49718 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:49.234405994 CEST | 49713 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:49.234415054 CEST | 443 | 49713 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.170974970 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:50.170989990 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.171328068 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:50.173388004 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:50.173404932 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.175812960 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:43:50.175843954 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:43:50.175967932 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:43:50.176497936 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:43:50.176508904 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:43:50.497844934 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:50.497893095 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:50.498070955 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:50.503182888 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:50.503195047 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:50.777529955 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.778125048 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:50.778177023 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.778517008 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.779194117 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:50.779257059 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.779680014 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:50.824507952 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.852422953 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:43:50.865823984 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:43:50.865845919 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:43:50.866945028 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:43:50.867012024 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:43:50.869750977 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:43:50.869815111 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:43:50.908777952 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.909477949 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.909539938 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:50.909552097 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.909652948 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.909698009 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:50.915867090 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:43:50.915878057 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:43:50.944379091 CEST | 49724 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:50.944406986 CEST | 443 | 49724 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:50.947123051 CEST | 49674 | 443 | 192.168.2.5 | 23.1.237.91 |
Jul 4, 2024 21:43:50.947125912 CEST | 49675 | 443 | 192.168.2.5 | 23.1.237.91 |
Jul 4, 2024 21:43:50.962754011 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:43:51.040883064 CEST | 49673 | 443 | 192.168.2.5 | 23.1.237.91 |
Jul 4, 2024 21:43:51.160096884 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:51.160248995 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.243279934 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.243302107 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:51.243578911 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:51.292303085 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.413619041 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.460505962 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:51.601809025 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:51.601866007 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:51.601922989 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.602122068 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.602134943 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:51.602144957 CEST | 49726 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.602150917 CEST | 443 | 49726 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:51.646176100 CEST | 49727 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.646234989 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:51.646302938 CEST | 49727 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.646940947 CEST | 49727 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:51.646960020 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:52.174561977 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.174580097 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.174674034 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.175270081 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.175280094 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.298130989 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:52.298343897 CEST | 49727 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:52.315229893 CEST | 49727 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:52.315273046 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:52.315527916 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:52.317688942 CEST | 49727 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:52.364515066 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:52.577996969 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:52.578056097 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:52.579448938 CEST | 49727 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:52.579646111 CEST | 49727 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:52.579689026 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:52.579715967 CEST | 49727 | 443 | 192.168.2.5 | 184.28.90.27 |
Jul 4, 2024 21:43:52.579725027 CEST | 443 | 49727 | 184.28.90.27 | 192.168.2.5 |
Jul 4, 2024 21:43:52.702261925 CEST | 443 | 49703 | 23.1.237.91 | 192.168.2.5 |
Jul 4, 2024 21:43:52.702349901 CEST | 49703 | 443 | 192.168.2.5 | 23.1.237.91 |
Jul 4, 2024 21:43:52.750190973 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.750741959 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.750766993 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.751647949 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.751705885 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.752348900 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.752408028 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.752896070 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.752902031 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.807327032 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.942131996 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.942158937 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.942210913 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.942222118 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.942477942 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.942526102 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.942532063 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.942964077 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:43:52.943016052 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.945632935 CEST | 49729 | 443 | 192.168.2.5 | 13.107.136.10 |
Jul 4, 2024 21:43:52.945645094 CEST | 443 | 49729 | 13.107.136.10 | 192.168.2.5 |
Jul 4, 2024 21:44:00.747340918 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:44:00.747406960 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:44:00.747471094 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:44:01.359503031 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:01.359534025 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:01.359648943 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:01.360873938 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:01.360888004 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:01.941387892 CEST | 49725 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:44:01.941420078 CEST | 443 | 49725 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:44:02.148926020 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:02.151328087 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:02.266087055 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:02.266109943 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:02.266449928 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:02.320698023 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:03.018727064 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:03.060492992 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277371883 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277398109 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277404070 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277443886 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277452946 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277460098 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277458906 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:03.277512074 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:03.277513027 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277559042 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:03.277818918 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277874947 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:03.277879953 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277889013 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.277928114 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:03.973912001 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:03.973912001 CEST | 49730 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:03.973933935 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:03.973943949 CEST | 443 | 49730 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:40.360208988 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:40.360265970 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:40.360416889 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:40.360805988 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:40.360822916 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.144463062 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.144541979 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.148219109 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.148237944 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.148468971 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.157586098 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.200500965 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.472840071 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.472865105 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.472879887 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.472934008 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.472970009 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.473017931 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.473970890 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.474021912 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.474049091 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.474056005 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.474072933 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.474096060 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.474113941 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.477293968 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.477318048 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:41.477328062 CEST | 49737 | 443 | 192.168.2.5 | 40.127.169.103 |
Jul 4, 2024 21:44:41.477334023 CEST | 443 | 49737 | 40.127.169.103 | 192.168.2.5 |
Jul 4, 2024 21:44:45.332030058 CEST | 49738 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:44:45.340344906 CEST | 53 | 49738 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:44:45.340500116 CEST | 49738 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:44:45.340533972 CEST | 49738 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:44:45.340533972 CEST | 49738 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:44:45.348634005 CEST | 53 | 49738 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:44:45.348644972 CEST | 53 | 49738 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:44:45.804979086 CEST | 53 | 49738 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:44:45.805531025 CEST | 49738 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:44:45.810894012 CEST | 53 | 49738 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:44:45.811038971 CEST | 49738 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:44:50.224569082 CEST | 49740 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:44:50.224625111 CEST | 443 | 49740 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:44:50.224690914 CEST | 49740 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:44:50.224982977 CEST | 49740 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:44:50.224997044 CEST | 443 | 49740 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:44:50.879159927 CEST | 443 | 49740 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:44:50.879463911 CEST | 49740 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:44:50.879498959 CEST | 443 | 49740 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:44:50.879817963 CEST | 443 | 49740 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:44:50.880178928 CEST | 49740 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:44:50.880249977 CEST | 443 | 49740 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:44:50.926656961 CEST | 49740 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:45:00.780956030 CEST | 443 | 49740 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:45:00.781027079 CEST | 443 | 49740 | 172.217.18.100 | 192.168.2.5 |
Jul 4, 2024 21:45:00.781084061 CEST | 49740 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:45:01.949714899 CEST | 49740 | 443 | 192.168.2.5 | 172.217.18.100 |
Jul 4, 2024 21:45:01.949753046 CEST | 443 | 49740 | 172.217.18.100 | 192.168.2.5 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 4, 2024 21:43:45.431875944 CEST | 53 | 56358 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:43:45.496077061 CEST | 53 | 63905 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:43:46.639617920 CEST | 53 | 59647 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:43:46.900343895 CEST | 50995 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:43:46.900511980 CEST | 49287 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:43:48.562463999 CEST | 59464 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:43:48.562728882 CEST | 54039 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:43:50.167068005 CEST | 53170 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:43:50.167721033 CEST | 51355 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:43:50.173774004 CEST | 53 | 53170 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:43:50.174623013 CEST | 53 | 51355 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:43:52.024607897 CEST | 51677 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:43:52.024607897 CEST | 60454 | 53 | 192.168.2.5 | 1.1.1.1 |
Jul 4, 2024 21:44:03.784759045 CEST | 53 | 61995 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:44:22.502892971 CEST | 53 | 49451 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:44:45.174460888 CEST | 53 | 57802 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:44:45.331648111 CEST | 53 | 64304 | 1.1.1.1 | 192.168.2.5 |
Jul 4, 2024 21:44:45.332042933 CEST | 53 | 64552 | 1.1.1.1 | 192.168.2.5 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Jul 4, 2024 21:43:46.900343895 CEST | 192.168.2.5 | 1.1.1.1 | 0xd92c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:43:46.900511980 CEST | 192.168.2.5 | 1.1.1.1 | 0xead2 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 4, 2024 21:43:48.562463999 CEST | 192.168.2.5 | 1.1.1.1 | 0xf8dc | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:43:48.562728882 CEST | 192.168.2.5 | 1.1.1.1 | 0xfb9 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 4, 2024 21:43:50.167068005 CEST | 192.168.2.5 | 1.1.1.1 | 0x4efd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:43:50.167721033 CEST | 192.168.2.5 | 1.1.1.1 | 0xf2b | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 4, 2024 21:43:52.024607897 CEST | 192.168.2.5 | 1.1.1.1 | 0xd19f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 4, 2024 21:43:52.024607897 CEST | 192.168.2.5 | 1.1.1.1 | 0xa85f | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Jul 4, 2024 21:43:46.950515032 CEST | 1.1.1.1 | 192.168.2.5 | 0xead2 | No error (0) | rjnmail.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.950515032 CEST | 1.1.1.1 | 192.168.2.5 | 0xead2 | No error (0) | 32-ipv4v6e.clump.dprodmgd108.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.950515032 CEST | 1.1.1.1 | 192.168.2.5 | 0xead2 | No error (0) | 201091-ipv4v6e.farm.dprodmgd108.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.950515032 CEST | 1.1.1.1 | 192.168.2.5 | 0xead2 | No error (0) | 201091-ipv4v6w.farm.dprodmgd108.sharepointonline.com.akadns.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.953438997 CEST | 1.1.1.1 | 192.168.2.5 | 0xd92c | No error (0) | rjnmail.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.953438997 CEST | 1.1.1.1 | 192.168.2.5 | 0xd92c | No error (0) | 32-ipv4v6e.clump.dprodmgd108.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.953438997 CEST | 1.1.1.1 | 192.168.2.5 | 0xd92c | No error (0) | 201091-ipv4v6e.farm.dprodmgd108.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.953438997 CEST | 1.1.1.1 | 192.168.2.5 | 0xd92c | No error (0) | 201091-ipv4v6w.farm.dprodmgd108.sharepointonline.com.akadns.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.953438997 CEST | 1.1.1.1 | 192.168.2.5 | 0xd92c | No error (0) | dual-spo-0005.spo-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.953438997 CEST | 1.1.1.1 | 192.168.2.5 | 0xd92c | No error (0) | 13.107.136.10 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:46.953438997 CEST | 1.1.1.1 | 192.168.2.5 | 0xd92c | No error (0) | 13.107.138.10 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:48.571362019 CEST | 1.1.1.1 | 192.168.2.5 | 0xfb9 | No error (0) | nel.measure.office.net.edgesuite.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:48.571640015 CEST | 1.1.1.1 | 192.168.2.5 | 0xf8dc | No error (0) | nel.measure.office.net.edgesuite.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:50.173774004 CEST | 1.1.1.1 | 192.168.2.5 | 0x4efd | No error (0) | 172.217.18.100 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:50.174623013 CEST | 1.1.1.1 | 192.168.2.5 | 0xf2b | No error (0) | 65 | IN (0x0001) | false | |||
Jul 4, 2024 21:43:52.080660105 CEST | 1.1.1.1 | 192.168.2.5 | 0xa85f | No error (0) | rjnmail.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.080660105 CEST | 1.1.1.1 | 192.168.2.5 | 0xa85f | No error (0) | 32-ipv4v6e.clump.dprodmgd108.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.080660105 CEST | 1.1.1.1 | 192.168.2.5 | 0xa85f | No error (0) | 201091-ipv4v6e.farm.dprodmgd108.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.080660105 CEST | 1.1.1.1 | 192.168.2.5 | 0xa85f | No error (0) | 201091-ipv4v6w.farm.dprodmgd108.sharepointonline.com.akadns.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.172506094 CEST | 1.1.1.1 | 192.168.2.5 | 0xd19f | No error (0) | rjnmail.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.172506094 CEST | 1.1.1.1 | 192.168.2.5 | 0xd19f | No error (0) | 32-ipv4v6e.clump.dprodmgd108.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.172506094 CEST | 1.1.1.1 | 192.168.2.5 | 0xd19f | No error (0) | 201091-ipv4v6e.farm.dprodmgd108.aa-rt.sharepoint.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.172506094 CEST | 1.1.1.1 | 192.168.2.5 | 0xd19f | No error (0) | 201091-ipv4v6w.farm.dprodmgd108.sharepointonline.com.akadns.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.172506094 CEST | 1.1.1.1 | 192.168.2.5 | 0xd19f | No error (0) | dual-spo-0005.spo-msedge.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.172506094 CEST | 1.1.1.1 | 192.168.2.5 | 0xd19f | No error (0) | 13.107.136.10 | A (IP address) | IN (0x0001) | false | ||
Jul 4, 2024 21:43:52.172506094 CEST | 1.1.1.1 | 192.168.2.5 | 0xd19f | No error (0) | 13.107.138.10 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.5 | 49710 | 13.107.136.10 | 443 | 2148 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:47 UTC | 1101 | OUT | |
2024-07-04 19:43:47 UTC | 1488 | IN | |
2024-07-04 19:43:47 UTC | 3453 | IN | |
2024-07-04 19:43:47 UTC | 8192 | IN | |
2024-07-04 19:43:47 UTC | 3373 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.5 | 49709 | 13.107.136.10 | 443 | 2148 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:48 UTC | 1055 | OUT | |
2024-07-04 19:43:48 UTC | 735 | IN | |
2024-07-04 19:43:48 UTC | 3412 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 4167 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN | |
2024-07-04 19:43:48 UTC | 8192 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.5 | 49712 | 13.107.136.10 | 443 | 2148 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:48 UTC | 1053 | OUT | |
2024-07-04 19:43:48 UTC | 734 | IN | |
2024-07-04 19:43:48 UTC | 622 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.5 | 49713 | 13.107.136.10 | 443 | 2148 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:49 UTC | 1193 | OUT | |
2024-07-04 19:43:49 UTC | 784 | IN | |
2024-07-04 19:43:49 UTC | 3511 | IN | |
2024-07-04 19:43:49 UTC | 8192 | IN | |
2024-07-04 19:43:49 UTC | 4019 | IN | |
2024-07-04 19:43:49 UTC | 8192 | IN | |
2024-07-04 19:43:49 UTC | 1695 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.5 | 49719 | 13.107.136.10 | 443 | 2148 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:49 UTC | 1193 | OUT | |
2024-07-04 19:43:49 UTC | 782 | IN | |
2024-07-04 19:43:49 UTC | 1971 | IN | |
2024-07-04 19:43:49 UTC | 8013 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.5 | 49718 | 13.107.136.10 | 443 | 2148 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:49 UTC | 1115 | OUT | |
2024-07-04 19:43:49 UTC | 756 | IN | |
2024-07-04 19:43:49 UTC | 3391 | IN | |
2024-07-04 19:43:49 UTC | 8192 | IN | |
2024-07-04 19:43:49 UTC | 4167 | IN | |
2024-07-04 19:43:49 UTC | 7313 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.5 | 49724 | 13.107.136.10 | 443 | 2148 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:50 UTC | 1065 | OUT | |
2024-07-04 19:43:50 UTC | 735 | IN | |
2024-07-04 19:43:50 UTC | 1230 | IN | |
2024-07-04 19:43:50 UTC | 6656 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.5 | 49726 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:51 UTC | 161 | OUT | |
2024-07-04 19:43:51 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.5 | 49727 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:52 UTC | 239 | OUT | |
2024-07-04 19:43:52 UTC | 514 | IN | |
2024-07-04 19:43:52 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.5 | 49729 | 13.107.136.10 | 443 | 2148 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:43:52 UTC | 386 | OUT | |
2024-07-04 19:43:52 UTC | 740 | IN | |
2024-07-04 19:43:52 UTC | 2113 | IN | |
2024-07-04 19:43:52 UTC | 5773 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.5 | 49730 | 40.127.169.103 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:44:03 UTC | 306 | OUT | |
2024-07-04 19:44:03 UTC | 560 | IN | |
2024-07-04 19:44:03 UTC | 15824 | IN | |
2024-07-04 19:44:03 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.5 | 49737 | 40.127.169.103 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 19:44:41 UTC | 306 | OUT | |
2024-07-04 19:44:41 UTC | 560 | IN | |
2024-07-04 19:44:41 UTC | 15824 | IN | |
2024-07-04 19:44:41 UTC | 14181 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 15:43:41 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 15:43:44 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 15:43:45 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff715980000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |