Windows
Analysis Report
https://artebor.pt/dgt/multas-y-sanciones/info.php
Overview
General Information
Detection
Score: | 48 |
Range: | 0 - 100 |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
chrome.exe (PID: 2132 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --s tart-maxim ized "abou t:blank" MD5: E81F54E6C1129887AEA47E7D092680BF) chrome.exe (PID: 5456 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --no-pre-r ead-main-d ll --field -trial-han dle=2068,i ,302546958 7033658370 ,222022455 9297891039 ,262144 -- disable-fe atures=Opt imizationG uideModelD ownloading ,Optimizat ionHints,O ptimizatio nHintsFetc hing,Optim izationTar getPredict ion --vari ations-see d-version= 20250306-1 83004.4290 00 --mojo- platform-c hannel-han dle=2096 / prefetch:3 MD5: E81F54E6C1129887AEA47E7D092680BF)
chrome.exe (PID: 6316 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://arteb or.pt/dgt/ multas-y-s anciones/i nfo.php" MD5: E81F54E6C1129887AEA47E7D092680BF)
- cleanup
- • Phishing
- • Compliance
- • Networking
- • System Summary
Click to jump to signature section
Phishing |
---|
Source: | Joe Sandbox AI: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | File created: | Jump to behavior |
Source: | File deleted: | Jump to behavior |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 1 Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | 1 File Deletion | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
cdn.jsdelivr.net.cdn.cloudflare.net | 104.18.186.31 | true | false | high | |
www.google.com | 142.250.186.132 | true | false | high | |
artebor.pt | 194.65.141.203 | true | true | unknown | |
cdn.jsdelivr.net | unknown | unknown | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false |
| unknown | |
false | high | ||
false |
| unknown | |
true | unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
104.18.186.31 | cdn.jsdelivr.net.cdn.cloudflare.net | United States | 13335 | CLOUDFLARENETUS | false | |
194.65.141.203 | artebor.pt | Portugal | 3243 | MEO-RESIDENCIALPT | true | |
142.250.186.132 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.7 |
Joe Sandbox version: | 42.0.0 Malachite |
Analysis ID: | 1641768 |
Start date and time: | 2025-03-18 13:38:30 +01:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 8s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://artebor.pt/dgt/multas-y-sanciones/info.php |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 14 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal48.phis.win@22/18@8/4 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis
(whitelisted): sppsvc.exe, SIH Client.exe, SgrmBroker.exe, sv chost.exe, TextInputHost.exe - Excluded IPs from analysis (wh
itelisted): 216.58.206.78, 142 .250.186.67, 142.250.184.206, 66.102.1.84, 216.58.206.46, 14 2.250.186.142, 172.217.18.14, 142.250.185.238, 172.217.18.10 , 104.126.37.147, 104.126.37.1 31, 104.126.37.130, 104.126.37 .153, 104.126.37.138, 104.126. 37.144, 104.126.37.152, 104.12 6.37.128, 104.126.37.139, 216. 58.206.74, 142.250.185.138, 14 2.250.186.170, 216.58.212.170, 142.250.186.74, 142.250.186.4 2, 142.250.186.138, 142.250.18 4.202, 216.58.206.42, 142.250. 181.234, 142.250.185.74, 172.2 17.16.202, 142.250.185.106, 14 2.250.186.106, 142.250.184.234 , 172.217.23.99, 104.126.37.14 6, 104.126.37.160, 104.126.37. 155, 199.232.214.172, 142.250. 185.78, 142.250.185.174, 216.5 8.212.142, 172.217.16.206, 142 .250.186.78, 142.250.185.163, 52.149.20.212, 23.60.203.209 - Excluded domains from analysis
(whitelisted): fonts.googleap is.com, fs.microsoft.com, acco unts.google.com, th.bing.com.e dgekey.net, content-autofill.g oogleapis.com, slscr.update.mi crosoft.com, fonts.gstatic.com , ctldl.windowsupdate.com, cli entservices.googleapis.com, p- th.bing.com.trafficmanager.net , dns.msftncsi.com, fe3cr.deli very.mp.microsoft.com, clients 2.google.com, e86303.dscx.akam aiedge.net, edgedl.me.gvt1.com , redirector.gvt1.com, th.bing .com, translate.googleapis.com , update.googleapis.com, clien ts.l.google.com, c.pki.goog - Not all processes where analyz
ed, report is missing behavior information - Report size getting too big, t
oo many NtOpenFile calls found . - Some HTTPS proxied raw data pa
ckets have been limited to 10 per session. Please view the P CAPs for the complete data. - VT rate limit hit for: https:
//artebor.pt/dgt/multas-y-sanc iones/info.php
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 8000 |
Entropy (8bit): | 7.97130996744173 |
Encrypted: | false |
SSDEEP: | 192:GDonmfrEdXT8WrxzRXwyQo3zGEOM7Y2hOMgWnsfYSjv4ENFGwrlKJ:8onPxTzjgyQSzLPXOTIYHJAJ |
MD5: | 72993DDDF88A63E8F226656F7DE88E57 |
SHA1: | 179F97EC0275F09603A8DB94D4380EB584D81CD5 |
SHA-256: | F4E80D9DFD374D02989B87A27B5ED4CB78FBB177C27F1478E9A8B0AFB7513149 |
SHA-512: | 7C20165F9D22A86341E841FD58526209017DCDE2AFE2D0D2A89FE853D95DC69F658D25CF798C71F452DAB09843FC808C1AE87A60B1284134163ABF5A1D93E50A |
Malicious: | false |
Reputation: | low |
URL: | https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 7884 |
Entropy (8bit): | 7.971946419873228 |
Encrypted: | false |
SSDEEP: | 192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI |
MD5: | 9212F6F9860F9FC6C69B02FEDF6DB8C3 |
SHA1: | AC6D71B4D5FDD2B3DABC9A06FF6C001E4251DA0B |
SHA-256: | 7D93459D86585BFCDBB7E0376056226ADB25821EE54B96236FE2123E9560929F |
SHA-512: | 67317495F4B53E20A9F31C034E456E6C37F387DFFB2C092CAA5159BC441CFCADD02749FFE5BBED1D580D5300A59E48A767EF2C6D9978B474F84C1A2CD095C126 |
Malicious: | false |
Reputation: | low |
URL: | https://fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 897 |
Entropy (8bit): | 7.48583522296411 |
Encrypted: | false |
SSDEEP: | 24:hJ8BuSceE57LLT9tp2ePMxIZmU6Xyx2zz:hJSceElPTTXviyx2H |
MD5: | 95687EBD56DE5A4B89DBA053A0049A67 |
SHA1: | 8DC1997F3484E1759CE8A814A72E7543D13A346A |
SHA-256: | 8BC621EEEF6A618506A620A30C672B6257F7890353071C5852BA5522DF068837 |
SHA-512: | 71DF12D318907B5E9334F3CE2525FD8C9E0863AAA7052A5DAB58B913F8D6C3716CDC4ADB39AA1EDFB12B241A6BC0C6EA95259D4A629CB2B972E7F9FEE2E37E45 |
Malicious: | false |
Reputation: | low |
URL: | https://artebor.pt/wp-content/uploads/2021/03/cropped-wp-icon-32x32.png |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 897 |
Entropy (8bit): | 7.48583522296411 |
Encrypted: | false |
SSDEEP: | 24:hJ8BuSceE57LLT9tp2ePMxIZmU6Xyx2zz:hJSceElPTTXviyx2H |
MD5: | 95687EBD56DE5A4B89DBA053A0049A67 |
SHA1: | 8DC1997F3484E1759CE8A814A72E7543D13A346A |
SHA-256: | 8BC621EEEF6A618506A620A30C672B6257F7890353071C5852BA5522DF068837 |
SHA-512: | 71DF12D318907B5E9334F3CE2525FD8C9E0863AAA7052A5DAB58B913F8D6C3716CDC4ADB39AA1EDFB12B241A6BC0C6EA95259D4A629CB2B972E7F9FEE2E37E45 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 88 |
Entropy (8bit): | 4.499166523354977 |
Encrypted: | false |
SSDEEP: | 3:7JdInTKgnPhiu7/dzcyP0JRQCRn:tdIxPhia/dXPyFRn |
MD5: | C4465FF8C8D517FE380526826635DA01 |
SHA1: | 72B46ECB8EA580A077BF8DA8906DB3D0C0C68FCB |
SHA-256: | 1C3364A6C45B614F0376B9074FA939D6BD921C2FF7A482E647482CB2C70EADF8 |
SHA-512: | 6CFECA22D77373B527B12188294F692FE38970630265BBB7C0DB50E90BBDBD6F645D08FCE8533D46ACF06D54D485F7EA9530B90324209477899E7B2BE19ACF5D |
Malicious: | false |
Reputation: | low |
URL: | https://content-autofill.googleapis.com/v1/pages/ChRDaHJvbWUvMTM0LjAuNjk5OC4zNhJDCXQJ8EJBxgFjEgUN77-NcxIFDQCgC8oSBQ2DqFs9EgUNlNRbHhIFDaS7fdUSBQ1GZxV9EgUNR-feByGuLS1OkFJy9Q==?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 12583 |
Entropy (8bit): | 7.925499449720057 |
Encrypted: | false |
SSDEEP: | 192:NlgNmAIRGPDHoNpNB2t7Df5ZfOzylm3kGFowREkQ+6gzK537FMfxjPGWvf:Nl1BR2DHPt7lZPm1TQ+6UsrFM4W3 |
MD5: | A584ABA3AB25E54A0A5B75BAC74CF186 |
SHA1: | 30E0AC7C9511F4AE4BD020CE6B33FCBC790B0381 |
SHA-256: | 18CF8FC991E70E69BF4CEE9423CF977B67A176EC48DAB5E58C9816B6AB6AAE8C |
SHA-512: | EA5C4AE44DD6B67EA4806A6481C020B4ABDF84713E0AC3F6B6F1BF6EF0AD450B93754BF783604FB7C9138741B2A4D6FBEA849DF793187ED02EA8B82476DC5440 |
Malicious: | false |
Reputation: | low |
URL: | https://th.bing.com/th/id/OIP.WmY7Qq5D4PjcUa_Vj8SwggHaDw?w=308&h=177&c=7&r=0&o=5&dpr=1.5&pid=1.7 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 12583 |
Entropy (8bit): | 7.925499449720057 |
Encrypted: | false |
SSDEEP: | 192:NlgNmAIRGPDHoNpNB2t7Df5ZfOzylm3kGFowREkQ+6gzK537FMfxjPGWvf:Nl1BR2DHPt7lZPm1TQ+6UsrFM4W3 |
MD5: | A584ABA3AB25E54A0A5B75BAC74CF186 |
SHA1: | 30E0AC7C9511F4AE4BD020CE6B33FCBC790B0381 |
SHA-256: | 18CF8FC991E70E69BF4CEE9423CF977B67A176EC48DAB5E58C9816B6AB6AAE8C |
SHA-512: | EA5C4AE44DD6B67EA4806A6481C020B4ABDF84713E0AC3F6B6F1BF6EF0AD450B93754BF783604FB7C9138741B2A4D6FBEA849DF793187ED02EA8B82476DC5440 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 163873 |
Entropy (8bit): | 5.058104233525069 |
Encrypted: | false |
SSDEEP: | 1536:4t04T8if0W8DsEBpy0cuJBf2rIWE5e0VUpz600I4fM:4t04/0VUpz600I4fM |
MD5: | 94994C66FEC8C3468B269DC0CC242151 |
SHA1: | EC16BD19BF4AE9BC2E2336AC409A503BBBDAACAD |
SHA-256: | 62F74B1CF824A89F03554C638E719594C309B4D8A627A758928C0516FA7890AB |
SHA-512: | 190194D1F30C8B6DFCB80F9AFDB75625FA5418A52405D81F15D8019BBD92510E817B25A3A18FEDA27D2D1231FE3921FD88FE037E1FBB1CCD08F5FE5E4742FFE3 |
Malicious: | false |
Reputation: | low |
URL: | https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 1684 |
Entropy (8bit): | 5.318018846957903 |
Encrypted: | false |
SSDEEP: | 48:QOEaEJc+ukOEagN0xsOxMaWxJc+ukOxMaW4RN0xD:QOEaEJc+ukOEagN/OxMaqJc+ukOxMadu |
MD5: | 59B1FE40E28AEF60DF779DDACFE99107 |
SHA1: | 0D0E21246AFD95787F03EB7D27661EE6602C608A |
SHA-256: | 919D078131766036DDACC4C838C200B09B14D827B21716A006525B04FD41329F |
SHA-512: | 622BAE476EAB64FF0DC0B372EC3C13CC4E990571D0ACC4AA1A8083D974DC000542E4989760E07D3326472C8FC77A84FCD24EBB326E602164D1B3FCA4AFCC2AE3 |
Malicious: | false |
Reputation: | low |
URL: | https://fonts.googleapis.com/css2?family=Poppins:wght@400;600&display=swap |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 7733 |
Entropy (8bit): | 5.7881174536426085 |
Encrypted: | false |
SSDEEP: | 192:HXvT0TZAs+9GLCH6666KC1W3I0zJCh7m/WW+P:370TS9PH6666f+tyipo |
MD5: | 917AE3740F95FC5B75FF47441282D815 |
SHA1: | FDED00B7321D1712B7D1EAFE717C9B2F04A6B8E1 |
SHA-256: | 8AAAC1B79C9F87B858B7DB0CE57F5348896F863BFAB222D00FBCC50C3DF385A2 |
SHA-512: | 50765656860B74A530AE6D863FC34741BA89DBB7CEE7FE101CB59319D0B8A22AF6CE83375187997F4B4F7DCF3EEA438808607A41BB1AB0A36DDD50B9B489C116 |
Malicious: | false |
Reputation: | low |
URL: | https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyA2KlwBX3mkFo30om9LUFYQhpqLoa_BNhE |
Preview: |
Download Network PCAP: filtered – full
- Total Packets: 152
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 18, 2025 13:39:17.805061102 CET | 49674 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 18, 2025 13:39:17.805088043 CET | 49673 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 18, 2025 13:39:17.805233002 CET | 49675 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 18, 2025 13:39:18.398843050 CET | 49676 | 80 | 192.168.2.7 | 23.199.215.203 |
Mar 18, 2025 13:39:18.398874998 CET | 49677 | 443 | 192.168.2.7 | 2.18.98.62 |
Mar 18, 2025 13:39:24.049395084 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:24.049422979 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:24.049521923 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:24.049679041 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:24.049690962 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:24.693191051 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:24.693289042 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:24.694626093 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:24.694637060 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:24.694859982 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:24.743210077 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:25.607552052 CET | 49690 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:25.607600927 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:25.607675076 CET | 49690 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:25.608068943 CET | 49691 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:25.608107090 CET | 443 | 49691 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:25.608171940 CET | 49691 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:25.608316898 CET | 49690 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:25.608334064 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:25.608499050 CET | 49691 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:25.608515024 CET | 443 | 49691 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:26.346908092 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:26.347054005 CET | 49690 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:26.348231077 CET | 49690 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:26.348244905 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:26.348459005 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:26.348721027 CET | 49690 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:26.350281000 CET | 443 | 49691 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:26.350353956 CET | 49691 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:26.350697041 CET | 49691 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:26.350706100 CET | 443 | 49691 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:26.350944996 CET | 443 | 49691 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:26.396322012 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:26.398097992 CET | 49691 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:27.216092110 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:27.216136932 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:27.216161966 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:27.216195107 CET | 49690 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:27.216211081 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:27.216257095 CET | 49690 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:27.217511892 CET | 49690 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:27.217535973 CET | 443 | 49690 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:27.250056028 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.250082970 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.250139952 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.250361919 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.250380039 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.416261911 CET | 49674 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 18, 2025 13:39:27.416266918 CET | 49673 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 18, 2025 13:39:27.416285992 CET | 49675 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 18, 2025 13:39:27.532166004 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:27.572333097 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.710078955 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.710199118 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.718600988 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.718631029 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.718940973 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.719460964 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.746016026 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.746072054 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.746102095 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.746186972 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:27.746217966 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.746315002 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:27.746323109 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.749264956 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.749317884 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:27.749330997 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.749432087 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.749483109 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:27.758152962 CET | 49689 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:39:27.758172035 CET | 443 | 49689 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:39:27.760324001 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.846438885 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.846512079 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.846548080 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.846577883 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.846594095 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.846631050 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.846673965 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.846690893 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.846698999 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.846731901 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.847101927 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.847141981 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.847177982 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.847201109 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.847208977 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.847227097 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.850991964 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.851042986 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.851048946 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.894361019 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.933804989 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.934215069 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.934251070 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.934267044 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.934282064 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.934329033 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.934374094 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.934411049 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.934413910 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.934415102 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.934422970 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.934508085 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.934514999 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.935376883 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.935415983 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.935444117 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.935466051 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.935477018 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.935486078 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.935544968 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.935858965 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.935866117 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.936100006 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.936137915 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.936162949 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.936171055 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.936206102 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.936526060 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.936563969 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.936573029 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.936585903 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.937227011 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.937275887 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.937314987 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.937323093 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.937330008 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.937355995 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.937377930 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.937412977 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.937421083 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:27.977699041 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:27.977720022 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.011015892 CET | 49676 | 80 | 192.168.2.7 | 23.199.215.203 |
Mar 18, 2025 13:39:28.011028051 CET | 49677 | 443 | 192.168.2.7 | 2.18.98.62 |
Mar 18, 2025 13:39:28.019562960 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.019615889 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.019656897 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020005941 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020052910 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.020067930 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020103931 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.020181894 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020220041 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020260096 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.020268917 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020281076 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020313025 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.020322084 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020334005 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020344019 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.020380020 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.020385027 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.020420074 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.021197081 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021248102 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.021409035 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021452904 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021461010 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.021471977 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021490097 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.021538019 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021579027 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.021588087 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021603107 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021627903 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.021634102 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021646023 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021656036 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.021682978 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021691084 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.021696091 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.021729946 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.023802042 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.023878098 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.023899078 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.023956060 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.024010897 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.024022102 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.075397968 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.106622934 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.106695890 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.106919050 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.106961966 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.106967926 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.106976032 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.107024908 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.107379913 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.107446909 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.107551098 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.107590914 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.107593060 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.107606888 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.107645035 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.108012915 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.108068943 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.108216047 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.108263016 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.108378887 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.108427048 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.108773947 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.108814001 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.108814001 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.108824015 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.108936071 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.108946085 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.108974934 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.108978987 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.108985901 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.109016895 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.109097004 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:28.109153032 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.111675978 CET | 49693 | 443 | 192.168.2.7 | 104.18.186.31 |
Mar 18, 2025 13:39:28.111696959 CET | 443 | 49693 | 104.18.186.31 | 192.168.2.7 |
Mar 18, 2025 13:39:29.413501024 CET | 49691 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:29.460328102 CET | 443 | 49691 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:29.770132065 CET | 443 | 49691 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:29.770205975 CET | 443 | 49691 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:29.770469904 CET | 49691 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:29.771091938 CET | 49691 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:29.771112919 CET | 443 | 49691 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:29.773646116 CET | 49701 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:29.773694038 CET | 443 | 49701 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:29.773783922 CET | 49701 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:29.773925066 CET | 49701 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:29.773941994 CET | 443 | 49701 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:30.472292900 CET | 443 | 49701 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:30.472712994 CET | 49701 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:30.472740889 CET | 443 | 49701 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:30.472904921 CET | 49701 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:30.472912073 CET | 443 | 49701 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:30.802263975 CET | 443 | 49701 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:30.802323103 CET | 443 | 49701 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:30.802402020 CET | 49701 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:30.803239107 CET | 49701 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:30.803261042 CET | 443 | 49701 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:31.088679075 CET | 49702 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:31.088721991 CET | 443 | 49702 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:31.088824034 CET | 49702 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:31.088958979 CET | 49702 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:31.088972092 CET | 443 | 49702 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:31.772022963 CET | 443 | 49702 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:31.772118092 CET | 49702 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:31.772676945 CET | 49702 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:31.772686005 CET | 443 | 49702 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:31.772914886 CET | 443 | 49702 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:31.773236036 CET | 49702 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:31.820324898 CET | 443 | 49702 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:32.099610090 CET | 443 | 49702 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:32.099675894 CET | 443 | 49702 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:32.099808931 CET | 49702 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:32.101234913 CET | 49702 | 443 | 192.168.2.7 | 194.65.141.203 |
Mar 18, 2025 13:39:32.101248026 CET | 443 | 49702 | 194.65.141.203 | 192.168.2.7 |
Mar 18, 2025 13:39:37.642474890 CET | 49705 | 80 | 192.168.2.7 | 172.217.18.3 |
Mar 18, 2025 13:39:37.647146940 CET | 80 | 49705 | 172.217.18.3 | 192.168.2.7 |
Mar 18, 2025 13:39:37.647214890 CET | 49705 | 80 | 192.168.2.7 | 172.217.18.3 |
Mar 18, 2025 13:39:37.647344112 CET | 49705 | 80 | 192.168.2.7 | 172.217.18.3 |
Mar 18, 2025 13:39:37.651930094 CET | 80 | 49705 | 172.217.18.3 | 192.168.2.7 |
Mar 18, 2025 13:39:38.282681942 CET | 80 | 49705 | 172.217.18.3 | 192.168.2.7 |
Mar 18, 2025 13:39:38.289474010 CET | 49705 | 80 | 192.168.2.7 | 172.217.18.3 |
Mar 18, 2025 13:39:38.294553995 CET | 80 | 49705 | 172.217.18.3 | 192.168.2.7 |
Mar 18, 2025 13:39:38.510941982 CET | 80 | 49705 | 172.217.18.3 | 192.168.2.7 |
Mar 18, 2025 13:39:38.555253029 CET | 49705 | 80 | 192.168.2.7 | 172.217.18.3 |
Mar 18, 2025 13:39:38.687258959 CET | 49672 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 18, 2025 13:39:38.687305927 CET | 443 | 49672 | 2.23.227.208 | 192.168.2.7 |
Mar 18, 2025 13:39:55.243401051 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 18, 2025 13:39:55.551395893 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 18, 2025 13:39:56.162090063 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 18, 2025 13:39:57.374711990 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 18, 2025 13:39:59.781774044 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 18, 2025 13:40:03.817420006 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 18, 2025 13:40:04.126897097 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 18, 2025 13:40:04.593537092 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 18, 2025 13:40:04.739459991 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 18, 2025 13:40:05.954183102 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 18, 2025 13:40:08.361027956 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 18, 2025 13:40:13.172281027 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 18, 2025 13:40:14.206904888 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 18, 2025 13:40:22.775218010 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 18, 2025 13:40:24.097201109 CET | 49717 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:40:24.097259998 CET | 443 | 49717 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:40:24.097330093 CET | 49717 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:40:24.097969055 CET | 49717 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:40:24.097985983 CET | 443 | 49717 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:40:24.772699118 CET | 443 | 49717 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:40:24.773062944 CET | 49717 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:40:24.773096085 CET | 443 | 49717 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:40:34.679512024 CET | 443 | 49717 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:40:34.679567099 CET | 443 | 49717 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:40:34.679647923 CET | 49717 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:40:36.565510035 CET | 49717 | 443 | 192.168.2.7 | 142.250.186.132 |
Mar 18, 2025 13:40:36.565562010 CET | 443 | 49717 | 142.250.186.132 | 192.168.2.7 |
Mar 18, 2025 13:40:39.062686920 CET | 49705 | 80 | 192.168.2.7 | 172.217.18.3 |
Mar 18, 2025 13:40:39.067586899 CET | 80 | 49705 | 172.217.18.3 | 192.168.2.7 |
Mar 18, 2025 13:40:39.067672014 CET | 49705 | 80 | 192.168.2.7 | 172.217.18.3 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 18, 2025 13:39:19.590564966 CET | 53 | 55951 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:19.625790119 CET | 53 | 65493 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:20.633701086 CET | 53 | 65263 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:20.717835903 CET | 53 | 57414 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:24.041640997 CET | 62644 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 18, 2025 13:39:24.041766882 CET | 60275 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 18, 2025 13:39:24.048427105 CET | 53 | 62644 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:24.048455000 CET | 53 | 60275 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:25.348129034 CET | 51355 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 18, 2025 13:39:25.348289013 CET | 50649 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 18, 2025 13:39:25.605626106 CET | 53 | 50649 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:25.606616020 CET | 53 | 51355 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:27.241935968 CET | 58662 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 18, 2025 13:39:27.242280006 CET | 63417 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 18, 2025 13:39:27.247616053 CET | 53 | 59079 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:27.248918056 CET | 53 | 63417 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:27.249258041 CET | 53 | 58662 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:27.365463972 CET | 53 | 61262 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:28.204948902 CET | 53 | 55221 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:30.807383060 CET | 52186 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 18, 2025 13:39:30.807678938 CET | 54844 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 18, 2025 13:39:31.037261963 CET | 53 | 54844 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:31.087984085 CET | 53 | 52186 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:37.707801104 CET | 53 | 61283 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:39:56.640551090 CET | 53 | 64430 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:40:19.327446938 CET | 53 | 64345 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:40:19.479890108 CET | 53 | 51385 | 1.1.1.1 | 192.168.2.7 |
Mar 18, 2025 13:40:22.895045996 CET | 53 | 51047 | 1.1.1.1 | 192.168.2.7 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Mar 18, 2025 13:39:24.041640997 CET | 192.168.2.7 | 1.1.1.1 | 0xd7bf | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 18, 2025 13:39:24.041766882 CET | 192.168.2.7 | 1.1.1.1 | 0x2d83 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 18, 2025 13:39:25.348129034 CET | 192.168.2.7 | 1.1.1.1 | 0xfa13 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 18, 2025 13:39:25.348289013 CET | 192.168.2.7 | 1.1.1.1 | 0x2ebd | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 18, 2025 13:39:27.241935968 CET | 192.168.2.7 | 1.1.1.1 | 0xe06e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 18, 2025 13:39:27.242280006 CET | 192.168.2.7 | 1.1.1.1 | 0x769c | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 18, 2025 13:39:30.807383060 CET | 192.168.2.7 | 1.1.1.1 | 0xa66d | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 18, 2025 13:39:30.807678938 CET | 192.168.2.7 | 1.1.1.1 | 0xeb9e | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Mar 18, 2025 13:39:24.048427105 CET | 1.1.1.1 | 192.168.2.7 | 0xd7bf | No error (0) | 142.250.186.132 | A (IP address) | IN (0x0001) | false | ||
Mar 18, 2025 13:39:24.048455000 CET | 1.1.1.1 | 192.168.2.7 | 0x2d83 | No error (0) | 65 | IN (0x0001) | false | |||
Mar 18, 2025 13:39:25.606616020 CET | 1.1.1.1 | 192.168.2.7 | 0xfa13 | No error (0) | 194.65.141.203 | A (IP address) | IN (0x0001) | false | ||
Mar 18, 2025 13:39:27.248918056 CET | 1.1.1.1 | 192.168.2.7 | 0x769c | No error (0) | cdn.jsdelivr.net.cdn.cloudflare.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 18, 2025 13:39:27.249258041 CET | 1.1.1.1 | 192.168.2.7 | 0xe06e | No error (0) | cdn.jsdelivr.net.cdn.cloudflare.net | CNAME (Canonical name) | IN (0x0001) | false | ||
Mar 18, 2025 13:39:27.249258041 CET | 1.1.1.1 | 192.168.2.7 | 0xe06e | No error (0) | 104.18.186.31 | A (IP address) | IN (0x0001) | false | ||
Mar 18, 2025 13:39:27.249258041 CET | 1.1.1.1 | 192.168.2.7 | 0xe06e | No error (0) | 104.18.187.31 | A (IP address) | IN (0x0001) | false | ||
Mar 18, 2025 13:39:31.087984085 CET | 1.1.1.1 | 192.168.2.7 | 0xa66d | No error (0) | 194.65.141.203 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
0 | 192.168.2.7 | 49705 | 172.217.18.3 | 80 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Mar 18, 2025 13:39:37.647344112 CET | 202 | OUT | |
Mar 18, 2025 13:39:38.282681942 CET | 222 | IN | |
Mar 18, 2025 13:39:38.289474010 CET | 200 | OUT | |
Mar 18, 2025 13:39:38.510941982 CET | 222 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.7 | 49690 | 194.65.141.203 | 443 | 5456 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-18 12:39:26 UTC | 691 | OUT | |
2025-03-18 12:39:27 UTC | 404 | IN | |
2025-03-18 12:39:27 UTC | 9929 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.7 | 49689 | 142.250.186.132 | 443 | 5456 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-18 12:39:27 UTC | 575 | OUT | |
2025-03-18 12:39:27 UTC | 1303 | IN | |
2025-03-18 12:39:27 UTC | 87 | IN | |
2025-03-18 12:39:27 UTC | 1390 | IN | |
2025-03-18 12:39:27 UTC | 1390 | IN | |
2025-03-18 12:39:27 UTC | 819 | IN | |
2025-03-18 12:39:27 UTC | 1390 | IN | |
2025-03-18 12:39:27 UTC | 1390 | IN | |
2025-03-18 12:39:27 UTC | 1281 | IN | |
2025-03-18 12:39:27 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.7 | 49693 | 104.18.186.31 | 443 | 5456 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-18 12:39:27 UTC | 611 | OUT | |
2025-03-18 12:39:27 UTC | 1094 | IN | |
2025-03-18 12:39:27 UTC | 275 | IN | |
2025-03-18 12:39:27 UTC | 1369 | IN | |
2025-03-18 12:39:27 UTC | 1369 | IN | |
2025-03-18 12:39:27 UTC | 1369 | IN | |
2025-03-18 12:39:27 UTC | 1369 | IN | |
2025-03-18 12:39:27 UTC | 1369 | IN | |
2025-03-18 12:39:27 UTC | 1369 | IN | |
2025-03-18 12:39:27 UTC | 1369 | IN | |
2025-03-18 12:39:27 UTC | 1369 | IN | |
2025-03-18 12:39:27 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.7 | 49691 | 194.65.141.203 | 443 | 5456 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-18 12:39:29 UTC | 660 | OUT | |
2025-03-18 12:39:29 UTC | 404 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.7 | 49701 | 194.65.141.203 | 443 | 5456 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-18 12:39:30 UTC | 701 | OUT | |
2025-03-18 12:39:30 UTC | 308 | IN | |
2025-03-18 12:39:30 UTC | 897 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.7 | 49702 | 194.65.141.203 | 443 | 5456 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-18 12:39:31 UTC | 472 | OUT | |
2025-03-18 12:39:32 UTC | 308 | IN | |
2025-03-18 12:39:32 UTC | 897 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 08:39:17 |
Start date: | 18/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff778810000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 1 |
Start time: | 08:39:18 |
Start date: | 18/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff778810000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 4 |
Start time: | 08:39:24 |
Start date: | 18/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff778810000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |