Windows
Analysis Report
https://pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev/uint.html?schweissdoors
Overview
General Information
Detection
Score: | 64 |
Range: | 0 - 100 |
Whitelisted: | false |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
- chrome.exe (PID: 2640 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --st art-maximi zed "about :blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4) - chrome.exe (PID: 5468 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --mojo-pla tform-chan nel-handle =2544 --fi eld-trial- handle=236 0,i,653338 1634365207 2,37944994 9858235680 9,262144 - -disable-f eatures=Op timization GuideModel Downloadin g,Optimiza tionHints, Optimizati onHintsFet ching,Opti mizationTa rgetPredic tion /pref etch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- chrome.exe (PID: 6428 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://pub-1 b634168cd4 04e2d8bece 63d5ebb479 8.r2.dev/u int.html?s chweissdoo rs" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
- cleanup
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_BlockedWebSite | Yara detected BlockedWebSite | Joe Security |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_BlockedWebSite | Yara detected BlockedWebSite | Joe Security | ||
JoeSecurity_BlockedWebSite | Yara detected BlockedWebSite | Joe Security |
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: | ||
Source: | SlashNext: |
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: | ||
Source: | Avira URL Cloud: |
Phishing |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing | ||
100% | SlashNext | Credential Stealing type: Phishing & Social Engineering |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
100% | Avira URL Cloud | phishing | ||
100% | Avira URL Cloud | phishing | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev | 104.18.2.35 | true | false | unknown | |
www.google.com | 216.58.206.36 | true | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
| unknown | |
false |
| unknown | |
true | unknown | ||
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown | ||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
104.18.3.35 | unknown | United States | 13335 | CLOUDFLARENETUS | false | |
239.255.255.250 | unknown | Reserved | unknown | unknown | false | |
104.18.2.35 | pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev | United States | 13335 | CLOUDFLARENETUS | false | |
216.58.206.36 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.4 |
192.168.2.5 |
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1467902 |
Start date and time: | 2024-07-05 00:46:37 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 2m 54s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev/uint.html?schweissdoors |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 8 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal64.phis.win@16/9@6/6 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis (whitelisted): MpCmdRun.exe, SIHClient.exe, conhost.exe, svchost.exe
- Excluded IPs from analysis (whitelisted): 74.125.133.84, 142.250.181.238, 172.217.23.99, 34.104.35.123, 199.232.210.172, 192.229.221.95, 142.250.184.195
- Excluded domains from analysis (whitelisted): fs.microsoft.com, clients2.google.com, ocsp.digicert.com, accounts.google.com, edgedl.me.gvt1.com, slscr.update.microsoft.com, update.googleapis.com, ctldl.windowsupdate.com, clientservices.googleapis.com, clients.l.google.com, fe3cr.delivery.mp.microsoft.com
- Not all processes where analyzed, report is missing behavior information
- Report size getting too big, too many NtSetInformationFile calls found.
- Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
- VT rate limit hit for: https://pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev/uint.html?schweissdoors
Input | Output |
---|---|
URL: https://pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev/uint.html?schweissdoors Model: Perplexity: mixtral-8x7b-instruct | {"loginform": false,"urgency": false,"captcha": false,"reasons": ["The title of the webpage suggests that it is a suspected phishing site, which is a red flag.","The text on the webpage warns about potential phishing and encourages the user to ignore and proceed, which is a common tactic used in phishing attacks.","There is no login form or request for sensitive information on the webpage, which is unusual for a site that is asking for personal information.","There is no CAPTCHA or anti-robot detection mechanism on the webpage, which is a common security feature on legitimate sites.","The text on the webpage does not create a sense of urgency or interest, which is a tactic often used in phishing attacks to trick users into providing sensitive information."]} |
Title: Suspected phishing site | Cloudflare OCR: O Warning Suspected Phishing This website has been reported for potential phishing. Phishing is when a site attempts to steal sensitive information by falsely presenting as a safe source. Leam More Ignore & Proceed Cloudflare Ray 10: 89e2a850e87a8c6c Your IP: Click to reveal Performance & security by Cloudflare | |
URL: https://pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev/uint.html?schweissdoors Model: Perplexity: mixtral-8x7b-instruct | {"loginform": false,"urgency": false,"captcha": false,"reasons": ["The title of the webpage suggests that it is a suspected phishing site, which is a red flag.","The text on the webpage warns the user about potential phishing and encourages them to ignore and proceed, which may be an attempt to get the user to let their guard down.","The webpage does not contain a login form, CAPTCHA, or any text that creates a sense of urgency or interest, which may indicate that the phishing attempt is not very sophisticated."]} |
Title: Suspected phishing site | Cloudflare OCR: O Warning Suspected Phishing This website has been reported for potential phishing. Phishing is when a site attempts to steal sensitive information by falsely presenting as a safe source. Leam More Ignore & Proceed Cloudflare Ray ID: 89e2a850e87a8c6c Performance & security by Cloudflare Your 19:8.46.123.33 |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 452 |
Entropy (8bit): | 7.0936408308765495 |
Encrypted: | false |
SSDEEP: | 12:6v/7EljW8E6Cl2SYh8SZM4tf70FSDvMXDxJp6ScFChY9:U8hCl2SIdZBtAFSDUX/ozIhK |
MD5: | C33DE66281E933259772399D10A6AFE8 |
SHA1: | B9F9D500F8814381451011D4DCF59CD2D90AD94F |
SHA-256: | F1591A5221136C49438642155691AE6C68E25B7241F3D7EBE975B09A77662016 |
SHA-512: | 5834FB9D66F550E6CECFE484B7B6A14F3FCA795405DECE8E652BD69AD917B94B6BBDCDF7639161B9C07F0D33EABD3E79580446B5867219F72F4FC43FD43B98C3 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 4417 |
Entropy (8bit): | 5.087568210677306 |
Encrypted: | false |
SSDEEP: | 96:1j9jwIjYjUDK/D5DMF+BOisYmA2ZLimYrR49PaQxJbGD:1j9jhjYjIK/Vo+tszZOmYrO9ieJGD |
MD5: | C91BF19AE4FFE3216DA4ECE7F90D7F39 |
SHA1: | 9C38D73936A88F05FCC9091FB5E1FCE4EC2BB138 |
SHA-256: | 3AE777B29F8BECB642835BA81AD7384D1B0E3272028A9BA710B11C4B2DEF9677 |
SHA-512: | 7007C90EF426EFB2BAE3CFAC0ABAD90522560791A14F45FBC42B723385B6DAB99F6B10F0616D4C545BAECBB03C2311B85B178CC9D0FDD0B644FE52C1EFE8589F |
Malicious: | false |
Reputation: | low |
URL: | https://pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev/uint.html?schweissdoors |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 24051 |
Entropy (8bit): | 4.941039417164537 |
Encrypted: | false |
SSDEEP: | 192:VuR/6okgTQwq23gGM8lUR9YRGQ2BwoX6zp+1+nDT1FvxKSI7/UsV7MSE6XZ2dKzk:JwV+oUcoQJpdf1dxKSI7/Ue7ZX2qk |
MD5: | 5E8C69A459A691B5D1B9BE442332C87D |
SHA1: | F24DD1AD7C9080575D92A9A9A2C42620725EF836 |
SHA-256: | 84E3C77025ACE5AF143972B4A40FC834DCDFD4E449D4B36A57E62326F16B3091 |
SHA-512: | 6DB74B262D717916DE0B0B600EEAD2CC6A10E52A9E26D701FAE761FCBC931F35F251553669A92BE3B524F380F32E62AC6AD572BEA23C78965228CE9EFB92ED42 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev/cdn-cgi/styles/cf.errors.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 27150 |
Entropy (8bit): | 4.357340680151037 |
Encrypted: | false |
SSDEEP: | 384:6bamwIluB0sJQqCeSQup5szCUXAG0VVi82OgoKACZQQofNJXY3gW3:603Mp5If8WOmgW3 |
MD5: | 46DD133EE00DC1BAE5E4EEBA7B88432F |
SHA1: | 8AF86A4AC91CE48C062216FB94A6E1D57618A19B |
SHA-256: | 9EB52EE46C7AB5EA4CA0982415DA99FDED1B7D7354F75E50847BDAE6CB44EB66 |
SHA-512: | CB49F9E3812E2C262AF374E79BD8905CB508A45BF2C2D6AF62EED85AF43770872486A55E9425882FEDA9FB3A57A317A3C18BE1E286ADAF0C76BE7F1B0DFA8474 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 452 |
Entropy (8bit): | 7.0936408308765495 |
Encrypted: | false |
SSDEEP: | 12:6v/7EljW8E6Cl2SYh8SZM4tf70FSDvMXDxJp6ScFChY9:U8hCl2SIdZBtAFSDUX/ozIhK |
MD5: | C33DE66281E933259772399D10A6AFE8 |
SHA1: | B9F9D500F8814381451011D4DCF59CD2D90AD94F |
SHA-256: | F1591A5221136C49438642155691AE6C68E25B7241F3D7EBE975B09A77662016 |
SHA-512: | 5834FB9D66F550E6CECFE484B7B6A14F3FCA795405DECE8E652BD69AD917B94B6BBDCDF7639161B9C07F0D33EABD3E79580446B5867219F72F4FC43FD43B98C3 |
Malicious: | false |
Reputation: | low |
URL: | https://pub-1b634168cd404e2d8bece63d5ebb4798.r2.dev/cdn-cgi/images/icon-exclamation.png?1376755637 |
Preview: |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 5, 2024 00:47:20.499618053 CEST | 49678 | 443 | 192.168.2.4 | 104.46.162.224 |
Jul 5, 2024 00:47:22.077610970 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Jul 5, 2024 00:47:30.135898113 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.135951996 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.136023998 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.136219025 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.136230946 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.136296988 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.136569977 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.136581898 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.136703014 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.136710882 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.619299889 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.620892048 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.653218985 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.653235912 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.653345108 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.653352976 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.654261112 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.654315948 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.654766083 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.654824018 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.655386925 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.655441999 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.655688047 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.655764103 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.656162024 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.656168938 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.710187912 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.710187912 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.710199118 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.752779007 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.769922972 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.769963026 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.769988060 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.770019054 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.770029068 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.770071030 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.772886038 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.772968054 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.773019075 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.790143967 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.790497065 CEST | 49735 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.790515900 CEST | 443 | 49735 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.832547903 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.892271996 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.892333984 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.892373085 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.892389059 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.892405033 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.892446995 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.892452955 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.892678022 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.892715931 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.892734051 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.892740011 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.892790079 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.893554926 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.894433022 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.894486904 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.894493103 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.896707058 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.896773100 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.896778107 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.938184977 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.984987974 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.985063076 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.985099077 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.985120058 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.985129118 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.985183954 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.985184908 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.985198021 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.985246897 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.985251904 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.985275030 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.985325098 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.986419916 CEST | 49736 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.986429930 CEST | 443 | 49736 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.992511034 CEST | 49738 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.992556095 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:30.992624998 CEST | 49738 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.992845058 CEST | 49738 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:30.992858887 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.481633902 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.481918097 CEST | 49738 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:31.481954098 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.482255936 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.482589006 CEST | 49738 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:31.482640028 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.482733011 CEST | 49738 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:31.524497032 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.604036093 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.604091883 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.604149103 CEST | 49738 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:31.604944944 CEST | 49738 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:31.604960918 CEST | 443 | 49738 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.643724918 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:31.643748045 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.643825054 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:31.644124985 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:31.644138098 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.662386894 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:31.662434101 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.662508965 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:31.662687063 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:31.662703991 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:31.686326981 CEST | 49675 | 443 | 192.168.2.4 | 173.222.162.32 |
Jul 5, 2024 00:47:32.113754988 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:32.113775015 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:32.113847971 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:32.114013910 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:32.114027977 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:32.131827116 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.136042118 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.136058092 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.136348963 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.136801004 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.136864901 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.137160063 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.160501957 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.160794020 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:32.160818100 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.164475918 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.164566040 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:32.165247917 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:32.165366888 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:32.165431976 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.180506945 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.217094898 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:32.217118025 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.264760971 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:32.293375015 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.293538094 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.293601990 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:32.340837955 CEST | 49741 | 443 | 192.168.2.4 | 104.18.3.35 |
Jul 5, 2024 00:47:32.340871096 CEST | 443 | 49741 | 104.18.3.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.503360033 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.503418922 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.503449917 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.503470898 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.503504038 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.503536940 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.503551960 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.503560066 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.503597021 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.503599882 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.503607988 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.503660917 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.503667116 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.504427910 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.504462957 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.504467964 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.504473925 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.504508972 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.504518032 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.545219898 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.545227051 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.592092037 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.594809055 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.594961882 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.594990015 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.595004082 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.595010042 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.595050097 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.595298052 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.595385075 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.595422983 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.595427990 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.595447063 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.595489025 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.676970005 CEST | 49740 | 443 | 192.168.2.4 | 104.18.2.35 |
Jul 5, 2024 00:47:32.676990032 CEST | 443 | 49740 | 104.18.2.35 | 192.168.2.4 |
Jul 5, 2024 00:47:32.794074059 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:32.795315027 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:32.795336008 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:32.796344042 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:32.796397924 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:33.199306011 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:33.199429035 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:33.199496031 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:33.201598883 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:33.201634884 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:33.412369967 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:33.412537098 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:33.467077017 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:33.467091084 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:33.513948917 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:33.857280016 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:33.857359886 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:33.860522032 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:33.860534906 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:33.860780954 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:33.904582024 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:33.915066957 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:33.956506014 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.135333061 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.135390043 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.135540009 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:34.135698080 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:34.135716915 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.135732889 CEST | 49744 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:34.135740995 CEST | 443 | 49744 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.177314043 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:34.177341938 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.177622080 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:34.178200960 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:34.178214073 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.834681988 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.834745884 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:34.891160011 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:34.891179085 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.891424894 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:34.894299030 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:34.936508894 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:35.129971981 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:35.130028009 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:35.130076885 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:35.132911921 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:35.132929087 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:35.132961035 CEST | 49745 | 443 | 192.168.2.4 | 184.28.90.27 |
Jul 5, 2024 00:47:35.132967949 CEST | 443 | 49745 | 184.28.90.27 | 192.168.2.4 |
Jul 5, 2024 00:47:42.807565928 CEST | 49672 | 443 | 192.168.2.4 | 173.222.162.32 |
Jul 5, 2024 00:47:42.807602882 CEST | 443 | 49672 | 173.222.162.32 | 192.168.2.4 |
Jul 5, 2024 00:47:42.904669046 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:42.904738903 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:42.904808998 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:42.952930927 CEST | 49742 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:47:42.952955961 CEST | 443 | 49742 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:47:43.917562008 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:43.917603016 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:43.917680025 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:43.918771029 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:43.918783903 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:44.870796919 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:44.870938063 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:44.874114990 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:44.874134064 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:44.874363899 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:44.920490026 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:45.576316118 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:45.620524883 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853127003 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853158951 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853164911 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853173971 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853198051 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853225946 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:45.853251934 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853264093 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:45.853297949 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:45.853552103 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853611946 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:45.853621006 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853779078 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:45.853832960 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:46.346899986 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:46.346942902 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:47:46.346956968 CEST | 49746 | 443 | 192.168.2.4 | 40.68.123.157 |
Jul 5, 2024 00:47:46.346963882 CEST | 443 | 49746 | 40.68.123.157 | 192.168.2.4 |
Jul 5, 2024 00:48:22.692074060 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:22.692106962 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:22.696640015 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:22.698497057 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:22.698512077 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.327615023 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.327814102 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.333327055 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.333337069 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.333575010 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.353916883 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.400501013 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560126066 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560252905 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560261965 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560271025 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560314894 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560337067 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.560357094 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560391903 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.560920954 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560956955 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560957909 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.560976982 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.560986042 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.561022043 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.561022043 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.561028957 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.569001913 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.579674959 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.579674959 CEST | 49752 | 443 | 192.168.2.4 | 20.12.23.50 |
Jul 5, 2024 00:48:23.579700947 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:23.579705954 CEST | 443 | 49752 | 20.12.23.50 | 192.168.2.4 |
Jul 5, 2024 00:48:32.322042942 CEST | 49754 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:48:32.322107077 CEST | 443 | 49754 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:48:32.322196960 CEST | 49754 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:48:32.322427034 CEST | 49754 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:48:32.322451115 CEST | 443 | 49754 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:48:32.966960907 CEST | 443 | 49754 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:48:32.967365980 CEST | 49754 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:48:32.967381954 CEST | 443 | 49754 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:48:32.967730045 CEST | 443 | 49754 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:48:32.968122959 CEST | 49754 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:48:32.968189955 CEST | 443 | 49754 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:48:33.014450073 CEST | 49754 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:48:39.435928106 CEST | 49723 | 80 | 192.168.2.4 | 199.232.214.172 |
Jul 5, 2024 00:48:39.436027050 CEST | 49724 | 80 | 192.168.2.4 | 199.232.214.172 |
Jul 5, 2024 00:48:39.441061974 CEST | 80 | 49723 | 199.232.214.172 | 192.168.2.4 |
Jul 5, 2024 00:48:39.441200972 CEST | 49723 | 80 | 192.168.2.4 | 199.232.214.172 |
Jul 5, 2024 00:48:39.441673040 CEST | 80 | 49724 | 199.232.214.172 | 192.168.2.4 |
Jul 5, 2024 00:48:39.441989899 CEST | 49724 | 80 | 192.168.2.4 | 199.232.214.172 |
Jul 5, 2024 00:48:42.870066881 CEST | 443 | 49754 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:48:42.870153904 CEST | 443 | 49754 | 216.58.206.36 | 192.168.2.4 |
Jul 5, 2024 00:48:42.870206118 CEST | 49754 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:48:42.956391096 CEST | 49754 | 443 | 192.168.2.4 | 216.58.206.36 |
Jul 5, 2024 00:48:42.956413031 CEST | 443 | 49754 | 216.58.206.36 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Jul 5, 2024 00:47:28.737848997 CEST | 53 | 58020 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:28.752199888 CEST | 53 | 54488 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:29.956952095 CEST | 53 | 64758 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:30.121800900 CEST | 57415 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:47:30.122101068 CEST | 58338 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:47:30.135272980 CEST | 53 | 57415 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:30.135284901 CEST | 53 | 58338 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:31.650672913 CEST | 49279 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:47:31.650827885 CEST | 57946 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:47:31.661606073 CEST | 53 | 49279 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:31.662035942 CEST | 53 | 57946 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:32.106067896 CEST | 61017 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:47:32.106216908 CEST | 58923 | 53 | 192.168.2.4 | 1.1.1.1 |
Jul 5, 2024 00:47:32.112761974 CEST | 53 | 58923 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:32.112772942 CEST | 53 | 61017 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:46.740597010 CEST | 53 | 52645 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:47:51.083923101 CEST | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Jul 5, 2024 00:48:05.524450064 CEST | 53 | 62927 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:48:27.810937881 CEST | 53 | 62018 | 1.1.1.1 | 192.168.2.4 |
Jul 5, 2024 00:48:27.872153044 CEST | 53 | 62147 | 1.1.1.1 | 192.168.2.4 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Jul 5, 2024 00:47:30.121800900 CEST | 192.168.2.4 | 1.1.1.1 | 0x186a | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:47:30.122101068 CEST | 192.168.2.4 | 1.1.1.1 | 0xb89 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:47:31.650672913 CEST | 192.168.2.4 | 1.1.1.1 | 0x6438 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:47:31.650827885 CEST | 192.168.2.4 | 1.1.1.1 | 0x7947 | Standard query (0) | 65 | IN (0x0001) | false | |
Jul 5, 2024 00:47:32.106067896 CEST | 192.168.2.4 | 1.1.1.1 | 0xf2cd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Jul 5, 2024 00:47:32.106216908 CEST | 192.168.2.4 | 1.1.1.1 | 0xcf25 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Jul 5, 2024 00:47:30.135272980 CEST | 1.1.1.1 | 192.168.2.4 | 0x186a | No error (0) | 104.18.2.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:47:30.135272980 CEST | 1.1.1.1 | 192.168.2.4 | 0x186a | No error (0) | 104.18.3.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:47:31.661606073 CEST | 1.1.1.1 | 192.168.2.4 | 0x6438 | No error (0) | 104.18.3.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:47:31.661606073 CEST | 1.1.1.1 | 192.168.2.4 | 0x6438 | No error (0) | 104.18.2.35 | A (IP address) | IN (0x0001) | false | ||
Jul 5, 2024 00:47:32.112761974 CEST | 1.1.1.1 | 192.168.2.4 | 0xcf25 | No error (0) | 65 | IN (0x0001) | false | |||
Jul 5, 2024 00:47:32.112772942 CEST | 1.1.1.1 | 192.168.2.4 | 0xf2cd | No error (0) | 216.58.206.36 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49735 | 104.18.2.35 | 443 | 5468 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:30 UTC | 709 | OUT | |
2024-07-04 22:47:30 UTC | 222 | IN | |
2024-07-04 22:47:30 UTC | 1147 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 540 | IN | |
2024-07-04 22:47:30 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49736 | 104.18.2.35 | 443 | 5468 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:30 UTC | 636 | OUT | |
2024-07-04 22:47:30 UTC | 411 | IN | |
2024-07-04 22:47:30 UTC | 958 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN | |
2024-07-04 22:47:30 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49738 | 104.18.2.35 | 443 | 5468 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:31 UTC | 705 | OUT | |
2024-07-04 22:47:31 UTC | 409 | IN | |
2024-07-04 22:47:31 UTC | 452 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49740 | 104.18.2.35 | 443 | 5468 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:32 UTC | 665 | OUT | |
2024-07-04 22:47:32 UTC | 180 | IN | |
2024-07-04 22:47:32 UTC | 1189 | IN | |
2024-07-04 22:47:32 UTC | 1369 | IN | |
2024-07-04 22:47:32 UTC | 1369 | IN | |
2024-07-04 22:47:32 UTC | 1369 | IN | |
2024-07-04 22:47:32 UTC | 1369 | IN | |
2024-07-04 22:47:32 UTC | 1369 | IN | |
2024-07-04 22:47:32 UTC | 1369 | IN | |
2024-07-04 22:47:32 UTC | 1369 | IN | |
2024-07-04 22:47:32 UTC | 1369 | IN | |
2024-07-04 22:47:32 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49741 | 104.18.3.35 | 443 | 5468 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:32 UTC | 413 | OUT | |
2024-07-04 22:47:32 UTC | 409 | IN | |
2024-07-04 22:47:32 UTC | 452 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49744 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:33 UTC | 161 | OUT | |
2024-07-04 22:47:34 UTC | 466 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49745 | 184.28.90.27 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:34 UTC | 239 | OUT | |
2024-07-04 22:47:35 UTC | 514 | IN | |
2024-07-04 22:47:35 UTC | 55 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.4 | 49746 | 40.68.123.157 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:47:45 UTC | 306 | OUT | |
2024-07-04 22:47:45 UTC | 560 | IN | |
2024-07-04 22:47:45 UTC | 15824 | IN | |
2024-07-04 22:47:45 UTC | 8666 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.4 | 49752 | 20.12.23.50 | 443 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2024-07-04 22:48:23 UTC | 306 | OUT | |
2024-07-04 22:48:23 UTC | 560 | IN | |
2024-07-04 22:48:23 UTC | 15824 | IN | |
2024-07-04 22:48:23 UTC | 14181 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 18:47:24 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 18:47:26 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 18:47:29 |
Start date: | 04/07/2024 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff76e190000 |
File size: | 3'242'272 bytes |
MD5 hash: | 45DE480806D1B5D462A7DDE4DCEFC4E4 |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |