Windows
Analysis Report
http://pub-431046b43b84431ea1b4a212cd34e302.r2.dev/gsecondcheck.html?usr=ouwxfmmtalwl
Overview
General Information
Detection
Score: | 72 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
chrome.exe (PID: 1892 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) chrome.exe (PID: 8 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2084 --fi eld-trial- handle=201 6,i,760030 4982508692 16,1114321 9381644743 243,262144 --disable -features= Optimizati onGuideMod elDownload ing,Optimi zationHint s,Optimiza tionHintsF etching,Op timization TargetPred iction /pr efetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
chrome.exe (PID: 6328 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt p://pub-43 1046b43b84 431ea1b4a2 12cd34e302 .r2.dev/gs econdcheck .html?usr= ouwxfmmtal wl" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_HtmlPhish_64 | Yara detected HtmlPhish_64 | Joe Security |
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: | ||
Source: | SlashNext: |
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: |
Phishing |
---|
Source: | LLM: |
Source: | File source: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing | ||
100% | SlashNext | Credential Stealing type: Phishing & Social Engineering |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | URL Reputation | safe | ||
0% | Avira URL Cloud | safe | ||
100% | Avira URL Cloud | phishing | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
100% | Avira URL Cloud | phishing | ||
100% | Avira URL Cloud | phishing | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
ipinfo.io | 34.117.186.192 | true | false | unknown | |
www.google.com | 142.250.185.68 | true | false | unknown | |
logodownload.org | 104.26.7.17 | true | false | unknown | |
pub-431046b43b84431ea1b4a212cd34e302.r2.dev | 104.18.2.35 | true | true | unknown | |
fp2e7a.wpc.phicdn.net | 192.229.221.95 | true | false | unknown | |
cdn.jsdelivr.net | unknown | unknown | false | unknown | |
pro.fontawesome.com | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
true | unknown | ||
true |
| unknown | |
true | unknown | ||
false |
| unknown | |
true |
| unknown | |
true |
| unknown | |
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
34.117.186.192 | ipinfo.io | United States | 139070 | GOOGLE-AS-APGoogleAsiaPacificPteLtdSG | false | |
142.250.185.68 | www.google.com | United States | 15169 | GOOGLEUS | false | |
104.18.2.35 | pub-431046b43b84431ea1b4a212cd34e302.r2.dev | United States | 13335 | CLOUDFLARENETUS | true | |
104.26.7.17 | logodownload.org | United States | 13335 | CLOUDFLARENETUS | false | |
104.26.6.17 | unknown | United States | 13335 | CLOUDFLARENETUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false |
IP |
---|
192.168.2.4 |
192.168.2.5 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1467885 |
Start date and time: | 2024-07-05 00:29:27 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 8s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | http://pub-431046b43b84431ea1b4a212cd34e302.r2.dev/gsecondcheck.html?usr=ouwxfmmtalwl |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 9 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal72.phis.win@17/22@18/8 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 142.250.185.78, 142.250.110.84, 142.250.185.67, 172.64.147.188, 104.18.40.68, 142.250.185.138, 104.18.187.31, 104.18.186.31, 142.250.186.74, 142.250.181.234, 142.250.185.202, 142.250.185.74, 216.58.206.74, 142.250.185.234, 172.217.18.106, 142.250.184.234, 172.217.23.106, 142.250.185.170, 216.58.206.42, 142.250.186.42, 216.58.212.138, 142.250.185.106, 142.250.186.170, 40.68.123.157, 93.184.221.240, 20.242.39.171, 192.229.221.95, 13.85.23.206, 216.58.206.67
- Excluded domains from analysis (whitelisted): cdn.jsdelivr.net.cdn.cloudflare.net, slscr.update.microsoft.com, clientservices.googleapis.com, wu.azureedge.net, clients2.google.com, ocsp.digicert.com, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, glb.cws.prod.dcat.dsp.trafficmanager.net, ocsp.edge.digicert.com, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, wu-b-net.trafficmanager.net, glb.sls.prod.dcat.dsp.trafficmanager.net, pro.fontawesome.com.cdn.cloudflare.net, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, ajax.googleapis.com, ctldl.windowsupdate.com.delivery.microsoft.com, wu.ec.azureedge.net, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, clients.l.google.com
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
- Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- VT rate limit hit for: http://pub-431046b43b84431ea1b4a212cd34e302.r2.dev/gsecondcheck.html?usr=ouwxfmmtalwl
Input | Output |
---|---|
URL: https://pub-431046b43b84431ea1b4a212cd34e302.r2.dev/gsecondcheck.html?usr=ouwxfmmtalwl Model: Perplexity: mixtral-8x7b-instruct | {"loginform": true,"urgency": false,"captcha": false,"reasons": ["The webpage contains a login form which explicitly requests for a sensitive information i.e. password.","The text does not create a sense of urgency.","There is no CAPTCHA or any anti-robot detection mechanism present on the webpage."]} |
Title: Yahoo Mail | Sign in OCR: yahoo! yahoo! Yahoo makes it easy to enjoy what matters most in Enter password your world. using your Yahoo account Best in class Yahoo Mail, breaking local, national and global news, finance, sports, music, movies and more. You get more out of the web, you get more out of Password life. Next Forgot password? | |
URL: https://pub-431046b43b84431ea1b4a212cd34e302.r2.dev Model: gpt-4o | ```json{ "phishing_score": 9, "brands": "Yahoo", "phishing": true, "suspicious_domain": true, "has_prominent_loginform": true, "has_captcha": false, "setechniques": true, "has_suspicious_link": true, "legitmate_domain": "yahoo.com", "reasons": "The URL 'https://pub-431046b43b84431ea1b4a212cd34e302.r2.dev' does not match the legitimate domain 'yahoo.com'. The page prominently displays a login form asking for a password, which is a common phishing tactic. The domain 'r2.dev' is suspicious and not associated with Yahoo. The use of a subdomain and a long, complex URL is another common social engineering technique to mislead users. There is no CAPTCHA present, which is often used by legitimate sites to prevent automated attacks. Overall, the combination of these factors strongly suggests that this is a phishing site."} |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1218 |
Entropy (8bit): | 5.026509521547098 |
Encrypted: | false |
SSDEEP: | 24:VUAotOyJFPz0tv4IrexQCyJIQwXXxsqO1e5q811A3hLB6XOIL7/:iAQJ5z0tAce8IQQBskFINA |
MD5: | 726EF0647391ED5EFC9076BCDB91C606 |
SHA1: | 5BDEE0E3E5C9B14CE2F6D9CB34A1EB056B0B51EE |
SHA-256: | 0F549EC9F7ABAAF6409BF193A6156746C92DF5FF979C66A378F2E73E616C8533 |
SHA-512: | 91A23DEE6751E1043FAD976F74EC1CCFE71E643B3F8B53C51439CCE42F701731EBDE99D0BBF3E938E9A2CF8E44D19ADB8A396BBDAA0845E639228C41D761B5A3 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-431046b43b84431ea1b4a212cd34e302.r2.dev/gform.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1444 |
Entropy (8bit): | 4.59048261752926 |
Encrypted: | false |
SSDEEP: | 24:AB1CrJzswvtlyWkV9FY51CyoP/WB1s6KTdW1APvbTJt8CPF:AB1CrJgw14fU05/YmbTECPjTX8g |
MD5: | 52ECF9BBF69E5BB6EA38C281C8DE64DF |
SHA1: | 24408727238F2D74888BC2B4DCDB4409BA7B508B |
SHA-256: | B76CCCD789FBC73288F948C24B4E2C311B8AA7FEDFB026E20B76509F99193F4B |
SHA-512: | 29A46EB12B7CE9D95C9E92D8407E2CC1AF177927C77A26511B01AACDEADFAD276BD9B442761CFFA41125733E4EECDDCFCC227C6AE272CC2E2F0B6752D88E6221 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-431046b43b84431ea1b4a212cd34e302.r2.dev/gstyles.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 57304 |
Entropy (8bit): | 7.8007384651994025 |
Encrypted: | false |
SSDEEP: | 1536:3hYSWoE7G/PWZHM2Gcn4iHFNcEFIZ57Inyeaa4M:RYhoE6/vRH2ny7M |
MD5: | 8F78102F8FE4467EA5AF76657DD90891 |
SHA1: | 2CCA9300ABC18E5D22172A146EEBB32B44764489 |
SHA-256: | DD5A09D5898D5480D063E1833C4D9BC3F509F3D7C672E0C0E973BB061A694AE2 |
SHA-512: | 82F21501C5209C4840288C9C5268C4A860F118B9D797019E2328E9D8C5A57B4FA780E7802EFBF12C28EF80F0DB3145EBF57A17190A3BE191AAF488BAC5C9B89B |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 156228 |
Entropy (8bit): | 4.7111706245877825 |
Encrypted: | false |
SSDEEP: | 1536:KgvcfQ4aNi7HHQZD0bMSPCDTdV3dWGFIiboA+8Ieiy6BauXZG817fgFSkAmYdAT/:DcI4aY7QN0bjPerGuHuXkz |
MD5: | AA1272633E7E552395D147A499BAD186 |
SHA1: | DDBCCB0011DD4868A013B1DCBDB836B7213EB41D |
SHA-256: | 2AF905D92CFD34B5413126A54F639DA408166CBBCB54318E413AD5E10B5BF6EC |
SHA-512: | 886DDFC7252269B42B0ADFD5F4E47DA0CD6CCB9B0B3EA18C015B1E4EDB1EB1F55CF49728FDCDD151949256851C72CC555CD7F6408A5638595F26D0CAF86FFBDC |
Malicious: | false |
Reputation: | low |
URL: | https://pro.fontawesome.com/releases/v5.10.0/css/all.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 274 |
Entropy (8bit): | 4.897270223761388 |
Encrypted: | false |
SSDEEP: | 6:kXO19TgIJAuuuthkP//f4IoWzqs4jW1CAn:k+15gIOuHhA/XvoPPWf |
MD5: | D362ABFA435FB75BBDCB2E194D14DC4F |
SHA1: | E5DEC1FABE990767DB2966E945BF08A269130933 |
SHA-256: | EE7C9F0B3E011AC99A18CC6EC81AC78F25DC57CFE01CB69B99B7A45E5D8927D0 |
SHA-512: | 88796C53A918EEE6AD6AC2BB24613EA1DC283601261A9D5712473F355FF3FDF3A2F2895273A5C41D10F57C69768729ED4E3672DAF4730DF15BF101F894C4A2EC |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 86659 |
Entropy (8bit): | 5.36781915816204 |
Encrypted: | false |
SSDEEP: | 1536:YNhEyjjTikEJO4edXXe9J578go6MWX2xkj8e4c4j2ll2AckaXEP6n15HZ+FhFcQ7:uxc2yjx4j2uX/kcQDU8Cu9 |
MD5: | C9F5AEECA3AD37BF2AA006139B935F0A |
SHA1: | 1055018C28AB41087EF9CCEFE411606893DABEA2 |
SHA-256: | 87083882CC6015984EB0411A99D3981817F5DC5C90BA24F0940420C5548D82DE |
SHA-512: | DCFF2B5C2B8625D3593A7531FF4DDCD633939CC9F7ACFEB79C18A9E6038FDAA99487960075502F159D44F902D965B0B5AED32B41BFA66A1DC07D85B5D5152B58 |
Malicious: | false |
Reputation: | low |
URL: | https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 27150 |
Entropy (8bit): | 4.357340680151037 |
Encrypted: | false |
SSDEEP: | 384:6bamwIluB0sJQqCeSQup5szCUXAG0VVi82OgoKACZQQofNJXY3gW3:603Mp5If8WOmgW3 |
MD5: | 46DD133EE00DC1BAE5E4EEBA7B88432F |
SHA1: | 8AF86A4AC91CE48C062216FB94A6E1D57618A19B |
SHA-256: | 9EB52EE46C7AB5EA4CA0982415DA99FDED1B7D7354F75E50847BDAE6CB44EB66 |
SHA-512: | CB49F9E3812E2C262AF374E79BD8905CB508A45BF2C2D6AF62EED85AF43770872486A55E9425882FEDA9FB3A57A317A3C18BE1E286ADAF0C76BE7F1B0DFA8474 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-431046b43b84431ea1b4a212cd34e302.r2.dev/images/download_afD_icon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 5385 |
Entropy (8bit): | 4.553378790997423 |
Encrypted: | false |
SSDEEP: | 48:IkQEYafYi808F0Cri1BHKhEbc10odMNiHIGaBzxBlnUsPwEKSKWJMpKyeJTB5J:jYSYi8RF0h7bcW5NzBf2sPwr80qX |
MD5: | 167C14212AB66C838DA881E5FAF380E1 |
SHA1: | D8ACB8C82BC33E0CE92714AD520AEB633E258AF4 |
SHA-256: | 93D44944EB748CC718B13265D2BAB5A839A966D91FE91BC6439ABF2A65A983D3 |
SHA-512: | A43BC4A54C8BABAC9BC3B0C1CC12E2904BEB6AA397E888EEEC97018F24225D18B52D60EA78E91D0FDDE5D6C80BD95598562ED391CF6182E7A55669025B459A23 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-431046b43b84431ea1b4a212cd34e302.r2.dev/gsecondcheck.html?usr=ouwxfmmtalwl |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 2058 |
Entropy (8bit): | 5.2275519102374925 |
Encrypted: | false |
SSDEEP: | 48:I54twbMVLUwxlRiCXloJpA+D+F0N+4+DSnm7DGl46YXkgs2:I5nb+YaHP1oJC+iF0J+enm7I43X42 |
MD5: | AAF4B4C066039688024B3EB28B99260D |
SHA1: | 3D7499D713898A2798F449D8B3528D4094475208 |
SHA-256: | 249F5139F01396E20B067FBE6DB17315981FB1C36C64D64DF224BCF0F8750EAB |
SHA-512: | 9BF344AC90C909CB03955757565B9E442BDC411BDF90303C894FB571005F9C1ED211852BCA4503BE8B59C1F2980B2D94B6E511690DB475A51AD7672FB05E22DC |
Malicious: | false |
Reputation: | low |
URL: | https://cdn.jsdelivr.net/npm/@emailjs/browser@3/dist/email.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 16 |
Entropy (8bit): | 3.875 |
Encrypted: | false |
SSDEEP: | 3:Hm0n:pn |
MD5: | 7BB7122B943F1A90979012260A7198F0 |
SHA1: | 89E353A31F28A60AC1F8E9A642501D612CDE4111 |
SHA-256: | 917D709AA3A7011EBB1D9FD1196D1D37E711F03BFC83E5355E900BF092DE34A0 |
SHA-512: | 422BC6046C768645428157EF0426BE77DE18F5217C8ECE5E16D6EC8F117985A34F155DD36D486DB74E012603FE285F6B9AC196A4CD2019F39322A410A1CA1E4B |
Malicious: | false |
Reputation: | low |
URL: | https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzISEAlzS0pQeUuHlRIFDV07bhY=?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 57304 |
Entropy (8bit): | 7.8007384651994025 |
Encrypted: | false |
SSDEEP: | 1536:3hYSWoE7G/PWZHM2Gcn4iHFNcEFIZ57Inyeaa4M:RYhoE6/vRH2ny7M |
MD5: | 8F78102F8FE4467EA5AF76657DD90891 |
SHA1: | 2CCA9300ABC18E5D22172A146EEBB32B44764489 |
SHA-256: | DD5A09D5898D5480D063E1833C4D9BC3F509F3D7C672E0C0E973BB061A694AE2 |
SHA-512: | 82F21501C5209C4840288C9C5268C4A860F118B9D797019E2328E9D8C5A57B4FA780E7802EFBF12C28EF80F0DB3145EBF57A17190A3BE191AAF488BAC5C9B89B |
Malicious: | false |
Reputation: | low |
URL: | https://logodownload.org/wp-content/uploads/2019/09/yahoo-logo-1.png |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 274 |
Entropy (8bit): | 4.897270223761388 |
Encrypted: | false |
SSDEEP: | 6:kXO19TgIJAuuuthkP//f4IoWzqs4jW1CAn:k+15gIOuHhA/XvoPPWf |
MD5: | D362ABFA435FB75BBDCB2E194D14DC4F |
SHA1: | E5DEC1FABE990767DB2966E945BF08A269130933 |
SHA-256: | EE7C9F0B3E011AC99A18CC6EC81AC78F25DC57CFE01CB69B99B7A45E5D8927D0 |
SHA-512: | 88796C53A918EEE6AD6AC2BB24613EA1DC283601261A9D5712473F355FF3FDF3A2F2895273A5C41D10F57C69768729ED4E3672DAF4730DF15BF101F894C4A2EC |
Malicious: | false |
Reputation: | low |
URL: | https://ipinfo.io/json?token=5eaf0700b2c0d2 |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 5, 2024 00:30:13.047107935 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Jul 5, 2024 00:30:22.655050039 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Jul 5, 2024 00:30:23.671369076 CEST | 49735 | 80 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:23.671742916 CEST | 49736 | 80 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:23.678673029 CEST | 80 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:23.678683043 CEST | 80 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:23.679924965 CEST | 49735 | 80 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:23.679924965 CEST | 49736 | 80 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:23.681943893 CEST | 49736 | 80 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:23.688882113 CEST | 80 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:24.172616005 CEST | 80 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:24.198139906 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:24.198193073 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:24.198295116 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:24.198524952 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:24.198540926 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:24.220005035 CEST | 49736 | 80 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.323923111 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.376708984 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.440854073 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.440869093 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.441941977 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.441956997 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.442007065 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.527570963 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.527695894 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.528229952 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.528253078 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.576505899 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.745513916 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.745580912 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.745610952 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.745630026 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.745640039 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.745651960 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.745681047 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.745731115 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.745778084 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.748872995 CEST | 49737 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.748892069 CEST | 443 | 49737 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.843178034 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.843205929 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.843281984 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.844959021 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.844973087 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.846067905 CEST | 49741 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.846107960 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:25.846175909 CEST | 49741 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.846791029 CEST | 49741 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:25.846807003 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.445483923 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.445712090 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.487499952 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.488593102 CEST | 49741 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.523261070 CEST | 49741 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.523276091 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.523462057 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.523471117 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.523643970 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.523818970 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.532388926 CEST | 49741 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.532461882 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.535661936 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.535722971 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.538063049 CEST | 49741 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.538480997 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.567681074 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:26.567725897 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:26.567799091 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:26.568253040 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:26.568269014 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:26.580502033 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.580517054 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.707665920 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:26.707719088 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:26.707787991 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:26.708177090 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:26.708193064 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:26.755033970 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.755620003 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.755686998 CEST | 49741 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.760495901 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.760536909 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.760586977 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.760617018 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.760648012 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.777367115 CEST | 49741 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.777391911 CEST | 443 | 49741 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.785121918 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:26.785140038 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:26.951781034 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:26.951808929 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:26.951952934 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:26.957031012 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:26.957048893 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:27.192468882 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.193048000 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.193082094 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.194070101 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.194144011 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.195463896 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.195523977 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.195852041 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.195861101 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.227632999 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:27.227855921 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:27.227869987 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:27.228887081 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:27.228971004 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:27.230547905 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:27.230602026 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:27.250315905 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.283296108 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:27.283309937 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:27.326849937 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:27.343306065 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.343347073 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.343379021 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.343413115 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.343436956 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.343607903 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.344110012 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.344609976 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.344638109 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.344656944 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.344666004 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.344707012 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.344713926 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.345413923 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.345593929 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.345602989 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.350492001 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.350568056 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.350577116 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.393620968 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.393642902 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434047937 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434107065 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.434124947 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434397936 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434436083 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434463978 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434485912 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.434495926 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434516907 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.434776068 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434839010 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434860945 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434870958 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.434878111 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.434902906 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.435628891 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.435669899 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.435688019 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.435695887 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.435740948 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.435750008 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.436496973 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.436522961 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.436551094 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.436559916 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.436651945 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.436659098 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.437377930 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.437416077 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.437443018 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.437469959 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.437473059 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.437483072 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.437503099 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.437520027 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.437526941 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.438157082 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.438318968 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.438327074 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.482877970 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.524367094 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.524470091 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.524521112 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.524581909 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.524662018 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.575740099 CEST | 49746 | 443 | 192.168.2.4 | 104.26.7.17 |
Jul 5, 2024 00:30:27.575773954 CEST | 443 | 49746 | 104.26.7.17 | 192.168.2.4 |
Jul 5, 2024 00:30:27.624079943 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:27.624170065 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:27.637329102 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:27.637355089 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:27.637566090 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:27.684779882 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:27.788203001 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:27.832509041 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:27.979562998 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:27.979619026 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:27.979670048 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:27.979861021 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:27.979876995 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:27.979901075 CEST | 49747 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:27.979907990 CEST | 443 | 49747 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:28.010132074 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:28.010157108 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:28.010436058 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:28.010740995 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:28.010754108 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:28.138149023 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.138164997 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.138278961 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.139594078 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.139606953 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.147413015 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.147440910 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.147687912 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.147969007 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.147980928 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.195398092 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.195440054 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.195503950 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.196146965 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.196161985 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.613866091 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.616564989 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.616588116 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.616872072 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.617778063 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.617835999 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.618268967 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.654304028 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.654822111 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.654849052 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.655801058 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.655862093 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.657160044 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.657215118 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.657772064 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.657778978 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.660514116 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.662796974 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:28.662866116 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:28.671531916 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.691201925 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.691239119 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.692408085 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.692512035 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.700339079 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:28.700360060 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:28.700651884 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:28.701184034 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.701266050 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.701852083 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.702888966 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.702898979 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.708507061 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:28.748724937 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.756504059 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:28.794481039 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.794558048 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.794790030 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.824172974 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824213028 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824234962 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824245930 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824259043 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824278116 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824287891 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824295998 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.824306011 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824310064 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824331999 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824333906 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824347973 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.824348927 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.824361086 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.824362993 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824385881 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.824402094 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.824445963 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.824453115 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825063944 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825088024 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825089931 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825109959 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825148106 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.825149059 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.825158119 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825158119 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825206041 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.825206995 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.825217962 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825853109 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825920105 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.825927019 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.825936079 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.830991030 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.831053019 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.831068993 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.831082106 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.831125975 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.873728991 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.913768053 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.913970947 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.913995028 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914017916 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914053917 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.914068937 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914079905 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.914244890 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914283037 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914346933 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.914361954 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914680004 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914701939 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914726019 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914729118 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.914736032 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914782047 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.914918900 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914951086 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.914993048 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.915000916 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.915010929 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.915040016 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.915065050 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.915498972 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.915533066 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.915545940 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.915553093 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.915611029 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.916287899 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.916327000 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.916371107 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.916378021 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.917068005 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.917098045 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.917121887 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.917129040 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.917135954 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.917174101 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.917942047 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.917973995 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.917984962 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.917993069 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.918039083 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.918046951 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.918773890 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.918807983 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.918823004 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.918831110 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.919068098 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.919588089 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.937122107 CEST | 49751 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:28.937151909 CEST | 443 | 49751 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:28.946310997 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:28.946367025 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:28.946434021 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:28.961401939 CEST | 49750 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:28.961422920 CEST | 443 | 49750 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:28.967510939 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:28.967539072 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:28.993227959 CEST | 49749 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:30:28.993246078 CEST | 443 | 49749 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:30:29.010617018 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:29.010663033 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:29.010690928 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:29.010718107 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:29.010729074 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:29.010731936 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:29.010781050 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:29.026400089 CEST | 49752 | 443 | 192.168.2.4 | 104.26.6.17 |
Jul 5, 2024 00:30:29.026426077 CEST | 443 | 49752 | 104.26.6.17 | 192.168.2.4 |
Jul 5, 2024 00:30:29.064554930 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.064604998 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:29.064660072 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.064870119 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.064884901 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:29.580838919 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:29.581149101 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.581178904 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:29.582288980 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:29.582359076 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.582715988 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.582783937 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:29.582879066 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.582887888 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:29.623733997 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.722161055 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:29.722232103 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:29.722290993 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.723472118 CEST | 49753 | 443 | 192.168.2.4 | 34.117.186.192 |
Jul 5, 2024 00:30:29.723491907 CEST | 443 | 49753 | 34.117.186.192 | 192.168.2.4 |
Jul 5, 2024 00:30:37.201009035 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:37.201078892 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:37.201148033 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:38.723673105 CEST | 49745 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:30:38.723707914 CEST | 443 | 49745 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:30:39.076622963 CEST | 80 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:39.076760054 CEST | 49735 | 80 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:39.713824034 CEST | 80 | 49723 | 87.248.205.0 | 192.168.2.4 |
Jul 5, 2024 00:30:39.713990927 CEST | 49723 | 80 | 192.168.2.4 | 87.248.205.0 |
Jul 5, 2024 00:30:39.713990927 CEST | 49723 | 80 | 192.168.2.4 | 87.248.205.0 |
Jul 5, 2024 00:30:39.721724987 CEST | 80 | 49723 | 87.248.205.0 | 192.168.2.4 |
Jul 5, 2024 00:30:39.721844912 CEST | 80 | 49723 | 87.248.205.0 | 192.168.2.4 |
Jul 5, 2024 00:30:39.721971989 CEST | 49723 | 80 | 192.168.2.4 | 87.248.205.0 |
Jul 5, 2024 00:30:40.394526958 CEST | 49735 | 80 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:30:40.399523973 CEST | 80 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:30:55.158845901 CEST | 80 | 49724 | 87.248.205.0 | 192.168.2.4 |
Jul 5, 2024 00:30:55.158946037 CEST | 49724 | 80 | 192.168.2.4 | 87.248.205.0 |
Jul 5, 2024 00:30:55.158992052 CEST | 49724 | 80 | 192.168.2.4 | 87.248.205.0 |
Jul 5, 2024 00:30:55.163742065 CEST | 80 | 49724 | 87.248.205.0 | 192.168.2.4 |
Jul 5, 2024 00:31:09.189459085 CEST | 49736 | 80 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:31:09.194380045 CEST | 80 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:31:26.605484009 CEST | 49762 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:31:26.605529070 CEST | 443 | 49762 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:31:26.605695009 CEST | 49762 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:31:26.606096983 CEST | 49762 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:31:26.606116056 CEST | 443 | 49762 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:31:27.259577036 CEST | 443 | 49762 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:31:27.259879112 CEST | 49762 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:31:27.259905100 CEST | 443 | 49762 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:31:27.260227919 CEST | 443 | 49762 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:31:27.260685921 CEST | 49762 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:31:27.260742903 CEST | 443 | 49762 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:31:27.309350014 CEST | 49762 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:31:37.160295010 CEST | 443 | 49762 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:31:37.160358906 CEST | 443 | 49762 | 142.250.185.68 | 192.168.2.4 |
Jul 5, 2024 00:31:37.160526991 CEST | 49762 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:31:38.386167049 CEST | 49762 | 443 | 192.168.2.4 | 142.250.185.68 |
Jul 5, 2024 00:31:38.386194944 CEST | 443 | 49762 | 142.250.185.68 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 5, 2024 00:30:22.201858044 CEST | 53 | 53120 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:22.202452898 CEST | 53 | 55479 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:23.460285902 CEST | 50118 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:23.460525036 CEST | 59382 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:23.668984890 CEST | 53 | 50118 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:23.670499086 CEST | 53 | 59382 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:24.023351908 CEST | 53 | 52295 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:24.178613901 CEST | 54936 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:24.178767920 CEST | 63314 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:24.191406012 CEST | 53 | 54936 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:24.197727919 CEST | 53 | 63314 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:25.840464115 CEST | 53421 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:25.841186047 CEST | 59919 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:25.849801064 CEST | 60868 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:25.850285053 CEST | 61510 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:25.852605104 CEST | 53 | 59919 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:25.857863903 CEST | 53 | 54846 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:25.859561920 CEST | 53 | 61510 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:26.554588079 CEST | 60744 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:26.554825068 CEST | 53167 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:26.564204931 CEST | 53 | 60744 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:26.565787077 CEST | 53 | 53167 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:26.689292908 CEST | 50991 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:26.694890976 CEST | 50210 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:26.700006008 CEST | 53 | 50991 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:26.706546068 CEST | 53 | 50210 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:27.207693100 CEST | 53 | 53409 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:28.136018991 CEST | 64158 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:28.136506081 CEST | 56323 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:28.145071983 CEST | 53 | 64158 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:28.145421028 CEST | 53 | 56323 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:28.153994083 CEST | 59826 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:28.154494047 CEST | 63239 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:28.168262005 CEST | 53 | 59826 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:28.168308973 CEST | 53 | 63239 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:29.053884029 CEST | 52504 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:29.054250956 CEST | 64337 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:30:29.062830925 CEST | 53 | 52504 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:29.063410997 CEST | 53 | 64337 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:30:40.473534107 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Jul 5, 2024 00:30:41.297642946 CEST | 53 | 56548 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:31:00.181734085 CEST | 53 | 51198 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:31:21.905016899 CEST | 53 | 59452 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:31:22.922852993 CEST | 53 | 54060 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Jul 5, 2024 00:30:23.460285902 CEST | 192.168.2.4 | 1.1.1.1 | 0xea3e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:30:23.460525036 CEST | 192.168.2.4 | 1.1.1.1 | 0x8e97 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:30:24.178613901 CEST | 192.168.2.4 | 1.1.1.1 | 0xc81d | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:30:24.178767920 CEST | 192.168.2.4 | 1.1.1.1 | 0x732f | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:30:25.840464115 CEST | 192.168.2.4 | 1.1.1.1 | 0x412b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:30:25.841186047 CEST | 192.168.2.4 | 1.1.1.1 | 0x1a3f | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:30:25.849801064 CEST | 192.168.2.4 | 1.1.1.1 | 0x9bca | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:30:25.850285053 CEST | 192.168.2.4 | 1.1.1.1 | 0x35b2 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:30:26.554588079 CEST | 192.168.2.4 | 1.1.1.1 | 0xf843 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:30:26.554825068 CEST | 192.168.2.4 | 1.1.1.1 | 0x30c2 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:30:26.689292908 CEST | 192.168.2.4 | 1.1.1.1 | 0x3805 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:30:26.694890976 CEST | 192.168.2.4 | 1.1.1.1 | 0x8f07 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:30:28.136018991 CEST | 192.168.2.4 | 1.1.1.1 | 0x84b4 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:30:28.136506081 CEST | 192.168.2.4 | 1.1.1.1 | 0xef19 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:30:28.153994083 CEST | 192.168.2.4 | 1.1.1.1 | 0x36e8 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:30:28.154494047 CEST | 192.168.2.4 | 1.1.1.1 | 0xcbd | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:30:29.053884029 CEST | 192.168.2.4 | 1.1.1.1 | 0x847c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:30:29.054250956 CEST | 192.168.2.4 | 1.1.1.1 | 0x86b | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Jul 5, 2024 00:30:23.668984890 CEST | 1.1.1.1 | 192.168.2.4 | 0xea3e | No error (0) | 104.18.2.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:23.668984890 CEST | 1.1.1.1 | 192.168.2.4 | 0xea3e | No error (0) | 104.18.3.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:24.191406012 CEST | 1.1.1.1 | 192.168.2.4 | 0xc81d | No error (0) | 104.18.2.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:24.191406012 CEST | 1.1.1.1 | 192.168.2.4 | 0xc81d | No error (0) | 104.18.3.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:25.852174044 CEST | 1.1.1.1 | 192.168.2.4 | 0x412b | No error (0) | pro.fontawesome.com.cdn.cloudflare.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:25.852605104 CEST | 1.1.1.1 | 192.168.2.4 | 0x1a3f | No error (0) | pro.fontawesome.com.cdn.cloudflare.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:25.859132051 CEST | 1.1.1.1 | 192.168.2.4 | 0x9bca | No error (0) | cdn.jsdelivr.net.cdn.cloudflare.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:25.859561920 CEST | 1.1.1.1 | 192.168.2.4 | 0x35b2 | No error (0) | cdn.jsdelivr.net.cdn.cloudflare.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:26.564204931 CEST | 1.1.1.1 | 192.168.2.4 | 0xf843 | No error (0) | 142.250.185.68 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:26.565787077 CEST | 1.1.1.1 | 192.168.2.4 | 0x30c2 | No error (0) | 65 | IN (0x0001) | false | |||
Jul 5, 2024 00:30:26.700006008 CEST | 1.1.1.1 | 192.168.2.4 | 0x3805 | No error (0) | 104.26.7.17 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:26.700006008 CEST | 1.1.1.1 | 192.168.2.4 | 0x3805 | No error (0) | 104.26.6.17 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:26.700006008 CEST | 1.1.1.1 | 192.168.2.4 | 0x3805 | No error (0) | 172.67.71.13 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:26.706546068 CEST | 1.1.1.1 | 192.168.2.4 | 0x8f07 | No error (0) | 65 | IN (0x0001) | false | |||
Jul 5, 2024 00:30:28.145071983 CEST | 1.1.1.1 | 192.168.2.4 | 0x84b4 | No error (0) | 34.117.186.192 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:28.168262005 CEST | 1.1.1.1 | 192.168.2.4 | 0x36e8 | No error (0) | 104.26.6.17 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:28.168262005 CEST | 1.1.1.1 | 192.168.2.4 | 0x36e8 | No error (0) | 172.67.71.13 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:28.168262005 CEST | 1.1.1.1 | 192.168.2.4 | 0x36e8 | No error (0) | 104.26.7.17 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:28.168308973 CEST | 1.1.1.1 | 192.168.2.4 | 0xcbd | No error (0) | 65 | IN (0x0001) | false | |||
Jul 5, 2024 00:30:29.062830925 CEST | 1.1.1.1 | 192.168.2.4 | 0x847c | No error (0) | 34.117.186.192 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:38.545293093 CEST | 1.1.1.1 | 192.168.2.4 | 0x324a | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:38.545293093 CEST | 1.1.1.1 | 192.168.2.4 | 0x324a | No error (0) | 192.229.221.95 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:56.464018106 CEST | 1.1.1.1 | 192.168.2.4 | 0x4895 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 5, 2024 00:30:56.464018106 CEST | 1.1.1.1 | 192.168.2.4 | 0x4895 | No error (0) | 192.229.221.95 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:31:15.304595947 CEST | 1.1.1.1 | 192.168.2.4 | 0x1c39 | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 5, 2024 00:31:15.304595947 CEST | 1.1.1.1 | 192.168.2.4 | 0x1c39 | No error (0) | 192.229.221.95 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:31:35.102454901 CEST | 1.1.1.1 | 192.168.2.4 | 0x139c | No error (0) | fp2e7a.wpc.phicdn.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Jul 5, 2024 00:31:35.102454901 CEST | 1.1.1.1 | 192.168.2.4 | 0x139c | No error (0) | 192.229.221.95 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49736 | 104.18.2.35 | 80 | 8 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Jul 5, 2024 00:30:23.681943893 CEST | 492 | OUT | |
Jul 5, 2024 00:30:24.172616005 CEST | 548 | IN | |
Jul 5, 2024 00:31:09.189459085 CEST | 6 | OUT |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49737 | 104.18.2.35 | 443 | 8 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:25 UTC | 720 | OUT | |
2024-07-04 22:30:25 UTC | 282 | IN | |
2024-07-04 22:30:25 UTC | 1087 | IN | |
2024-07-04 22:30:25 UTC | 1369 | IN | |
2024-07-04 22:30:25 UTC | 1369 | IN | |
2024-07-04 22:30:25 UTC | 1369 | IN | |
2024-07-04 22:30:25 UTC | 191 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49741 | 104.18.2.35 | 443 | 8 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:26 UTC | 628 | OUT | |
2024-07-04 22:30:26 UTC | 281 | IN | |
2024-07-04 22:30:26 UTC | 1218 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49740 | 104.18.2.35 | 443 | 8 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:26 UTC | 630 | OUT | |
2024-07-04 22:30:26 UTC | 281 | IN | |
2024-07-04 22:30:26 UTC | 1369 | IN | |
2024-07-04 22:30:26 UTC | 75 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49746 | 104.26.7.17 | 443 | 8 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:27 UTC | 646 | OUT | |
2024-07-04 22:30:27 UTC | 637 | IN | |
2024-07-04 22:30:27 UTC | 732 | IN | |
2024-07-04 22:30:27 UTC | 1369 | IN | |
2024-07-04 22:30:27 UTC | 1369 | IN | |
2024-07-04 22:30:27 UTC | 1369 | IN | |
2024-07-04 22:30:27 UTC | 1369 | IN | |
2024-07-04 22:30:27 UTC | 1369 | IN | |
2024-07-04 22:30:27 UTC | 1369 | IN | |
2024-07-04 22:30:27 UTC | 1369 | IN | |
2024-07-04 22:30:27 UTC | 1369 | IN | |
2024-07-04 22:30:27 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49747 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:27 UTC | 161 | OUT | |
2024-07-04 22:30:27 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49750 | 104.18.2.35 | 443 | 8 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:28 UTC | 693 | OUT | |
2024-07-04 22:30:28 UTC | 180 | IN | |
2024-07-04 22:30:28 UTC | 1189 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49751 | 34.117.186.192 | 443 | 8 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:28 UTC | 661 | OUT | |
2024-07-04 22:30:28 UTC | 513 | IN | |
2024-07-04 22:30:28 UTC | 274 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49752 | 104.26.6.17 | 443 | 8 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:28 UTC | 383 | OUT | |
2024-07-04 22:30:28 UTC | 637 | IN | |
2024-07-04 22:30:28 UTC | 732 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN | |
2024-07-04 22:30:28 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49749 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:28 UTC | 239 | OUT | |
2024-07-04 22:30:28 UTC | 514 | IN | |
2024-07-04 22:30:28 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.4 | 49753 | 34.117.186.192 | 443 | 8 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:30:29 UTC | 358 | OUT | |
2024-07-04 22:30:29 UTC | 513 | IN | |
2024-07-04 22:30:29 UTC | 274 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 18:30:15 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 18:30:21 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 18:30:22 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |