Windows
Analysis Report
http://6ziv5.escortagencybangalore.com/rd/4IMxhQ4645tIMt85vcjvrjbito246VNJQRKRLOLTJBDI7792FQXV17397G12
Overview
General Information
Detection
Score: | 48 |
Range: | 0 - 100 |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
chrome.exe (PID: 3816 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --s tart-maxim ized "abou t:blank" MD5: E81F54E6C1129887AEA47E7D092680BF) chrome.exe (PID: 748 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --no-pre-r ead-main-d ll --field -trial-han dle=2156,i ,145197989 8109113509 6,47491710 6974978645 1,262144 - -disable-f eatures=Op timization GuideModel Downloadin g,Optimiza tionHints, Optimizati onHintsFet ching,Opti mizationTa rgetPredic tion --var iations-se ed-version --mojo-pl atform-cha nnel-handl e=2176 /pr efetch:3 MD5: E81F54E6C1129887AEA47E7D092680BF)
chrome.exe (PID: 6088 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt p://6ziv5. escortagen cybangalor e.com/rd/4 IMxhQ4645t IMt85vcjvr jbito246VN JQRKRLOLTJ BDI7792FQX V17397G12" MD5: E81F54E6C1129887AEA47E7D092680BF)
- cleanup
Timestamp | SID | Severity | Classtype | Source IP | Source Port | Destination IP | Destination Port | Protocol |
---|---|---|---|---|---|---|---|---|
2025-03-14T08:23:24.516945+0100 | 2859624 | 1 | Exploit Kit Activity Detected | 185.246.87.22 | 80 | 192.168.2.6 | 49715 | TCP |
- • Phishing
- • Networking
- • System Summary
Click to jump to signature section
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Networking |
---|
Source: | Suricata IDS: |
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | File created: | Jump to behavior |
Source: | File deleted: | Jump to behavior |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 2 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 1 File Deletion | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
j.sni.global.fastly.net | 151.101.2.132 | true | false | high | |
beacons-handoff.gcp.gvt2.com | 142.250.180.67 | true | false | high | |
6ziv5.escortagencybangalore.com | 185.246.87.22 | true | true | unknown | |
www.google.com | 142.250.186.36 | true | false | high | |
beacons.gvt2.com | 172.217.23.99 | true | false | high | |
beacons.gcp.gvt2.com | unknown | unknown | false | high | |
feeds.foxnews.com | unknown | unknown | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
true |
| unknown | |
true | unknown | ||
true |
| unknown | |
false | unknown | ||
false | unknown | ||
false | unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
185.246.87.22 | 6ziv5.escortagencybangalore.com | France | 21409 | IKOULAFR | true | |
142.250.186.36 | www.google.com | United States | 15169 | GOOGLEUS | false | |
151.101.2.132 | j.sni.global.fastly.net | United States | 54113 | FASTLYUS | false |
IP |
---|
192.168.2.6 |
Joe Sandbox version: | 42.0.0 Malachite |
Analysis ID: | 1638118 |
Start date and time: | 2025-03-14 08:22:22 +01:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 19s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | http://6ziv5.escortagencybangalore.com/rd/4IMxhQ4645tIMt85vcjvrjbito246VNJQRKRLOLTJBDI7792FQXV17397G12 |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 16 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal48.win@22/10@23/4 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis
(whitelisted): MpCmdRun.exe, S IHClient.exe, SgrmBroker.exe, conhost.exe, svchost.exe, Text InputHost.exe - Excluded IPs from analysis (wh
itelisted): 142.250.185.163, 1 42.250.185.142, 142.250.184.20 6, 64.233.167.84, 142.250.186. 74, 142.250.186.106, 142.250.1 86.170, 216.58.206.42, 142.250 .185.234, 142.250.185.138, 142 .250.185.202, 142.250.185.170, 142.250.185.106, 142.250.184. 202, 142.250.184.234, 142.250. 181.234, 172.217.16.202, 142.2 50.186.138, 142.250.185.74, 14 2.250.186.42, 199.232.214.172, 142.250.181.227, 142.250.186. 131, 142.250.186.46, 108.177.1 5.84 - Excluded domains from analysis
(whitelisted): fs.microsoft.c om, clients2.google.com, edged l.me.gvt1.com, accounts.google .com, content-autofill.googlea pis.com, slscr.update.microsof t.com, update.googleapis.com, ctldl.windowsupdate.com, clien tservices.googleapis.com, clie nts.l.google.com, fe3cr.delive ry.mp.microsoft.com - Not all processes where analyz
ed, report is missing behavior information - Report size getting too big, t
oo many NtOpenFile calls found . - VT rate limit hit for: http:/
/6ziv5.escortagencybangalore.c om/rd/4IMxhQ4645tIMt85vcjvrjbi to246VNJQRKRLOLTJBDI7792FQXV17 397G12
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 2874 |
Entropy (8bit): | 4.856445873463968 |
Encrypted: | false |
SSDEEP: | 48:ZWJJpI4LLIk6ddLHJy8A3SXUV/ot5CjsEn+yxw4Dj7jvj:S3LLIk6T9yvGssE5x7 |
MD5: | BAEB13B43E808B57749030794B11A103 |
SHA1: | 94784F99A5E7E08F7AA805F01002AA0985458242 |
SHA-256: | 6408BDB269CAFA0A9E51003798ED45B5D172A4A1A64279ADDB332EE6EB97FF80 |
SHA-512: | 3125CF5AC0762BD6BC12A0F92FF02B47DE3ECFC7C1CDFBE1DF0A46CF6DD71873A92529D256E56F64D5A15185D40863B411DE5D4CC486E816357E4DFDD16937E6 |
Malicious: | false |
Reputation: | low |
URL: | http://6ziv5.escortagencybangalore.com/ |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 235 |
Entropy (8bit): | 4.996687328840349 |
Encrypted: | false |
SSDEEP: | 6:HXQI4ySmfH1A7YmmBi7YmjA0VhM+yp7YmmJyR13YoVL:HXYknxJX0VM2xYwIL |
MD5: | 41735C0E24BE1E5BD89C1F6531207494 |
SHA1: | 9EAE1BFA3B43E52C21E87FABCD63A4C2A3E55554 |
SHA-256: | A594B117BC9C64745935F48B866C3CAA70CDED9C35EE02841A28277F3E75FFE3 |
SHA-512: | 2CE91960620061DE0C91383930CC83BA32CCAD82E75C6CF8678CCF907021EA8D2901B327AF67565593D765873FD7988AA533753A2B8E94E2FB38D71C3A3C787F |
Malicious: | false |
Reputation: | low |
URL: | http://6ziv5.escortagencybangalore.com/rd/4IMxhQ4645tIMt85vcjvrjbito246VNJQRKRLOLTJBDI7792FQXV17397G12 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1435 |
Entropy (8bit): | 4.7130828204283555 |
Encrypted: | false |
SSDEEP: | 24:UkvMuGRKe7+U6eSEMDSaGvMdufqGmnoSPfzS7pvMugQrYFv0CGSTYFUL9MtDY3Ss:Uk9w7x9sHGgufRNkz09fcFMCGJFUL9MO |
MD5: | 1FB5EDFEA0AF10D301EFCD56738BA30A |
SHA1: | 1AAC6EB08825AD63AC334CFF1F816CC9ECA71219 |
SHA-256: | 161D0961994DD86814FAFBA6EDD6FA7A75D17B19B2E60E1EE01ADAA9EA19DADC |
SHA-512: | A0C3F78B663E01D24DDD53AF6D0D1E3E9DD743C3E4CB6FC8F45588BCC37AB3923A2992505C4842D9E451692A7E7495155F58BFED056BCFE57E02204603F962DD |
Malicious: | false |
Reputation: | low |
URL: | http://6ziv5.escortagencybangalore.com/assets/styles.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3192 |
Entropy (8bit): | 4.575541227665154 |
Encrypted: | false |
SSDEEP: | 48:vurC1AFRZpvtph6F6BgxVbaCdQciJ2ZBgof6PM5FGxs7vtj:vu21Yd6ygx4cA2 |
MD5: | FEC9445092E905D0605BAB3B2118493D |
SHA1: | B0396E4E029F82FDBB34774C2A846FC6430BB79B |
SHA-256: | 707DA433196FE9BC1865F3A87526BF07E508AC3BD1209F44A781D4A9B40CF3CF |
SHA-512: | C4223B39873B4C725FA72F1EC3B1FA665B2D0BC24F5D53535459061787894F17C963EEE72739FA86BBEC20768A3F2B942E036BF8914F0142BA09F825B4A3C962 |
Malicious: | false |
Reputation: | low |
URL: | http://6ziv5.escortagencybangalore.com/news?q=IP%20provider%20is%20blacklisted!%20LEVEL3 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 210 |
Entropy (8bit): | 5.098105294030167 |
Encrypted: | false |
SSDEEP: | 6:uIRnXHFmmmJ0S2IcENFJKSK/xIcEo/VMCGYoVL:lXHAx6S2SRcJ9IL |
MD5: | 05DA576EB71641B10811A1AEF60A853D |
SHA1: | 5E7C7F426430C30209FE270AB129A9C0100BDEE9 |
SHA-256: | 58B98E11D36F9689D4AF3C1CB3755528817709300FACF6D314C99CE91BD90B4B |
SHA-512: | 2DAC5452E42E24043F512741B01E08CDEE464771A13C2D38D3F9958F75FCEA079F67A7B704AC6753C0BAB02DFDDD434AE7024D4674E3A532A70D50C5D6A72937 |
Malicious: | false |
Reputation: | low |
URL: | http://6ziv5.escortagencybangalore.com/t/4IMxhQ4645tIMt85vcjvrjbito246VNJQRKRLOLTJBDI7792FQXV17397G12 |
Preview: |
Download Network PCAP: filtered – full
Timestamp | SID | Signature | Severity | Source IP | Source Port | Dest IP | Dest Port | Protocol |
---|---|---|---|---|---|---|---|---|
2025-03-14T08:23:24.516945+0100 | 2859624 | ETPRO EXPLOIT_KIT FoxTDS Filtered Blacklisted | 1 | 185.246.87.22 | 80 | 192.168.2.6 | 49715 | TCP |
- Total Packets: 157
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 14, 2025 08:23:14.112673998 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 08:23:14.419744968 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 08:23:15.029144049 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 08:23:16.232760906 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 08:23:18.686295986 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 08:23:21.804971933 CET | 49708 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:21.805016994 CET | 443 | 49708 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:21.805135965 CET | 49708 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:21.805465937 CET | 49708 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:21.805480957 CET | 443 | 49708 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:22.005213976 CET | 443 | 49708 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:22.005791903 CET | 49709 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:22.005840063 CET | 443 | 49709 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:22.006001949 CET | 49709 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:22.006266117 CET | 49709 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:22.006285906 CET | 443 | 49709 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:22.157083988 CET | 49710 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.157115936 CET | 443 | 49710 | 104.83.103.192 | 192.168.2.6 |
Mar 14, 2025 08:23:22.157383919 CET | 49710 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.158885002 CET | 49710 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.158899069 CET | 443 | 49710 | 104.83.103.192 | 192.168.2.6 |
Mar 14, 2025 08:23:22.159569979 CET | 443 | 49710 | 104.83.103.192 | 192.168.2.6 |
Mar 14, 2025 08:23:22.160464048 CET | 49711 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.160502911 CET | 443 | 49711 | 104.83.103.192 | 192.168.2.6 |
Mar 14, 2025 08:23:22.160970926 CET | 49711 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.160970926 CET | 49711 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.161010027 CET | 443 | 49711 | 104.83.103.192 | 192.168.2.6 |
Mar 14, 2025 08:23:22.161444902 CET | 443 | 49711 | 104.83.103.192 | 192.168.2.6 |
Mar 14, 2025 08:23:22.161830902 CET | 49712 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.161866903 CET | 443 | 49712 | 104.83.103.192 | 192.168.2.6 |
Mar 14, 2025 08:23:22.162076950 CET | 49712 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.162589073 CET | 49712 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.162617922 CET | 443 | 49712 | 104.83.103.192 | 192.168.2.6 |
Mar 14, 2025 08:23:22.162803888 CET | 49712 | 443 | 192.168.2.6 | 104.83.103.192 |
Mar 14, 2025 08:23:22.204891920 CET | 443 | 49709 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:22.521450996 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 08:23:22.826977015 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 08:23:23.436397076 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 08:23:23.500965118 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 08:23:23.501888037 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.502079010 CET | 49716 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.506581068 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:23.506748915 CET | 80 | 49716 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:23.506793976 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.507118940 CET | 49716 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.516666889 CET | 49717 | 443 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.516705036 CET | 443 | 49717 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:23.516822100 CET | 49717 | 443 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.517122030 CET | 49717 | 443 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.517133951 CET | 443 | 49717 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:23.717113972 CET | 443 | 49717 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:23.718404055 CET | 49718 | 443 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.718456984 CET | 443 | 49718 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:23.718627930 CET | 49718 | 443 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.721523046 CET | 49718 | 443 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.721537113 CET | 443 | 49718 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:23.920871019 CET | 443 | 49718 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:23.925493956 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:23.937886000 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:24.132869959 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:24.179873943 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:24.184725046 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:24.452235937 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:24.497787952 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:24.511616945 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:24.516944885 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:24.640795946 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 08:23:24.686572075 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:24.741988897 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:25.321582079 CET | 49722 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:25.321609974 CET | 443 | 49722 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:25.321765900 CET | 49722 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:25.322746992 CET | 49722 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:25.322761059 CET | 443 | 49722 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:25.521591902 CET | 443 | 49722 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:25.542711020 CET | 49723 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:25.542815924 CET | 443 | 49723 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:25.542892933 CET | 49723 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:25.543445110 CET | 49723 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:23:25.543484926 CET | 443 | 49723 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:25.721240044 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:25.726015091 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:25.741839886 CET | 443 | 49723 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:23:25.906162977 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:25.906214952 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:25.906253099 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:25.906318903 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:25.967742920 CET | 49724 | 443 | 192.168.2.6 | 151.101.2.132 |
Mar 14, 2025 08:23:25.967772961 CET | 443 | 49724 | 151.101.2.132 | 192.168.2.6 |
Mar 14, 2025 08:23:25.968028069 CET | 49724 | 443 | 192.168.2.6 | 151.101.2.132 |
Mar 14, 2025 08:23:25.968364000 CET | 49724 | 443 | 192.168.2.6 | 151.101.2.132 |
Mar 14, 2025 08:23:25.968381882 CET | 443 | 49724 | 151.101.2.132 | 192.168.2.6 |
Mar 14, 2025 08:23:26.169469118 CET | 443 | 49724 | 151.101.2.132 | 192.168.2.6 |
Mar 14, 2025 08:23:26.169996023 CET | 49725 | 443 | 192.168.2.6 | 151.101.2.132 |
Mar 14, 2025 08:23:26.170047045 CET | 443 | 49725 | 151.101.2.132 | 192.168.2.6 |
Mar 14, 2025 08:23:26.170137882 CET | 49725 | 443 | 192.168.2.6 | 151.101.2.132 |
Mar 14, 2025 08:23:26.170691967 CET | 49725 | 443 | 192.168.2.6 | 151.101.2.132 |
Mar 14, 2025 08:23:26.170705080 CET | 443 | 49725 | 151.101.2.132 | 192.168.2.6 |
Mar 14, 2025 08:23:26.368983984 CET | 443 | 49725 | 151.101.2.132 | 192.168.2.6 |
Mar 14, 2025 08:23:27.043553114 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 08:23:30.520792961 CET | 49726 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.520845890 CET | 443 | 49726 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.520912886 CET | 49726 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.522186995 CET | 49726 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.522207022 CET | 443 | 49726 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.522855997 CET | 443 | 49726 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.540921926 CET | 49727 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.540957928 CET | 443 | 49727 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.541024923 CET | 49727 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.541392088 CET | 49727 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.541403055 CET | 443 | 49727 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.541836977 CET | 443 | 49727 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.580264091 CET | 49728 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.580347061 CET | 443 | 49728 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.580426931 CET | 49728 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.580884933 CET | 49728 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.580904007 CET | 443 | 49728 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.581386089 CET | 443 | 49728 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.607371092 CET | 49729 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.607410908 CET | 443 | 49729 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.607482910 CET | 49729 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.608262062 CET | 49729 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.608272076 CET | 443 | 49729 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.608737946 CET | 443 | 49729 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.645669937 CET | 49730 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.645704031 CET | 443 | 49730 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.645791054 CET | 49730 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.646136999 CET | 49730 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.646151066 CET | 443 | 49730 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.646889925 CET | 443 | 49730 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.663069010 CET | 49731 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.663100004 CET | 443 | 49731 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.663203955 CET | 49731 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.663496971 CET | 49731 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.663508892 CET | 443 | 49731 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.663975000 CET | 443 | 49731 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.691786051 CET | 49732 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.691831112 CET | 443 | 49732 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.691900969 CET | 49732 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.692207098 CET | 49732 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.692224979 CET | 443 | 49732 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.692833900 CET | 443 | 49732 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.709346056 CET | 49733 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.709379911 CET | 443 | 49733 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.709451914 CET | 49733 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.709747076 CET | 49733 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:23:30.709758043 CET | 443 | 49733 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:30.710154057 CET | 443 | 49733 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:23:31.857883930 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 08:23:33.107908010 CET | 49672 | 443 | 192.168.2.6 | 204.79.197.203 |
Mar 14, 2025 08:23:37.369050026 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:37.373842955 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:37.543749094 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:37.543772936 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:37.543790102 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:37.543844938 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:37.565819979 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:37.570522070 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:37.775954008 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:37.775983095 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:23:37.776035070 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:23:41.467407942 CET | 49678 | 443 | 192.168.2.6 | 20.42.65.91 |
Mar 14, 2025 08:23:42.836340904 CET | 60130 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:42.841128111 CET | 53 | 60130 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:42.841188908 CET | 60130 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:42.845865965 CET | 53 | 60130 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:43.295500994 CET | 60130 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:43.304905891 CET | 53 | 60130 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:43.304975033 CET | 60130 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:03.579045057 CET | 49685 | 80 | 192.168.2.6 | 172.217.23.99 |
Mar 14, 2025 08:24:03.579060078 CET | 49687 | 80 | 192.168.2.6 | 199.232.210.172 |
Mar 14, 2025 08:24:03.584083080 CET | 80 | 49685 | 172.217.23.99 | 192.168.2.6 |
Mar 14, 2025 08:24:03.584202051 CET | 49685 | 80 | 192.168.2.6 | 172.217.23.99 |
Mar 14, 2025 08:24:03.584336996 CET | 80 | 49687 | 199.232.210.172 | 192.168.2.6 |
Mar 14, 2025 08:24:03.584388971 CET | 49687 | 80 | 192.168.2.6 | 199.232.210.172 |
Mar 14, 2025 08:24:05.054493904 CET | 49686 | 443 | 192.168.2.6 | 2.19.122.56 |
Mar 14, 2025 08:24:05.054976940 CET | 49688 | 80 | 192.168.2.6 | 199.232.210.172 |
Mar 14, 2025 08:24:05.055032969 CET | 49689 | 80 | 192.168.2.6 | 2.23.77.188 |
Mar 14, 2025 08:24:07.054872036 CET | 60140 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.054919958 CET | 443 | 60140 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.054990053 CET | 60140 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.055434942 CET | 60140 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.055449009 CET | 443 | 60140 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.056166887 CET | 443 | 60140 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.058376074 CET | 60141 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.058419943 CET | 443 | 60141 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.058485031 CET | 60141 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.058867931 CET | 60141 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.058883905 CET | 443 | 60141 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.059303045 CET | 443 | 60141 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.082868099 CET | 60142 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.082911968 CET | 443 | 60142 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.082974911 CET | 60142 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.083283901 CET | 60142 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.083300114 CET | 443 | 60142 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.083708048 CET | 443 | 60142 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.099248886 CET | 60143 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.099303007 CET | 443 | 60143 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.099416971 CET | 60143 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.099847078 CET | 60143 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.099865913 CET | 443 | 60143 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.100318909 CET | 443 | 60143 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.124782085 CET | 60144 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.124825954 CET | 443 | 60144 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.124888897 CET | 60144 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.125586033 CET | 60144 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.125597954 CET | 443 | 60144 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.126135111 CET | 443 | 60144 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.139173031 CET | 60145 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.139216900 CET | 443 | 60145 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.139309883 CET | 60145 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.139712095 CET | 60145 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.139725924 CET | 443 | 60145 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.140258074 CET | 443 | 60145 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.170883894 CET | 60146 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.170928001 CET | 443 | 60146 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.170989990 CET | 60146 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.171478033 CET | 60146 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.171497107 CET | 443 | 60146 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.171948910 CET | 443 | 60146 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.191920996 CET | 60147 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.191960096 CET | 443 | 60147 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.192028999 CET | 60147 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.192332983 CET | 60147 | 443 | 192.168.2.6 | 20.12.23.50 |
Mar 14, 2025 08:24:07.192342997 CET | 443 | 60147 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:07.192749023 CET | 443 | 60147 | 20.12.23.50 | 192.168.2.6 |
Mar 14, 2025 08:24:08.513698101 CET | 49716 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:24:08.518739939 CET | 80 | 49716 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:24:21.859576941 CET | 60157 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:24:21.859627008 CET | 443 | 60157 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:24:21.859741926 CET | 60157 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:24:21.860165119 CET | 60157 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:24:21.860183001 CET | 443 | 60157 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:24:22.058084965 CET | 443 | 60157 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:24:22.058731079 CET | 60158 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:24:22.058760881 CET | 443 | 60158 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:24:22.058872938 CET | 60158 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:24:22.059170961 CET | 60158 | 443 | 192.168.2.6 | 142.250.186.36 |
Mar 14, 2025 08:24:22.059185982 CET | 443 | 60158 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:24:22.257011890 CET | 443 | 60158 | 142.250.186.36 | 192.168.2.6 |
Mar 14, 2025 08:24:22.779782057 CET | 49715 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:24:22.785837889 CET | 80 | 49715 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:24:23.922132015 CET | 49716 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:24:23.927385092 CET | 80 | 49716 | 185.246.87.22 | 192.168.2.6 |
Mar 14, 2025 08:24:23.927455902 CET | 49716 | 80 | 192.168.2.6 | 185.246.87.22 |
Mar 14, 2025 08:24:33.377234936 CET | 443 | 49681 | 2.23.227.215 | 192.168.2.6 |
Mar 14, 2025 08:24:33.377372980 CET | 49681 | 443 | 192.168.2.6 | 2.23.227.215 |
Mar 14, 2025 08:24:33.377415895 CET | 443 | 49681 | 2.23.227.215 | 192.168.2.6 |
Mar 14, 2025 08:24:33.377475977 CET | 49681 | 443 | 192.168.2.6 | 2.23.227.215 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 14, 2025 08:23:17.579036951 CET | 53 | 60800 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:17.619590044 CET | 53 | 56898 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:21.796861887 CET | 63360 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:21.797013998 CET | 55970 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:21.803881884 CET | 53 | 55970 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:21.804069996 CET | 53 | 63360 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:23.478054047 CET | 55629 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:23.478498936 CET | 53537 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:23.492270947 CET | 53 | 53537 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:23.497312069 CET | 57525 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:23.497569084 CET | 62397 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:23.500585079 CET | 53 | 55629 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:23.510205984 CET | 53 | 57525 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:23.519148111 CET | 53 | 62397 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:25.945364952 CET | 62543 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:25.945521116 CET | 50596 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:23:25.954557896 CET | 53 | 62543 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:25.967268944 CET | 53 | 50596 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:37.844031096 CET | 53 | 65036 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:23:42.835603952 CET | 53 | 64666 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:17.103044033 CET | 53 | 58220 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:17.514209032 CET | 53 | 58756 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:19.852870941 CET | 53 | 57964 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:20.671489954 CET | 138 | 138 | 192.168.2.6 | 192.168.2.255 |
Mar 14, 2025 08:24:21.924525023 CET | 54887 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:21.924806118 CET | 50418 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:21.931883097 CET | 53 | 54887 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:21.932164907 CET | 53 | 50418 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:22.955065012 CET | 58432 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:22.955218077 CET | 59831 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:22.964796066 CET | 53 | 58432 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:22.964869022 CET | 53 | 59831 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:24.984112024 CET | 57974 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:24.990998030 CET | 53 | 57974 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:25.983417034 CET | 57974 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:25.990231991 CET | 53 | 57974 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:26.999226093 CET | 57974 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:27.007211924 CET | 53 | 57974 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:29.014421940 CET | 57974 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:29.021266937 CET | 53 | 57974 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:33.017019987 CET | 57974 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:33.024044037 CET | 53 | 57974 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:37.924712896 CET | 64946 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:37.924870968 CET | 59591 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:37.932934046 CET | 53 | 59591 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:37.932952881 CET | 53 | 64946 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:38.936923981 CET | 54579 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:39.544219017 CET | 53 | 54579 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:40.967847109 CET | 50489 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:40.974808931 CET | 53 | 50489 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:41.967799902 CET | 50489 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:41.975105047 CET | 53 | 50489 | 1.1.1.1 | 192.168.2.6 |
Mar 14, 2025 08:24:42.967880011 CET | 50489 | 53 | 192.168.2.6 | 1.1.1.1 |
Mar 14, 2025 08:24:42.975781918 CET | 53 | 50489 | 1.1.1.1 | 192.168.2.6 |
Timestamp | Source IP | Dest IP | Checksum | Code | Type |
---|---|---|---|---|---|
Mar 14, 2025 08:23:23.519201994 CET | 192.168.2.6 | 1.1.1.1 | c235 | (Port unreachable) | Destination Unreachable |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Mar 14, 2025 08:23:21.796861887 CET | 192.168.2.6 | 1.1.1.1 | 0x4ea0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:23:21.797013998 CET | 192.168.2.6 | 1.1.1.1 | 0x91ea | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 08:23:23.478054047 CET | 192.168.2.6 | 1.1.1.1 | 0x5ecf | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:23:23.478498936 CET | 192.168.2.6 | 1.1.1.1 | 0x6d2a | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 08:23:23.497312069 CET | 192.168.2.6 | 1.1.1.1 | 0x4611 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:23:23.497569084 CET | 192.168.2.6 | 1.1.1.1 | 0x9b12 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 08:23:25.945364952 CET | 192.168.2.6 | 1.1.1.1 | 0xcfbe | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:23:25.945521116 CET | 192.168.2.6 | 1.1.1.1 | 0xa8a0 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 08:24:21.924525023 CET | 192.168.2.6 | 1.1.1.1 | 0x706c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:21.924806118 CET | 192.168.2.6 | 1.1.1.1 | 0x7740 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 08:24:22.955065012 CET | 192.168.2.6 | 1.1.1.1 | 0x74ff | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:22.955218077 CET | 192.168.2.6 | 1.1.1.1 | 0xd0e | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 08:24:24.984112024 CET | 192.168.2.6 | 1.1.1.1 | 0x7cd3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:25.983417034 CET | 192.168.2.6 | 1.1.1.1 | 0x7cd3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:26.999226093 CET | 192.168.2.6 | 1.1.1.1 | 0x7cd3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:29.014421940 CET | 192.168.2.6 | 1.1.1.1 | 0x7cd3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:33.017019987 CET | 192.168.2.6 | 1.1.1.1 | 0x7cd3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:37.924712896 CET | 192.168.2.6 | 1.1.1.1 | 0xa6b4 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:37.924870968 CET | 192.168.2.6 | 1.1.1.1 | 0x3ac7 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 14, 2025 08:24:38.936923981 CET | 192.168.2.6 | 1.1.1.1 | 0xe47c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:40.967847109 CET | 192.168.2.6 | 1.1.1.1 | 0xf882 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:41.967799902 CET | 192.168.2.6 | 1.1.1.1 | 0xf882 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 14, 2025 08:24:42.967880011 CET | 192.168.2.6 | 1.1.1.1 | 0xf882 | Standard query (0) | A (IP address) | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Mar 14, 2025 08:23:21.803881884 CET | 1.1.1.1 | 192.168.2.6 | 0x91ea | No error (0) | 65 | IN (0x0001) | false | |||
Mar 14, 2025 08:23:21.804069996 CET | 1.1.1.1 | 192.168.2.6 | 0x4ea0 | No error (0) | 142.250.186.36 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:23:23.500585079 CET | 1.1.1.1 | 192.168.2.6 | 0x5ecf | No error (0) | 185.246.87.22 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:23:23.510205984 CET | 1.1.1.1 | 192.168.2.6 | 0x4611 | No error (0) | 185.246.87.22 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:23:25.954557896 CET | 1.1.1.1 | 192.168.2.6 | 0xcfbe | No error (0) | j.sni.global.fastly.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:23:25.954557896 CET | 1.1.1.1 | 192.168.2.6 | 0xcfbe | No error (0) | 151.101.2.132 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:23:25.954557896 CET | 1.1.1.1 | 192.168.2.6 | 0xcfbe | No error (0) | 151.101.66.132 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:23:25.954557896 CET | 1.1.1.1 | 192.168.2.6 | 0xcfbe | No error (0) | 151.101.130.132 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:23:25.954557896 CET | 1.1.1.1 | 192.168.2.6 | 0xcfbe | No error (0) | 151.101.194.132 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:23:25.967268944 CET | 1.1.1.1 | 192.168.2.6 | 0xa8a0 | No error (0) | j.sni.global.fastly.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:21.931883097 CET | 1.1.1.1 | 192.168.2.6 | 0x706c | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:21.931883097 CET | 1.1.1.1 | 192.168.2.6 | 0x706c | No error (0) | 142.250.180.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:21.932164907 CET | 1.1.1.1 | 192.168.2.6 | 0x7740 | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:22.964796066 CET | 1.1.1.1 | 192.168.2.6 | 0x74ff | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:22.964796066 CET | 1.1.1.1 | 192.168.2.6 | 0x74ff | No error (0) | 142.251.143.67 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:22.964869022 CET | 1.1.1.1 | 192.168.2.6 | 0xd0e | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:24.990998030 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:24.990998030 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | 142.251.143.35 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:25.990231991 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:25.990231991 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | 142.251.143.35 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:27.007211924 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:27.007211924 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | 142.251.143.35 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:29.021266937 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:29.021266937 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | 142.251.143.35 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:33.024044037 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | beacons-handoff.gcp.gvt2.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:33.024044037 CET | 1.1.1.1 | 192.168.2.6 | 0x7cd3 | No error (0) | 142.251.143.35 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:37.932952881 CET | 1.1.1.1 | 192.168.2.6 | 0xa6b4 | No error (0) | 172.217.23.99 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:39.544219017 CET | 1.1.1.1 | 192.168.2.6 | 0xe47c | No error (0) | 142.250.180.99 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:40.974808931 CET | 1.1.1.1 | 192.168.2.6 | 0xf882 | No error (0) | 172.217.23.99 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:41.975105047 CET | 1.1.1.1 | 192.168.2.6 | 0xf882 | No error (0) | 172.217.23.99 | A (IP address) | IN (0x0001) | false | ||
Mar 14, 2025 08:24:42.975781918 CET | 1.1.1.1 | 192.168.2.6 | 0xf882 | No error (0) | 172.217.23.99 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.6 | 49715 | 185.246.87.22 | 80 | 748 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Mar 14, 2025 08:23:23.925493956 CET | 509 | OUT | |
Mar 14, 2025 08:23:24.132869959 CET | 487 | IN | |
Mar 14, 2025 08:23:24.179873943 CET | 621 | OUT | |
Mar 14, 2025 08:23:24.452235937 CET | 462 | IN | |
Mar 14, 2025 08:23:24.511616945 CET | 468 | OUT | |
Mar 14, 2025 08:23:24.686572075 CET | 258 | IN | |
Mar 14, 2025 08:23:25.721240044 CET | 607 | OUT | |
Mar 14, 2025 08:23:25.906162977 CET | 1236 | IN | |
Mar 14, 2025 08:23:25.906214952 CET | 1236 | IN | |
Mar 14, 2025 08:23:25.906253099 CET | 998 | IN | |
Mar 14, 2025 08:23:37.369050026 CET | 545 | OUT | |
Mar 14, 2025 08:23:37.543749094 CET | 1236 | IN | |
Mar 14, 2025 08:23:37.543772936 CET | 1236 | IN | |
Mar 14, 2025 08:23:37.543790102 CET | 680 | IN | |
Mar 14, 2025 08:23:37.565819979 CET | 366 | OUT | |
Mar 14, 2025 08:23:37.775954008 CET | 1236 | IN | |
Mar 14, 2025 08:23:37.775983095 CET | 384 | IN | |
Mar 14, 2025 08:24:22.779782057 CET | 6 | OUT |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.6 | 49716 | 185.246.87.22 | 80 | 748 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Mar 14, 2025 08:24:08.513698101 CET | 6 | OUT |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 1 |
Start time: | 03:23:12 |
Start date: | 14/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff63b000000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 3 |
Start time: | 03:23:15 |
Start date: | 14/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff63b000000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 12 |
Start time: | 03:23:22 |
Start date: | 14/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff63b000000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |