Windows
Analysis Report
http://s.team-fg.com/p/jjnh-trfg/frmkhpcw/
Overview
Detection
Score: | 48 |
Range: | 0 - 100 |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
chrome.exe (PID: 3948 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --s tart-maxim ized "abou t:blank" MD5: E81F54E6C1129887AEA47E7D092680BF) chrome.exe (PID: 4116 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --no-pre-r ead-main-d ll --field -trial-han dle=2012,i ,112474739 4913086085 6,15678733 3791326409 68,262144 --disable- features=O ptimizatio nGuideMode lDownloadi ng,Optimiz ationHints ,Optimizat ionHintsFe tching,Opt imizationT argetPredi ction --va riations-s eed-versio n --mojo-p latform-ch annel-hand le=2024 /p refetch:3 MD5: E81F54E6C1129887AEA47E7D092680BF)
chrome.exe (PID: 4360 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt p://s.team -fg.com/p/ jjnh-trfg/ frmkhpcw/" MD5: E81F54E6C1129887AEA47E7D092680BF)
- cleanup
- • AV Detection
- • Networking
- • System Summary
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: |
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Source: | File deleted: | Jump to behavior |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 2 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 1 File Deletion | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
s.team-fg.com | 185.208.156.194 | true | false | unknown | |
beacons-handoff.gcp.gvt2.com | 142.250.180.67 | true | false | high | |
www.google.com | 142.250.186.164 | true | false | high | |
beacons.gvt2.com | 142.251.143.35 | true | false | high | |
beacons6.gvt2.com | 142.250.185.67 | true | false | high | |
beacons.gcp.gvt2.com | unknown | unknown | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
true | unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
185.208.156.194 | s.team-fg.com | Switzerland | 42624 | SIMPLECARRIERCH | false | |
142.250.186.164 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.4 |
192.168.2.6 |
192.168.2.13 |
192.168.2.23 |
Joe Sandbox version: | 42.0.0 Malachite |
Analysis ID: | 1637970 |
Start date and time: | 2025-03-14 01:41:58 +01:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 2m 59s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | http://s.team-fg.com/p/jjnh-trfg/frmkhpcw/ |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 17 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal48.win@30/4@21/6 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis
(whitelisted): MpCmdRun.exe, d llhost.exe, SIHClient.exe, Sgr mBroker.exe, conhost.exe, svch ost.exe, TextInputHost.exe - Excluded IPs from analysis (wh
itelisted): 142.250.185.227, 1 42.250.186.174, 142.250.185.14 2, 74.125.206.84, 199.232.214. 172, 142.250.186.163, 142.250. 186.67, 142.250.185.206, 74.12 5.133.84, 34.104.35.123 - Excluded domains from analysis
(whitelisted): fs.microsoft.c om, clients2.google.com, edged l.me.gvt1.com, accounts.google .com, slscr.update.microsoft.c om, update.googleapis.com, ctl dl.windowsupdate.com, clientse rvices.googleapis.com, clients .l.google.com, fe3cr.delivery. mp.microsoft.com - Not all processes where analyz
ed, report is missing behavior information - Report size getting too big, t
oo many NtOpenFile calls found . - VT rate limit hit for: http:/
/s.team-fg.com/p/jjnh-trfg/frm khpcw/
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1765 |
Entropy (8bit): | 6.016932513650603 |
Encrypted: | false |
SSDEEP: | 48:p/hKAGj0FnAp7XgNGIaku9E5tPJXaWqkbszesM:R5Gj0FAlsaBmfPsRD3M |
MD5: | 6D1D175F88B64546105E3E7C31D1129A |
SHA1: | 75A1B56F55BB62B05365A0FDBFC7941DE77CBFAF |
SHA-256: | A0BC246E8E160A9BB32FA60F4E7A04D148A17125F426509466031E07731FDF81 |
SHA-512: | 5C80908331E30C7EAD67F7F6C5AB064B07626FD9C58925A0D2124D66B25C5AE2F218BDACFB68AFCB332E88EB297CFB7E0A7A9E5E1E54C9B7A510FEF095F9B54F |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 66 |
Entropy (8bit): | 3.9555383032528804 |
Encrypted: | false |
SSDEEP: | 3:SWjBMq9+jigBeQrEj3vWXyDt:SW93KBeQIj+XQ |
MD5: | 684DA5CCA8ADC8CA59CBE5B082CFE0B5 |
SHA1: | B8784E02DB81C5F846A7848455A2C6629A88BD64 |
SHA-256: | F48C9D93CC216AF13BBFAD15DD5E6D1679CD35D318E664029DDF61EFC6E51A5D |
SHA-512: | EAEB9B8C51AEF3CC2749F4E6B2C2B58334E53C0BA701DB94F2896C9557B949D392CF4F44B771821C63DD238FAC2B2F869833BED2DFF830AFC4C8743683A75183 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 76 |
Entropy (8bit): | 4.169145448714876 |
Encrypted: | false |
SSDEEP: | 3:rR6TAulhFphifFY8Wypv/KS1f:F6VlMQyBSS1f |
MD5: | 4AAA0ED8099ECC1DA778A9BC39393808 |
SHA1: | 0E4A733A5AF337F101CFA6BEA5EBC153380F7B05 |
SHA-256: | 20B91160E2611D3159AD82857323FEBC906457756678AB73F305C3A1E399D18D |
SHA-512: | DFA942C35E1E5F62DD8840C97693CDBFD6D71A1FD2F42E26CB75B98BB6A1818395ECDF552D46F07DFF1E9C74F1493A39E05B14E3409963EFF1ADA88897152879 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2816 |
Entropy (8bit): | 6.108955364911366 |
Encrypted: | false |
SSDEEP: | 48:jkbh6AW2Bfc3osI6Hc3+XgU+EVeY55J4gXM/QDH4yq2dxckdfmkM:jkbhM2a3pntgQVb8Ylq2di |
MD5: | E2F792C9E2DD86F39E8286B2EAD2FC70 |
SHA1: | 8A32867614D2A23E473ED642056DED8E566687F9 |
SHA-256: | AC354A4723AAA4F06BEC385DDDE4A4D0983AD51456F52B31A8068EC97D5B5EA7 |
SHA-512: | 6A7AF0CA1EFA65A89A9CA3B8DF0D2E24F21D91673C60CDFEEB02D33647442B01D535497249542F40E66E0D2DD3E9F8ED1F4A201FD97138D07A2B71366737E580 |
Malicious: | false |
Reputation: | low |
Preview: |
Download Network PCAP: filtered – full
- Total Packets: 223
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 14, 2025 01:42:50.679930925 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 01:42:50.991930962 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 01:42:51.601330042 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 01:42:52.804465055 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 01:42:55.211740017 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 01:42:58.993451118 CET | 49709 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:58.993510008 CET | 443 | 49709 | 23.199.214.10 | 192.168.2.6 |
Mar 14, 2025 01:42:58.993581057 CET | 49709 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:58.996330023 CET | 49709 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:58.996344090 CET | 443 | 49709 | 23.199.214.10 | 192.168.2.6 |
Mar 14, 2025 01:42:58.997051954 CET | 443 | 49709 | 23.199.214.10 | 192.168.2.6 |
Mar 14, 2025 01:42:58.999334097 CET | 49710 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:42:58.999377966 CET | 443 | 49710 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:42:58.999579906 CET | 49710 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:42:58.999905109 CET | 49710 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:42:58.999921083 CET | 443 | 49710 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:42:59.000355959 CET | 49711 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:59.000387907 CET | 443 | 49711 | 23.199.214.10 | 192.168.2.6 |
Mar 14, 2025 01:42:59.000436068 CET | 49711 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:59.001054049 CET | 49711 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:59.001066923 CET | 443 | 49711 | 23.199.214.10 | 192.168.2.6 |
Mar 14, 2025 01:42:59.001677990 CET | 443 | 49711 | 23.199.214.10 | 192.168.2.6 |
Mar 14, 2025 01:42:59.002773046 CET | 49712 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:59.002794027 CET | 443 | 49712 | 23.199.214.10 | 192.168.2.6 |
Mar 14, 2025 01:42:59.002861977 CET | 49712 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:59.003696918 CET | 49712 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:59.003731012 CET | 443 | 49712 | 23.199.214.10 | 192.168.2.6 |
Mar 14, 2025 01:42:59.003773928 CET | 49712 | 443 | 192.168.2.6 | 23.199.214.10 |
Mar 14, 2025 01:42:59.197338104 CET | 443 | 49710 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:42:59.198260069 CET | 49713 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:42:59.198299885 CET | 443 | 49713 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:42:59.198831081 CET | 49713 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:42:59.199290991 CET | 49713 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:42:59.199311018 CET | 443 | 49713 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:42:59.267832041 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 01:42:59.397495985 CET | 443 | 49713 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:42:59.570935011 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 01:42:59.980281115 CET | 49714 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:42:59.980460882 CET | 49715 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:42:59.984944105 CET | 80 | 49714 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:42:59.985011101 CET | 49714 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:42:59.985061884 CET | 80 | 49715 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:42:59.985446930 CET | 49715 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.001104116 CET | 49716 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.001137018 CET | 443 | 49716 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.001318932 CET | 49716 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.001621962 CET | 49716 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.001636982 CET | 443 | 49716 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.016138077 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 01:43:00.183371067 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 01:43:00.201056957 CET | 443 | 49716 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.201617002 CET | 49717 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.201658010 CET | 443 | 49717 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.201733112 CET | 49717 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.202219009 CET | 49717 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.202240944 CET | 443 | 49717 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.401848078 CET | 443 | 49717 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.405371904 CET | 49714 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.410060883 CET | 80 | 49714 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.712622881 CET | 80 | 49714 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.715559006 CET | 49718 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.715616941 CET | 443 | 49718 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.715691090 CET | 49718 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.716006994 CET | 49718 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.716022015 CET | 443 | 49718 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.761904001 CET | 49714 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.913253069 CET | 443 | 49718 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.913700104 CET | 49720 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.913748026 CET | 443 | 49720 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:00.913815022 CET | 49720 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.914083004 CET | 49720 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:00.914103031 CET | 443 | 49720 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:01.113548994 CET | 443 | 49720 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:01.388715982 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 01:43:02.173340082 CET | 49723 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.173388958 CET | 443 | 49723 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.173453093 CET | 49723 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.173666000 CET | 49724 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.173706055 CET | 443 | 49724 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.173758984 CET | 49724 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.174283981 CET | 49724 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.174298048 CET | 443 | 49724 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.174611092 CET | 49723 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.174627066 CET | 443 | 49723 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.373115063 CET | 443 | 49723 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.373589993 CET | 443 | 49724 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.374248981 CET | 49725 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.374291897 CET | 443 | 49725 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.374355078 CET | 49725 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.374562979 CET | 49726 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.374593973 CET | 443 | 49726 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.374650002 CET | 49726 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.374905109 CET | 49725 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.374919891 CET | 443 | 49725 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.375124931 CET | 49726 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:02.375137091 CET | 443 | 49726 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.573085070 CET | 443 | 49726 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:02.573111057 CET | 443 | 49725 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:03.452028990 CET | 49727 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:03.452100039 CET | 443 | 49727 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:03.452218056 CET | 49727 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:03.452639103 CET | 49727 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:03.452661991 CET | 443 | 49727 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:03.653400898 CET | 443 | 49727 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:03.654103994 CET | 49728 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:03.654165983 CET | 443 | 49728 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:03.654243946 CET | 49728 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:03.654707909 CET | 49728 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:03.654725075 CET | 443 | 49728 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:03.789549112 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 01:43:03.853241920 CET | 443 | 49728 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:07.616864920 CET | 49730 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.616946936 CET | 443 | 49730 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.617062092 CET | 49730 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.617137909 CET | 49731 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.617197037 CET | 443 | 49731 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.617647886 CET | 49730 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.617669106 CET | 443 | 49730 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.617706060 CET | 49731 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.617966890 CET | 49731 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.617984056 CET | 443 | 49731 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.817318916 CET | 443 | 49731 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.817564011 CET | 443 | 49730 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.818186998 CET | 49733 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.818222046 CET | 443 | 49733 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.818294048 CET | 49733 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.818599939 CET | 49734 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.818646908 CET | 443 | 49734 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.818707943 CET | 49734 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.818995953 CET | 49733 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.819010019 CET | 443 | 49733 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.819247961 CET | 49734 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:07.819264889 CET | 443 | 49734 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:07.839266062 CET | 49735 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.839334965 CET | 443 | 49735 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.839436054 CET | 49735 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.840779066 CET | 49735 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.840802908 CET | 443 | 49735 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.842503071 CET | 443 | 49735 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.847831964 CET | 49736 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.847872972 CET | 443 | 49736 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.847942114 CET | 49736 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.848330975 CET | 49736 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.848345041 CET | 443 | 49736 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.849898100 CET | 443 | 49736 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.904643059 CET | 49737 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.904716015 CET | 443 | 49737 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.904819965 CET | 49737 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.905273914 CET | 49737 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.905291080 CET | 443 | 49737 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.905949116 CET | 443 | 49737 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.926227093 CET | 49738 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.926285028 CET | 443 | 49738 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.926395893 CET | 49738 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.926850080 CET | 49738 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.926867962 CET | 443 | 49738 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.927432060 CET | 443 | 49738 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.952673912 CET | 49739 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.952724934 CET | 443 | 49739 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.952956915 CET | 49739 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.953583002 CET | 49739 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.953594923 CET | 443 | 49739 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.954294920 CET | 443 | 49739 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.971250057 CET | 49740 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.971307993 CET | 443 | 49740 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.971410990 CET | 49740 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.971784115 CET | 49740 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:07.971800089 CET | 443 | 49740 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:07.972384930 CET | 443 | 49740 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:08.017601967 CET | 443 | 49733 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:08.018496990 CET | 443 | 49734 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:08.037996054 CET | 49741 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:08.038073063 CET | 443 | 49741 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:08.038172960 CET | 49741 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:08.038491964 CET | 49741 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:08.038512945 CET | 443 | 49741 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:08.039279938 CET | 443 | 49741 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:08.066335917 CET | 49742 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:08.066385031 CET | 443 | 49742 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:08.066504002 CET | 49742 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:08.066936970 CET | 49742 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:08.066953897 CET | 443 | 49742 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:08.067672968 CET | 443 | 49742 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:08.602634907 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 01:43:09.617427111 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 01:43:15.482119083 CET | 49745 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.482177973 CET | 443 | 49745 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.482259989 CET | 49745 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.482494116 CET | 49746 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.482542992 CET | 443 | 49746 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.482593060 CET | 49746 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.483012915 CET | 49745 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.483028889 CET | 443 | 49745 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.483367920 CET | 49746 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.483385086 CET | 443 | 49746 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.681324959 CET | 443 | 49745 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.682003975 CET | 443 | 49746 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.682046890 CET | 49747 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.682112932 CET | 443 | 49747 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.682197094 CET | 49747 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.682400942 CET | 49748 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.682441950 CET | 443 | 49748 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.682488918 CET | 49748 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.682780981 CET | 49747 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.682797909 CET | 443 | 49747 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.683060884 CET | 49748 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:15.683079958 CET | 443 | 49748 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.881664991 CET | 443 | 49748 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:15.881983995 CET | 443 | 49747 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:18.211574078 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 01:43:27.602533102 CET | 49751 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.602571964 CET | 443 | 49751 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:27.602663040 CET | 49751 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.602761984 CET | 49752 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.602816105 CET | 443 | 49752 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:27.602880001 CET | 49752 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.603072882 CET | 49751 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.603085041 CET | 443 | 49751 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:27.603396893 CET | 49752 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.603410006 CET | 443 | 49752 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:27.801542997 CET | 443 | 49752 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:27.802249908 CET | 49753 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.802298069 CET | 443 | 49753 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:27.802392960 CET | 49753 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.802704096 CET | 49753 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.802719116 CET | 443 | 49753 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:27.809298038 CET | 443 | 49751 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:27.809766054 CET | 49754 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.809808969 CET | 443 | 49754 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:27.809885979 CET | 49754 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.810153961 CET | 49754 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:27.810168028 CET | 443 | 49754 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:28.001111031 CET | 443 | 49753 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:28.008980989 CET | 443 | 49754 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:39.069900990 CET | 80 | 49683 | 84.201.210.23 | 192.168.2.6 |
Mar 14, 2025 01:43:39.070151091 CET | 49683 | 80 | 192.168.2.6 | 84.201.210.23 |
Mar 14, 2025 01:43:39.070259094 CET | 49683 | 80 | 192.168.2.6 | 84.201.210.23 |
Mar 14, 2025 01:43:39.074867010 CET | 80 | 49683 | 84.201.210.23 | 192.168.2.6 |
Mar 14, 2025 01:43:41.227705956 CET | 80 | 49687 | 84.201.210.23 | 192.168.2.6 |
Mar 14, 2025 01:43:41.227969885 CET | 49687 | 80 | 192.168.2.6 | 84.201.210.23 |
Mar 14, 2025 01:43:41.227969885 CET | 49687 | 80 | 192.168.2.6 | 84.201.210.23 |
Mar 14, 2025 01:43:41.232772112 CET | 80 | 49687 | 84.201.210.23 | 192.168.2.6 |
Mar 14, 2025 01:43:41.305269957 CET | 49685 | 80 | 192.168.2.6 | 142.250.184.227 |
Mar 14, 2025 01:43:41.310209990 CET | 80 | 49685 | 142.250.184.227 | 192.168.2.6 |
Mar 14, 2025 01:43:41.310283899 CET | 49685 | 80 | 192.168.2.6 | 142.250.184.227 |
Mar 14, 2025 01:43:41.494565964 CET | 80 | 49688 | 84.201.210.23 | 192.168.2.6 |
Mar 14, 2025 01:43:41.494860888 CET | 49688 | 80 | 192.168.2.6 | 84.201.210.23 |
Mar 14, 2025 01:43:42.667670965 CET | 49686 | 443 | 192.168.2.6 | 23.15.178.234 |
Mar 14, 2025 01:43:42.668318033 CET | 49688 | 80 | 192.168.2.6 | 84.201.210.23 |
Mar 14, 2025 01:43:42.668380976 CET | 49689 | 80 | 192.168.2.6 | 2.23.77.188 |
Mar 14, 2025 01:43:44.419266939 CET | 49758 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.419321060 CET | 443 | 49758 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.419411898 CET | 49758 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.419794083 CET | 49758 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.419804096 CET | 443 | 49758 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.420448065 CET | 443 | 49758 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.423882008 CET | 49759 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.423933983 CET | 443 | 49759 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.424009085 CET | 49759 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.425082922 CET | 49759 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.425096989 CET | 443 | 49759 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.425565958 CET | 443 | 49759 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.450000048 CET | 49760 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.450010061 CET | 443 | 49760 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.450078964 CET | 49760 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.450303078 CET | 49760 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.450313091 CET | 443 | 49760 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.450705051 CET | 443 | 49760 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.452094078 CET | 49761 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.452128887 CET | 443 | 49761 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.452214003 CET | 49761 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.452406883 CET | 49761 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.452440977 CET | 443 | 49761 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.452816963 CET | 443 | 49761 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.501802921 CET | 49762 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.501904964 CET | 443 | 49762 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.501985073 CET | 49762 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.502293110 CET | 49762 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.502320051 CET | 443 | 49762 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.502863884 CET | 443 | 49762 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.505887032 CET | 49763 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.505929947 CET | 443 | 49763 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.505990982 CET | 49763 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.506283998 CET | 49763 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.506297112 CET | 443 | 49763 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.506694078 CET | 443 | 49763 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.542231083 CET | 49764 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.542244911 CET | 443 | 49764 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.542325020 CET | 49764 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.542625904 CET | 49764 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.542634964 CET | 443 | 49764 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.543075085 CET | 443 | 49764 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.560728073 CET | 49765 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.560766935 CET | 443 | 49765 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.560828924 CET | 49765 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.561089039 CET | 49765 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 01:43:44.561095953 CET | 443 | 49765 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.561454058 CET | 443 | 49765 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 01:43:44.992482901 CET | 49715 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:44.997245073 CET | 80 | 49715 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:45.726958990 CET | 49714 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:45.731699944 CET | 80 | 49714 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:57.031552076 CET | 55599 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:43:57.036339998 CET | 53 | 55599 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:57.036479950 CET | 55599 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:43:57.041285992 CET | 53 | 55599 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:57.490672112 CET | 55599 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:43:57.495590925 CET | 53 | 55599 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:57.495768070 CET | 55599 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:43:58.034843922 CET | 55601 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.034893990 CET | 443 | 55601 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.034967899 CET | 55601 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.035121918 CET | 55602 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.035173893 CET | 443 | 55602 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.035218000 CET | 55602 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.035543919 CET | 55601 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.035557032 CET | 443 | 55601 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.035818100 CET | 55602 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.035830975 CET | 443 | 55602 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.232898951 CET | 443 | 55601 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.233705997 CET | 443 | 55602 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.234026909 CET | 55603 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.234060049 CET | 443 | 55603 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.234118938 CET | 55603 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.234673977 CET | 55604 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.234704018 CET | 443 | 55604 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.234750986 CET | 55604 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.235225916 CET | 55603 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.235240936 CET | 443 | 55603 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.235905886 CET | 55604 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:43:58.235920906 CET | 443 | 55604 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.433878899 CET | 443 | 55604 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:58.433908939 CET | 443 | 55603 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:43:59.025584936 CET | 55605 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:59.025619030 CET | 443 | 55605 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:59.025696039 CET | 55605 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:59.026081085 CET | 55605 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:59.026092052 CET | 443 | 55605 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:59.225649118 CET | 443 | 55605 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:59.228854895 CET | 55606 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:59.228909016 CET | 443 | 55606 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:59.228971004 CET | 55606 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:59.229990005 CET | 55606 | 443 | 192.168.2.6 | 142.250.186.164 |
Mar 14, 2025 01:43:59.230005980 CET | 443 | 55606 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:43:59.429459095 CET | 443 | 55606 | 142.250.186.164 | 192.168.2.6 |
Mar 14, 2025 01:44:00.637892962 CET | 80 | 49715 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:00.637996912 CET | 49715 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:01.622075081 CET | 49715 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:01.626986027 CET | 80 | 49715 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:05.858417988 CET | 80 | 49714 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:05.858499050 CET | 49714 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:07.620290995 CET | 49714 | 80 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:07.625052929 CET | 80 | 49714 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.563992977 CET | 55609 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.564043999 CET | 443 | 55609 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.564127922 CET | 55609 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.564210892 CET | 55610 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.564241886 CET | 443 | 55610 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.564301968 CET | 55610 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.564547062 CET | 55609 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.564564943 CET | 443 | 55609 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.564822912 CET | 55610 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.564838886 CET | 443 | 55610 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.765582085 CET | 443 | 55610 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.766355991 CET | 55611 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.766407013 CET | 443 | 55611 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.766499043 CET | 443 | 55609 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.766510010 CET | 55611 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.766953945 CET | 55611 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.766972065 CET | 443 | 55611 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.767158985 CET | 55612 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.767210960 CET | 443 | 55612 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.767316103 CET | 55612 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.767976999 CET | 55612 | 443 | 192.168.2.6 | 185.208.156.194 |
Mar 14, 2025 01:44:08.767999887 CET | 443 | 55612 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.965681076 CET | 443 | 55611 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:08.965948105 CET | 443 | 55612 | 185.208.156.194 | 192.168.2.6 |
Mar 14, 2025 01:44:09.537386894 CET | 443 | 49681 | 2.23.227.215 | 192.168.2.6 |
Mar 14, 2025 01:44:09.537503004 CET | 49681 | 443 | 192.168.2.6 | 2.23.227.215 |
Mar 14, 2025 01:44:09.538249016 CET | 443 | 49681 | 2.23.227.215 | 192.168.2.6 |
Mar 14, 2025 01:44:09.538305998 CET | 49681 | 443 | 192.168.2.6 | 2.23.227.215 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 14, 2025 01:42:54.365869999 CET | 53 | 51718 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:42:54.399760008 CET | 53 | 59726 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:42:58.990766048 CET | 50036 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:42:58.991383076 CET | 52060 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:42:58.997634888 CET | 53 | 50036 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:42:58.998058081 CET | 53 | 52060 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:42:59.950376987 CET | 59860 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:42:59.960616112 CET | 51368 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:42:59.962234974 CET | 53 | 59860 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:42:59.972851038 CET | 53 | 51368 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:42:59.984540939 CET | 50976 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:42:59.984827995 CET | 51056 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:42:59.995209932 CET | 53 | 51056 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:42:59.998097897 CET | 53 | 50976 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:54.253299952 CET | 53 | 64041 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:54.670835018 CET | 53 | 55344 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:55.628813982 CET | 53 | 53421 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:57.030725002 CET | 53 | 52691 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:57.342449903 CET | 138 | 138 | 192.168.2.6 | 192.168.2.255 |
Mar 14, 2025 01:43:57.638015032 CET | 50185 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:43:57.638339996 CET | 49382 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:43:57.644704103 CET | 53 | 50185 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:57.647150993 CET | 53 | 49382 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:58.662455082 CET | 51900 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:43:58.671171904 CET | 53 | 51900 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:43:58.688164949 CET | 59343 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:43:58.695075989 CET | 53 | 59343 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:00.698355913 CET | 65155 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:00.705809116 CET | 53 | 65155 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:01.711595058 CET | 65155 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:01.718195915 CET | 53 | 65155 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:02.711790085 CET | 65155 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:02.718415022 CET | 53 | 65155 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:04.727701902 CET | 65155 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:04.734308958 CET | 53 | 65155 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:08.736987114 CET | 65155 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:08.745434046 CET | 53 | 65155 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:13.630847931 CET | 53236 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:13.631021976 CET | 64856 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:13.637675047 CET | 53 | 53236 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:13.638303041 CET | 53 | 64856 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:14.649234056 CET | 62181 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:14.655972958 CET | 53 | 62181 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:16.680591106 CET | 52914 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:16.688138008 CET | 53 | 52914 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:17.680053949 CET | 52914 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:17.687017918 CET | 53 | 52914 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 01:44:18.679996014 CET | 52914 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 01:44:18.686844110 CET | 53 | 52914 | 1.1.1.1 | 192.168.2.6 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Mar 14, 2025 01:42:58.990766048 CET | 192.168.2.6 | 1.1.1.1 | 0x4c0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:42:58.991383076 CET | 192.168.2.6 | 1.1.1.1 | 0xa517 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 01:42:59.950376987 CET | 192.168.2.6 | 1.1.1.1 | 0xfa64 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:42:59.960616112 CET | 192.168.2.6 | 1.1.1.1 | 0x3fad | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 01:42:59.984540939 CET | 192.168.2.6 | 1.1.1.1 | 0x86e4 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:42:59.984827995 CET | 192.168.2.6 | 1.1.1.1 | 0xac42 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 01:43:57.638015032 CET | 192.168.2.6 | 1.1.1.1 | 0x278b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:43:57.638339996 CET | 192.168.2.6 | 1.1.1.1 | 0x77f5 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 01:43:58.662455082 CET | 192.168.2.6 | 1.1.1.1 | 0x1c15 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:43:58.688164949 CET | 192.168.2.6 | 1.1.1.1 | 0x628b | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 01:44:00.698355913 CET | 192.168.2.6 | 1.1.1.1 | 0xbe0f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:44:01.711595058 CET | 192.168.2.6 | 1.1.1.1 | 0xbe0f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:44:02.711790085 CET | 192.168.2.6 | 1.1.1.1 | 0xbe0f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:44:04.727701902 CET | 192.168.2.6 | 1.1.1.1 | 0xbe0f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:44:08.736987114 CET | 192.168.2.6 | 1.1.1.1 | 0xbe0f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:44:13.630847931 CET | 192.168.2.6 | 1.1.1.1 | 0x6133 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:44:13.631021976 CET | 192.168.2.6 | 1.1.1.1 | 0xf1c | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 01:44:14.649234056 CET | 192.168.2.6 | 1.1.1.1 | 0x7cd8 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:44:16.680591106 CET | 192.168.2.6 | 1.1.1.1 | 0xca92 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:44:17.680053949 CET | 192.168.2.6 | 1.1.1.1 | 0xca92 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 01:44:18.679996014 CET | 192.168.2.6 | 1.1.1.1 | 0xca92 | Standard query (0) | A (IP address) | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Mar 14, 2025 01:42:58.997634888 CET | 1.1.1.1 | 192.168.2.6 | 0x4c0 | No error (0) | 142.250.186.164 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:42:58.998058081 CET | 1.1.1.1 | 192.168.2.6 | 0xa517 | No error (0) | 65 | IN (0x0001) | false | |||
Mar 14, 2025 01:42:59.962234974 CET | 1.1.1.1 | 192.168.2.6 | 0xfa64 | No error (0) | 185.208.156.194 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:42:59.998097897 CET | 1.1.1.1 | 192.168.2.6 | 0x86e4 | No error (0) | 185.208.156.194 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:43:57.644704103 CET | 1.1.1.1 | 192.168.2.6 | 0x278b | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:43:57.644704103 CET | 1.1.1.1 | 192.168.2.6 | 0x278b | No error (0) | 142.250.180.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:43:57.647150993 CET | 1.1.1.1 | 192.168.2.6 | 0x77f5 | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:43:58.671171904 CET | 1.1.1.1 | 192.168.2.6 | 0x1c15 | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:43:58.671171904 CET | 1.1.1.1 | 192.168.2.6 | 0x1c15 | No error (0) | 142.251.143.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:43:58.695075989 CET | 1.1.1.1 | 192.168.2.6 | 0x628b | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:00.705809116 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:00.705809116 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | 142.251.143.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:01.718195915 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:01.718195915 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | 142.251.143.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:02.718415022 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:02.718415022 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | 142.251.143.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:04.734308958 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:04.734308958 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | 142.251.143.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:08.745434046 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:08.745434046 CET | 1.1.1.1 | 192.168.2.6 | 0xbe0f | No error (0) | 142.251.143.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:13.637675047 CET | 1.1.1.1 | 192.168.2.6 | 0x6133 | No error (0) | 142.251.143.35 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:14.655972958 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd8 | No error (0) | 142.250.180.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:16.688138008 CET | 1.1.1.1 | 192.168.2.6 | 0xca92 | No error (0) | beacons6.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:16.688138008 CET | 1.1.1.1 | 192.168.2.6 | 0xca92 | No error (0) | 142.250.185.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:17.687017918 CET | 1.1.1.1 | 192.168.2.6 | 0xca92 | No error (0) | beacons6.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:17.687017918 CET | 1.1.1.1 | 192.168.2.6 | 0xca92 | No error (0) | 142.250.185.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:18.686844110 CET | 1.1.1.1 | 192.168.2.6 | 0xca92 | No error (0) | beacons6.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 01:44:18.686844110 CET | 1.1.1.1 | 192.168.2.6 | 0xca92 | No error (0) | 142.250.185.67 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.6 | 49714 | 185.208.156.194 | 80 | 4116 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Mar 14, 2025 01:43:00.405371904 CET | 449 | OUT | |
Mar 14, 2025 01:43:00.712622881 CET | 387 | IN | |
Mar 14, 2025 01:43:45.726958990 CET | 6 | OUT |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.6 | 49715 | 185.208.156.194 | 80 | 4116 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Mar 14, 2025 01:43:44.992482901 CET | 6 | OUT |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 1 |
Start time: | 20:42:48 |
Start date: | 13/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff63b000000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 4 |
Start time: | 20:42:52 |
Start date: | 13/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff63b000000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 13 |
Start time: | 20:42:58 |
Start date: | 13/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff63b000000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |