Windows
Analysis Report
https://pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev/slnt.html?nycsbs
Overview
General Information
Detection
Score: | 64 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
chrome.exe (PID: 6140 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92) chrome.exe (PID: 2104 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2072 --fi eld-trial- handle=202 4,i,140182 6839590383 1240,15156 0902786562 49234,2621 44 --disab le-feature s=Optimiza tionGuideM odelDownlo ading,Opti mizationHi nts,Optimi zationHint sFetching, Optimizati onTargetPr ediction / prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
chrome.exe (PID: 6536 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://pub-9 445ce0d747 14d1c934c5 1ffcf83c3f 2.r2.dev/s lnt.html?n ycsbs" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)
- cleanup
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_BlockedWebSite | Yara detected BlockedWebSite | Joe Security |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_BlockedWebSite | Yara detected BlockedWebSite | Joe Security | ||
JoeSecurity_BlockedWebSite | Yara detected BlockedWebSite | Joe Security |
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: | ||
Source: | SlashNext: |
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: |
Phishing |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing | ||
100% | SlashNext | Credential Stealing type: Phishing & Social usering |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
100% | Avira URL Cloud | phishing | ||
100% | Avira URL Cloud | phishing | ||
100% | Avira URL Cloud | phishing |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev | 104.18.2.35 | true | false | unknown | |
www.google.com | 142.250.186.164 | true | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
true | unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
104.18.2.35 | pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev | United States | 13335 | CLOUDFLARENETUS | false | |
142.250.186.164 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.4 |
192.168.2.6 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1467901 |
Start date and time: | 2024-07-05 00:45:37 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 2s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev/slnt.html?nycsbs |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 7 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal64.phis.win@16/9@6/5 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): WMIADAP.exe, SIHClient.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 172.217.16.195, 142.250.185.206, 74.125.71.84, 34.104.35.123, 192.229.221.95, 93.184.221.240, 216.58.206.35
- Excluded domains from analysis (whitelisted): client.wns.windows.com, fs.microsoft.com, clients2.google.com, ocsp.digicert.com, accounts.google.com, edgedl.me.gvt1.com, slscr.update.microsoft.com, update.googleapis.com, ctldl.windowsupdate.com, clientservices.googleapis.com, clients.l.google.com, fe3cr.delivery.mp.microsoft.com
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
- Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- VT rate limit hit for: https://pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev/slnt.html?nycsbs
Input | Output |
---|---|
URL: https://pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev/slnt.html?nycsbs Model: Perplexity: mixtral-8x7b-instruct | {"loginform": false,"urgency": false,"captcha": false,"reasons": ["The title of the webpage suggests that it is a suspected phishing site, which is a potential security concern.","The text on the webpage warns the user of potential phishing and encourages them to ignore and proceed with caution.","There is no login form present on the webpage, which reduces the risk of sensitive information being stolen through this page.","The text on the webpage does not create a sense of urgency or interest, which may help to prevent users from being tricked into providing sensitive information.","There is no CAPTCHA or anti-robot detection mechanism present on the webpage, which may make it easier for automated tools to detect and report potential phishing sites."]} |
Title: Suspected phishing site | Cloudflare OCR: O Warning Suspected Phishing This website has been reported for potential phishing. Phishing is when a site attempts to steal sensitive information by falsely presenting as a safe source. Leam More Ignore & Proceed Cloudflare Ray ID: 89e2a6cedd4a72bg Your 'P: Click ta reveal Performance & security by Cloudflare | |
URL: https://pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev/slnt.html?nycsbs Model: Perplexity: mixtral-8x7b-instruct | {"loginform": false,"urgency": false,"captcha": false,"reasons": ["The title of the webpage suggests that it is a suspected phishing site, which is a red flag.","The text on the webpage warns the user about potential phishing and encourages them to ignore and proceed, which is a common tactic used by phishing sites.","The webpage does not contain a login form, which is unusual for a site that may be requesting sensitive information.","The webpage does not contain a CAPTCHA or any other anti-robot detection mechanism, which is another red flag.","The text on the webpage does not create a sense of urgency or interest, which is common in phishing attempts."]} |
Title: Suspected phishing site | Cloudflare OCR: O Warning Suspected Phishing This website has been reported for potential phishing. Phishing is when a site attempts to steal sensitive information by falsely presenting as a safe source. Leam More Ignore & Proceed Cloudflare Ray 'D: 89e2a6cedd4a72bg Performance & security by Cloudflare Your IP: 846.123.33 |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 4410 |
Entropy (8bit): | 5.08544197936629 |
Encrypted: | false |
SSDEEP: | 96:1j9jwIjYjUDK/D5DMF+BOisvZXA2ZLimFrR49PaQxJbGD:1j9jhjYjIK/Vo+tsvrZOmFrO9ieJGD |
MD5: | A5BB80D212BB335876ECB7B242824DB5 |
SHA1: | 7030EA850DEC8DDA0B20A7FF64960069A6C133F7 |
SHA-256: | D642AE2010EFEAC7164774FFCB24DA17B295CF5CC35A7C9715C8113D1A4A09AC |
SHA-512: | 04A526E1E45CA53DFD4E91DD9DEC0C22918EF2B2716B1C5139FDD61E26BF61570EA97C9722F2ED66AA7334DED2349CF13F7811C399198348A0F32377AEC64D5F |
Malicious: | false |
Reputation: | low |
URL: | https://pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev/slnt.html?nycsbs |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 452 |
Entropy (8bit): | 7.0936408308765495 |
Encrypted: | false |
SSDEEP: | 12:6v/7EljW8E6Cl2SYh8SZM4tf70FSDvMXDxJp6ScFChY9:U8hCl2SIdZBtAFSDUX/ozIhK |
MD5: | C33DE66281E933259772399D10A6AFE8 |
SHA1: | B9F9D500F8814381451011D4DCF59CD2D90AD94F |
SHA-256: | F1591A5221136C49438642155691AE6C68E25B7241F3D7EBE975B09A77662016 |
SHA-512: | 5834FB9D66F550E6CECFE484B7B6A14F3FCA795405DECE8E652BD69AD917B94B6BBDCDF7639161B9C07F0D33EABD3E79580446B5867219F72F4FC43FD43B98C3 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev/cdn-cgi/images/icon-exclamation.png?1376755637 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 452 |
Entropy (8bit): | 7.0936408308765495 |
Encrypted: | false |
SSDEEP: | 12:6v/7EljW8E6Cl2SYh8SZM4tf70FSDvMXDxJp6ScFChY9:U8hCl2SIdZBtAFSDUX/ozIhK |
MD5: | C33DE66281E933259772399D10A6AFE8 |
SHA1: | B9F9D500F8814381451011D4DCF59CD2D90AD94F |
SHA-256: | F1591A5221136C49438642155691AE6C68E25B7241F3D7EBE975B09A77662016 |
SHA-512: | 5834FB9D66F550E6CECFE484B7B6A14F3FCA795405DECE8E652BD69AD917B94B6BBDCDF7639161B9C07F0D33EABD3E79580446B5867219F72F4FC43FD43B98C3 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 27150 |
Entropy (8bit): | 4.357340680151037 |
Encrypted: | false |
SSDEEP: | 384:6bamwIluB0sJQqCeSQup5szCUXAG0VVi82OgoKACZQQofNJXY3gW3:603Mp5If8WOmgW3 |
MD5: | 46DD133EE00DC1BAE5E4EEBA7B88432F |
SHA1: | 8AF86A4AC91CE48C062216FB94A6E1D57618A19B |
SHA-256: | 9EB52EE46C7AB5EA4CA0982415DA99FDED1B7D7354F75E50847BDAE6CB44EB66 |
SHA-512: | CB49F9E3812E2C262AF374E79BD8905CB508A45BF2C2D6AF62EED85AF43770872486A55E9425882FEDA9FB3A57A317A3C18BE1E286ADAF0C76BE7F1B0DFA8474 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 24051 |
Entropy (8bit): | 4.941039417164537 |
Encrypted: | false |
SSDEEP: | 192:VuR/6okgTQwq23gGM8lUR9YRGQ2BwoX6zp+1+nDT1FvxKSI7/UsV7MSE6XZ2dKzk:JwV+oUcoQJpdf1dxKSI7/Ue7ZX2qk |
MD5: | 5E8C69A459A691B5D1B9BE442332C87D |
SHA1: | F24DD1AD7C9080575D92A9A9A2C42620725EF836 |
SHA-256: | 84E3C77025ACE5AF143972B4A40FC834DCDFD4E449D4B36A57E62326F16B3091 |
SHA-512: | 6DB74B262D717916DE0B0B600EEAD2CC6A10E52A9E26D701FAE761FCBC931F35F251553669A92BE3B524F380F32E62AC6AD572BEA23C78965228CE9EFB92ED42 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-9445ce0d74714d1c934c51ffcf83c3f2.r2.dev/cdn-cgi/styles/cf.errors.css |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 5, 2024 00:46:22.249525070 CEST | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
Jul 5, 2024 00:46:22.249589920 CEST | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
Jul 5, 2024 00:46:22.546580076 CEST | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
Jul 5, 2024 00:46:26.108412981 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:26.108472109 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:26.108527899 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:26.111804962 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:26.111819983 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:26.963675976 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:26.963768959 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:27.002111912 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:27.002172947 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:27.002504110 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:27.009399891 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:27.009577990 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:27.009587049 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:27.009977102 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:27.056498051 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:27.193726063 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:27.194353104 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:27.194402933 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:27.269896030 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:27.269896030 CEST | 49709 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:27.269979000 CEST | 443 | 49709 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:28.398561001 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.398653984 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.398904085 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.399435043 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.399466038 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.399519920 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.399677992 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.399713039 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.399893999 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.399908066 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.877796888 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.880024910 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.880052090 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.881202936 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.881263971 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.882230043 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.882291079 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.882433891 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.882441044 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.890836000 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.891053915 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.891119957 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.892137051 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.892206907 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.892518044 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.892575026 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.924148083 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.940277100 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.940320969 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.986099958 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.992935896 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.993174076 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.993297100 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.993350029 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.993371010 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.993400097 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.993416071 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.993593931 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:28.993922949 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.993977070 CEST | 49716 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:28.993999958 CEST | 443 | 49716 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.008476019 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.056494951 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.112739086 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.113218069 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.113243103 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.113401890 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.113420963 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.113471985 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.113606930 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.113657951 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.113683939 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.113728046 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.113734007 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.113776922 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.115019083 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.115052938 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.115371943 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.115390062 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.118108034 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.118160963 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.118180990 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.162300110 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.207190037 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.207243919 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.207268953 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.207292080 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.207318068 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.207334042 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.207386017 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.207468033 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.207473040 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.207525969 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.207525969 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.207879066 CEST | 49715 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.207912922 CEST | 443 | 49715 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.212902069 CEST | 49717 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.212949991 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.213033915 CEST | 49717 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.213372946 CEST | 49717 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.213418007 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.710943937 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.711385965 CEST | 49717 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.711474895 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.711812973 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.712127924 CEST | 49717 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.712193966 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.712270975 CEST | 49717 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.752499104 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.839361906 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.839437962 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.839493990 CEST | 49717 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.843192101 CEST | 49717 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.843223095 CEST | 443 | 49717 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.851802111 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.851850033 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.851913929 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.852102041 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.852118015 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.866899967 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.866945028 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:29.867002010 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.867166996 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:29.867183924 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.326409101 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.326833963 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.326860905 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.327178001 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.327861071 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.327949047 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.328056097 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.368510962 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.374330044 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.374700069 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.374766111 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.375767946 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.375951052 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.376535892 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.376602888 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.376699924 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.376718044 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.435638905 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.506418943 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.506468058 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.506531954 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.571805954 CEST | 49721 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.571865082 CEST | 443 | 49721 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.617156982 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.617563009 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.617599010 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.617624044 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.617633104 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.617666006 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.617686987 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.617749929 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.617784977 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.617793083 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.617832899 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.617870092 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.617877007 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.618649006 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.618689060 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.618693113 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.618701935 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.618736029 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.622375011 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.669991970 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.711620092 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.711698055 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.711730957 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.711740971 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.711760998 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.711797953 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.711805105 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.711863995 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.711900949 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.711908102 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.712425947 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:30.712469101 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.715032101 CEST | 49720 | 443 | 192.168.2.6 | 104.18.2.35 |
Jul 5, 2024 00:46:30.715054035 CEST | 443 | 49720 | 104.18.2.35 | 192.168.2.6 |
Jul 5, 2024 00:46:31.705652952 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:31.705724955 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:31.705821991 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:31.706578970 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:31.706595898 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:31.856837988 CEST | 49674 | 443 | 192.168.2.6 | 173.222.162.64 |
Jul 5, 2024 00:46:31.856837988 CEST | 49673 | 443 | 192.168.2.6 | 173.222.162.64 |
Jul 5, 2024 00:46:32.037574053 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:32.037647963 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:32.037746906 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:32.039345026 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:32.039374113 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:32.153738022 CEST | 49672 | 443 | 192.168.2.6 | 173.222.162.64 |
Jul 5, 2024 00:46:32.160691023 CEST | 49725 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:32.160737038 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:32.160804987 CEST | 49725 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:32.163587093 CEST | 49725 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:32.163602114 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:32.381669044 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:32.382083893 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:32.382119894 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:32.383204937 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:32.383275032 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:32.385587931 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:32.385673046 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:32.434972048 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:32.435002089 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:32.481848955 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:32.836123943 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:32.836204052 CEST | 49725 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:32.839399099 CEST | 49725 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:32.839416027 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:32.839664936 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:32.856301069 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:32.856378078 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:32.858925104 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:32.858942032 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:32.859152079 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:32.860603094 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:32.861102104 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:32.861110926 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:32.861228943 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:32.886738062 CEST | 49725 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:32.908504963 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:32.928514957 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.040024042 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:33.040234089 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:33.040296078 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:33.040646076 CEST | 49724 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:33.040677071 CEST | 443 | 49724 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:33.120985985 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.121068954 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.121279955 CEST | 49725 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:33.129553080 CEST | 49725 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:33.129573107 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.129589081 CEST | 49725 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:33.129596949 CEST | 443 | 49725 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.181108952 CEST | 49726 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:33.181133032 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.181438923 CEST | 49726 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:33.182055950 CEST | 49726 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:33.182075977 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.834738970 CEST | 443 | 49705 | 173.222.162.64 | 192.168.2.6 |
Jul 5, 2024 00:46:33.834803104 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.834825039 CEST | 49705 | 443 | 192.168.2.6 | 173.222.162.64 |
Jul 5, 2024 00:46:33.834878922 CEST | 49726 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:33.836508036 CEST | 49726 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:33.836517096 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.836714983 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:33.838733912 CEST | 49726 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:33.880516052 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:34.134654045 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:34.134713888 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:34.134891987 CEST | 49726 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:34.136239052 CEST | 49726 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:34.136264086 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:34.136281967 CEST | 49726 | 443 | 192.168.2.6 | 23.211.4.90 |
Jul 5, 2024 00:46:34.136290073 CEST | 443 | 49726 | 23.211.4.90 | 192.168.2.6 |
Jul 5, 2024 00:46:42.268723011 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:42.268786907 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:42.268834114 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:42.325131893 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:42.325176001 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:42.325283051 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:42.327825069 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:42.327840090 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.147025108 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.147099972 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.148930073 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.148948908 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.149184942 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.200551033 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.214138031 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.256496906 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491123915 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491158009 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491166115 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491204977 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491219997 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.491225958 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491234064 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491260052 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491277933 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.491288900 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.491309881 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.491518974 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491580009 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.491590023 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.491993904 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.492140055 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.503025055 CEST | 49727 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:46:43.503041983 CEST | 443 | 49727 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:46:43.614541054 CEST | 49723 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:46:43.614631891 CEST | 443 | 49723 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:46:54.193368912 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:54.193470001 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:54.193627119 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:54.194186926 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:54.194216013 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:55.101156950 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:55.101319075 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:55.104983091 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:55.105024099 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:55.105268955 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:55.106992006 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:55.107263088 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:55.107263088 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:55.107280016 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:55.152501106 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:55.290175915 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:55.290400028 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:46:55.290699005 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:55.293930054 CEST | 49731 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:46:55.293971062 CEST | 443 | 49731 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:20.201961994 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:20.202095032 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:20.202214956 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:20.204029083 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:20.204066038 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.028592110 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.028667927 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:21.032430887 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:21.032458067 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.032701015 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.041070938 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:21.084523916 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.388856888 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.388883114 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.388920069 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.388940096 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:21.388972044 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.388989925 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:21.389014959 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:21.390393019 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.390456915 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.390470028 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:21.390495062 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:21.390511036 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:21.398894072 CEST | 49732 | 443 | 192.168.2.6 | 20.114.59.183 |
Jul 5, 2024 00:47:21.398931980 CEST | 443 | 49732 | 20.114.59.183 | 192.168.2.6 |
Jul 5, 2024 00:47:25.422553062 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:25.422610044 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:25.422857046 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:25.423218966 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:25.423243999 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:26.275392056 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:26.275485992 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:26.279253960 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:26.279267073 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:26.279489994 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:26.281399012 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:26.281399012 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:26.281421900 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:26.281543970 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:26.328497887 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:26.457957983 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:26.458127022 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:26.458187103 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:26.458297014 CEST | 49733 | 443 | 192.168.2.6 | 40.113.110.67 |
Jul 5, 2024 00:47:26.458333969 CEST | 443 | 49733 | 40.113.110.67 | 192.168.2.6 |
Jul 5, 2024 00:47:31.645145893 CEST | 49735 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:47:31.645176888 CEST | 443 | 49735 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:47:31.645243883 CEST | 49735 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:47:31.645548105 CEST | 49735 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:47:31.645560026 CEST | 443 | 49735 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:47:32.311639071 CEST | 443 | 49735 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:47:32.312897921 CEST | 49735 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:47:32.312927961 CEST | 443 | 49735 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:47:32.313251972 CEST | 443 | 49735 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:47:32.314032078 CEST | 49735 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:47:32.314091921 CEST | 443 | 49735 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:47:32.357522011 CEST | 49735 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:47:42.208379984 CEST | 443 | 49735 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:47:42.208445072 CEST | 443 | 49735 | 142.250.186.164 | 192.168.2.6 |
Jul 5, 2024 00:47:42.208575964 CEST | 49735 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:47:43.577995062 CEST | 49735 | 443 | 192.168.2.6 | 142.250.186.164 |
Jul 5, 2024 00:47:43.578044891 CEST | 443 | 49735 | 142.250.186.164 | 192.168.2.6 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 5, 2024 00:46:27.421443939 CEST | 53 | 63651 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:46:27.441869020 CEST | 53 | 60513 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:46:28.347850084 CEST | 62124 | 53 | 192.168.2.6 | 1.1.1.1 |
Jul 5, 2024 00:46:28.348004103 CEST | 52324 | 53 | 192.168.2.6 | 1.1.1.1 |
Jul 5, 2024 00:46:28.395351887 CEST | 53 | 62124 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:46:28.396189928 CEST | 53 | 52324 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:46:28.450057983 CEST | 53 | 53520 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:46:29.854717970 CEST | 59667 | 53 | 192.168.2.6 | 1.1.1.1 |
Jul 5, 2024 00:46:29.854990005 CEST | 55763 | 53 | 192.168.2.6 | 1.1.1.1 |
Jul 5, 2024 00:46:29.865048885 CEST | 53 | 59667 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:46:29.866420031 CEST | 53 | 55763 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:46:31.596767902 CEST | 60221 | 53 | 192.168.2.6 | 1.1.1.1 |
Jul 5, 2024 00:46:31.597244024 CEST | 53143 | 53 | 192.168.2.6 | 1.1.1.1 |
Jul 5, 2024 00:46:31.604222059 CEST | 53 | 60221 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:46:31.607726097 CEST | 53 | 53143 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:46:45.509253979 CEST | 53 | 56288 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:47:04.335787058 CEST | 53 | 57878 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:47:27.021816969 CEST | 53 | 49826 | 1.1.1.1 | 192.168.2.6 |
Jul 5, 2024 00:47:27.328661919 CEST | 53 | 60384 | 1.1.1.1 | 192.168.2.6 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Jul 5, 2024 00:46:28.347850084 CEST | 192.168.2.6 | 1.1.1.1 | 0x5cf8 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:46:28.348004103 CEST | 192.168.2.6 | 1.1.1.1 | 0xc073 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:46:29.854717970 CEST | 192.168.2.6 | 1.1.1.1 | 0x7d1a | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:46:29.854990005 CEST | 192.168.2.6 | 1.1.1.1 | 0x1f7e | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:46:31.596767902 CEST | 192.168.2.6 | 1.1.1.1 | 0x7a3f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:46:31.597244024 CEST | 192.168.2.6 | 1.1.1.1 | 0x4942 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Jul 5, 2024 00:46:28.395351887 CEST | 1.1.1.1 | 192.168.2.6 | 0x5cf8 | No error (0) | 104.18.2.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:46:28.395351887 CEST | 1.1.1.1 | 192.168.2.6 | 0x5cf8 | No error (0) | 104.18.3.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:46:29.865048885 CEST | 1.1.1.1 | 192.168.2.6 | 0x7d1a | No error (0) | 104.18.2.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:46:29.865048885 CEST | 1.1.1.1 | 192.168.2.6 | 0x7d1a | No error (0) | 104.18.3.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:46:31.604222059 CEST | 1.1.1.1 | 192.168.2.6 | 0x7a3f | No error (0) | 142.250.186.164 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:46:31.607726097 CEST | 1.1.1.1 | 192.168.2.6 | 0x4942 | No error (0) | 65 | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
0 | 192.168.2.6 | 49709 | 40.113.110.67 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:27 UTC | 70 | OUT | |
2024-07-04 22:46:27 UTC | 249 | OUT | |
2024-07-04 22:46:27 UTC | 1075 | OUT | |
2024-07-04 22:46:27 UTC | 217 | OUT | |
2024-07-04 22:46:27 UTC | 14 | IN | |
2024-07-04 22:46:27 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.6 | 49716 | 104.18.2.35 | 443 | 2104 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:28 UTC | 702 | OUT | |
2024-07-04 22:46:28 UTC | 222 | IN | |
2024-07-04 22:46:28 UTC | 1147 | IN | |
2024-07-04 22:46:28 UTC | 1369 | IN | |
2024-07-04 22:46:28 UTC | 1369 | IN | |
2024-07-04 22:46:28 UTC | 533 | IN | |
2024-07-04 22:46:28 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.6 | 49715 | 104.18.2.35 | 443 | 2104 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:29 UTC | 629 | OUT | |
2024-07-04 22:46:29 UTC | 411 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN | |
2024-07-04 22:46:29 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.6 | 49717 | 104.18.2.35 | 443 | 2104 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:29 UTC | 705 | OUT | |
2024-07-04 22:46:29 UTC | 409 | IN | |
2024-07-04 22:46:29 UTC | 452 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.6 | 49720 | 104.18.2.35 | 443 | 2104 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:30 UTC | 658 | OUT | |
2024-07-04 22:46:30 UTC | 180 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN | |
2024-07-04 22:46:30 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.6 | 49721 | 104.18.2.35 | 443 | 2104 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:30 UTC | 413 | OUT | |
2024-07-04 22:46:30 UTC | 409 | IN | |
2024-07-04 22:46:30 UTC | 452 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
6 | 192.168.2.6 | 49724 | 40.113.110.67 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:32 UTC | 71 | OUT | |
2024-07-04 22:46:32 UTC | 249 | OUT | |
2024-07-04 22:46:32 UTC | 1064 | OUT | |
2024-07-04 22:46:32 UTC | 218 | OUT | |
2024-07-04 22:46:33 UTC | 14 | IN | |
2024-07-04 22:46:33 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.6 | 49725 | 23.211.4.90 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:32 UTC | 161 | OUT | |
2024-07-04 22:46:33 UTC | 467 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.6 | 49726 | 23.211.4.90 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:33 UTC | 239 | OUT | |
2024-07-04 22:46:34 UTC | 535 | IN | |
2024-07-04 22:46:34 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.6 | 49727 | 20.114.59.183 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:43 UTC | 306 | OUT | |
2024-07-04 22:46:43 UTC | 560 | IN | |
2024-07-04 22:46:43 UTC | 15824 | IN | |
2024-07-04 22:46:43 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
10 | 192.168.2.6 | 49731 | 40.113.110.67 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:46:55 UTC | 71 | OUT | |
2024-07-04 22:46:55 UTC | 249 | OUT | |
2024-07-04 22:46:55 UTC | 1064 | OUT | |
2024-07-04 22:46:55 UTC | 218 | OUT | |
2024-07-04 22:46:55 UTC | 14 | IN | |
2024-07-04 22:46:55 UTC | 58 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.6 | 49732 | 20.114.59.183 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:21 UTC | 306 | OUT | |
2024-07-04 22:47:21 UTC | 560 | IN | |
2024-07-04 22:47:21 UTC | 15824 | IN | |
2024-07-04 22:47:21 UTC | 14181 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
12 | 192.168.2.6 | 49733 | 40.113.110.67 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:26 UTC | 71 | OUT | |
2024-07-04 22:47:26 UTC | 249 | OUT | |
2024-07-04 22:47:26 UTC | 1064 | OUT | |
2024-07-04 22:47:26 UTC | 218 | OUT | |
2024-07-04 22:47:26 UTC | 14 | IN | |
2024-07-04 22:47:26 UTC | 58 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 18:46:21 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff684c40000 |
File size: | 3'242'272 bytes |
MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 18:46:25 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff684c40000 |
File size: | 3'242'272 bytes |
MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 18:46:27 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff684c40000 |
File size: | 3'242'272 bytes |
MD5 hash: | 5BBFA6CBDF4C254EB368D534F9E23C92 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |