Windows
Analysis Report
https://helptrzer-hardware.webflow.io/
Overview
Detection
Score: | 56 |
Range: | 0 - 100 |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
chrome.exe (PID: 5140 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --s tart-maxim ized "abou t:blank" MD5: E81F54E6C1129887AEA47E7D092680BF) chrome.exe (PID: 5452 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --no-pre-r ead-main-d ll --field -trial-han dle=2352,i ,832989133 2925224108 ,408817958 1857448581 ,262144 -- disable-fe atures=Opt imizationG uideModelD ownloading ,Optimizat ionHints,O ptimizatio nHintsFetc hing,Optim izationTar getPredict ion --vari ations-see d-version= 20250306-1 83004.4290 00 --mojo- platform-c hannel-han dle=2432 / prefetch:3 MD5: E81F54E6C1129887AEA47E7D092680BF)
chrome.exe (PID: 6940 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://helpt rzer-hardw are.webflo w.io/" MD5: E81F54E6C1129887AEA47E7D092680BF)
- cleanup
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_HtmlPhish_64 | Yara detected HtmlPhish_64 | Joe Security |
- • AV Detection
- • Phishing
- • Compliance
- • Networking
- • System Summary
Click to jump to signature section
AV Detection |
---|
Source: | Avira URL Cloud: |
Phishing |
---|
Source: | File source: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior | ||
Source: | File created: | Jump to behavior |
Source: | File deleted: | Jump to behavior |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 2 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 1 File Deletion | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 3 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
100% | Avira URL Cloud | phishing |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
d3e54v103j8qbb.cloudfront.net | 52.222.232.39 | true | false | high | |
assets-global.website-files.com | 104.18.34.201 | true | false | high | |
cdn.prod.website-files.com | 104.18.161.117 | true | false | high | |
helptrzer-hardware.webflow.io | 104.18.36.248 | true | false | unknown | |
www.google.com | 142.250.181.228 | true | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false | high | ||
false | high |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high | |||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
104.18.36.248 | helptrzer-hardware.webflow.io | United States | 13335 | CLOUDFLARENETUS | false | |
52.222.232.39 | d3e54v103j8qbb.cloudfront.net | United States | 16509 | AMAZON-02US | false | |
104.18.160.117 | unknown | United States | 13335 | CLOUDFLARENETUS | false | |
104.18.34.201 | assets-global.website-files.com | United States | 13335 | CLOUDFLARENETUS | false | |
104.18.161.117 | cdn.prod.website-files.com | United States | 13335 | CLOUDFLARENETUS | false | |
142.250.181.228 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.16 |
192.168.2.7 |
192.168.2.4 |
Joe Sandbox version: | 42.0.0 Malachite |
Analysis ID: | 1642651 |
Start date and time: | 2025-03-19 09:52:53 +01:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 6s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://helptrzer-hardware.webflow.io/ |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 21 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal56.phis.win@23/18@12/9 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis
(whitelisted): MpCmdRun.exe, a udiodg.exe, sppsvc.exe, Runtim eBroker.exe, ShellExperienceHo st.exe, SIHClient.exe, SgrmBro ker.exe, backgroundTaskHost.ex e, conhost.exe, svchost.exe - Excluded IPs from analysis (wh
itelisted): 142.250.185.99, 17 2.217.16.206, 142.250.185.78, 74.125.206.84, 172.217.23.110, 216.58.206.78, 216.58.212.174 , 142.250.185.110, 172.217.18. 14, 216.58.206.46, 142.250.186 .46, 142.250.186.35, 142.250.1 84.206, 34.104.35.123, 23.60.2 03.209, 20.109.210.53 - Excluded domains from analysis
(whitelisted): fs.microsoft.c om, clients2.google.com, edged l.me.gvt1.com, accounts.google .com, redirector.gvt1.com, sls cr.update.microsoft.com, updat e.googleapis.com, clientservic es.googleapis.com, clients.l.g oogle.com, fe3cr.delivery.mp.m icrosoft.com - Not all processes where analyz
ed, report is missing behavior information - Report size getting too big, t
oo many NtOpenFile calls found . - Some HTTPS proxied raw data pa
ckets have been limited to 10 per session. Please view the P CAPs for the complete data. - VT rate limit hit for: https:
//helptrzer-hardware.webflow.i o/
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 6684 |
Entropy (8bit): | 7.752204071173577 |
Encrypted: | false |
SSDEEP: | 192:5Bbi8FdZP0mYIjZcwOSwy90B+hpi8kPVtww:De8DymvjQYrhpGH |
MD5: | 95778546493345DD2E3F1E48583B371D |
SHA1: | BCA90D6DC7E7F8E231036E0C3D185C429B09A3C6 |
SHA-256: | 5C635BBBB3BFC63910E29A0BE9FF5EE0990CCA2D3AAA56E4F4CD2C480C81B7DF |
SHA-512: | 8A267663728984CD44C73A32BA0D7DE0A8A626D05D7E45009E1A6031E49B29D6FB9CD9B8E07782B5AE5371F9C90D4E1FB10B8D7787B148663424D899121FDC86 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 1792 |
Entropy (8bit): | 6.019348476983808 |
Encrypted: | false |
SSDEEP: | 48:p/hP+drAdRW37aktiyC2xCe69xqYGCRk7NOzPI4Ek:RSQw37anyC+CDGGccA4f |
MD5: | 0F48EA696FDF31DABB72FD4A472E4A93 |
SHA1: | A24862DAB4B7146073F74165D733E8EDA45C5185 |
SHA-256: | 57645239B1AECD3BFF0EDF2C489A55221855D4DD690541F57129449D34DC2CE6 |
SHA-512: | 1A32EE516B00800EBE49A17D0DC05A0A21589016A28A6B0CA2934A951DF0E09CDF46B75A9DE7AF62435807DF1EEB10F128284E03AD84A324F7F71EE9AD191CBF |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 66 |
Entropy (8bit): | 3.9364303497856072 |
Encrypted: | false |
SSDEEP: | 3:SQ/SHHHWbcM8VH5DM/4+MlRddVGWSDn:SQ/+HNMEZR+MlPdVGWSD |
MD5: | ABB7EA6FFEFB13622CB47C36A07B9175 |
SHA1: | E593E3B6161F9DF88BACBEF7987BF76F3A886FD5 |
SHA-256: | 6AC28AE1C8DFDE9830AC0B6C6DF657731FB2C895701AFE13F5682F82C5C69137 |
SHA-512: | 5F514012BDD35FB413288E161BD0277EB89AC8B0204C1D63603DDEF119946E77D71DCBFD5D2A7694D945595029538F43D0C00DABC2CE2820528EFAEBB121018B |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 97 |
Entropy (8bit): | 4.60145350054745 |
Encrypted: | false |
SSDEEP: | 3:rR6TAulhFphifF1mYTdFKS1oMUm:F6VlMXdTHKS1oVm |
MD5: | A6B4EE3137180CAD95E7BEFB62CBF122 |
SHA1: | FA26A56140944B21D6A1ECC7FB3EFC0D97D3EF23 |
SHA-256: | A1742392406FF6DD5BFD1B2C080EB66BBD7474561A62FD8AB3CCD8300597135D |
SHA-512: | 35AE8B940797600B727DACED0ACF856263D219697DB923747D745D990C8798ADA5159AC36544A6EC5952F74809D5489A371C6BB44325DEE7BBE52965240188E0 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 7422 |
Entropy (8bit): | 5.070572988249595 |
Encrypted: | false |
SSDEEP: | 192:I+0f6TueVE9GihNKybjrbgfJsSCiJig+pBWh3zJmOlwy1T:R0f6TudccKybbghsSCeig+vW31m7YT |
MD5: | BA9EB9F524A133FEB268463CE7BE918D |
SHA1: | B91835A18402B8652939B5A25F8DDF1DBD0418A0 |
SHA-256: | 5103766F23C8FE7FD12DC97F4B8671BC954943BCECFCA4842346E9F2F5FB27AD |
SHA-512: | 8FC4B4C4EDDC5EF2ADDAD4FBC52A289C5F59018AAD09A8891AE0F4457908153632B6575155A2256EA13754C1EB329AC9F93050316A3F27429B9CFAC06D9725A0 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 2595 |
Entropy (8bit): | 5.352493100903974 |
Encrypted: | false |
SSDEEP: | 48:YjsyZ+XVXzu9LgnC4iGba2o2qb2Lr/1VPBG/5gqpb8:KsyZ+XVju9LT2qb21VpG/5l58 |
MD5: | 7EF3E142093DEA4376D34DA4F1A13135 |
SHA1: | 938305CB18C12A05997EAF86A3A3DCE017966BE5 |
SHA-256: | 223599020E00D406B63B27FBB1E9EF1A558931EE5D73300EBF217E92C79B59DA |
SHA-512: | 6346A307AAE839B62FA294D6AD5B84BB18D32D9630183513C15564937BC8100F47CCB273AAC47685142A76A287DA18B410E4A43524C35AF715B7839813194C84 |
Malicious: | false |
Reputation: | low |
URL: | https://helptrzer-hardware.webflow.io/ |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 37328 |
Entropy (8bit): | 5.2314215573382805 |
Encrypted: | false |
SSDEEP: | 768:oSh7f7A1RdqMrFyF54mkxWaIi1aUuF9ZlNF+FJFGFI9fmV/3P0mq1izJVmJ:oSe1Rdq44UYcDoT/fC1b |
MD5: | 69DC8313645B96350CCBC564D1C4EBAE |
SHA1: | F95DB654D3B9DBD9A4B99D81F2D6CF61489ED6C9 |
SHA-256: | B8431735CC0D5323776DBF1A94B034D321E82EC2D3995E9185CA7B9601C8E960 |
SHA-512: | 51F3647296D3A426E2B75E959C0F37F720835459503CF07B9B6F611E28AB72D09674E86275D13F1F509EEC0ABB0E39C5E65EA87D633D44E4DB5708617F206955 |
Malicious: | false |
Reputation: | low |
URL: | https://assets-global.website-files.com/65fc1c94ff5f9b998034e801/css/helptrzer-hardware.webflow.69dc83136.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 89476 |
Entropy (8bit): | 5.2896589255084425 |
Encrypted: | false |
SSDEEP: | 1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1 |
MD5: | DC5E7F18C8D36AC1D3D4753A87C98D0A |
SHA1: | C8E1C8B386DC5B7A9184C763C88D19A346EB3342 |
SHA-256: | F7F6A5894F1D19DDAD6FA392B2ECE2C5E578CBF7DA4EA805B6885EB6985B6E3D |
SHA-512: | 6CB4F4426F559C06190DF97229C05A436820D21498350AC9F118A5625758435171418A022ED523BAE46E668F9F8EA871FEAB6AFF58AD2740B67A30F196D65516 |
Malicious: | false |
Reputation: | low |
URL: | https://d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=65fc1c94ff5f9b998034e801 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 37354 |
Entropy (8bit): | 5.441030813994744 |
Encrypted: | false |
SSDEEP: | 768:G5p9WeNujJ4zgTyxOv5GAUdxc4vyqLgxwEWpA8pziQfsJeG:G5p9WeNul4zC5jMXyqpI |
MD5: | 4E8135D87E56EBF7D55500945D58C45A |
SHA1: | C6EE3344D1A7D669E00E275878CDAD970DF4EB60 |
SHA-256: | 18A0ED9CF15CB5AD3CB33184B71DA4589141D9361580881AB2A1A4C16390240D |
SHA-512: | 028F8F5639FE71221DC78B2D1D572D4D7A0E9C42A18FF3030034F903951D6098216F6B245FCE2D39B8FED2E5725D5FD8B1B75677579A2DF893043C9415984601 |
Malicious: | false |
Reputation: | low |
URL: | https://assets-global.website-files.com/65fc1c94ff5f9b998034e801/js/webflow.4e8135d87.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 293 |
Entropy (8bit): | 6.1409311245963485 |
Encrypted: | false |
SSDEEP: | 6:6v/lhPkUOl/D/kSYmfOLy9V/Hq909joL1u4nUpwXnR/OoLp:6v/7sPl/D/kSYmf395HtsLOwROW |
MD5: | FADD4FE5BD3A37A9A35FD4C4DC24C58F |
SHA1: | 1DD1BD23F6CA5546511E66C2A6229D1B545C7C5A |
SHA-256: | CC0E7CF8B4F9459E1BB5AFBA90EFAF688C0BA7169B2E1C636D13D45C9D92ECF4 |
SHA-512: | 54B4B37CD10903087C541B6A14975310480061B27B282EC24CED74CCA046A8975D8DC4A873FD754474BA2D214D4FA8CEEEA1BFEF1D30D2283670A713B0750563 |
Malicious: | false |
Reputation: | low |
URL: | https://cdn.prod.website-files.com/65fc1bb1d292e9741e603c24/65fc1c6931cf9a313672d6ea_favicon.png |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 293 |
Entropy (8bit): | 6.1409311245963485 |
Encrypted: | false |
SSDEEP: | 6:6v/lhPkUOl/D/kSYmfOLy9V/Hq909joL1u4nUpwXnR/OoLp:6v/7sPl/D/kSYmf395HtsLOwROW |
MD5: | FADD4FE5BD3A37A9A35FD4C4DC24C58F |
SHA1: | 1DD1BD23F6CA5546511E66C2A6229D1B545C7C5A |
SHA-256: | CC0E7CF8B4F9459E1BB5AFBA90EFAF688C0BA7169B2E1C636D13D45C9D92ECF4 |
SHA-512: | 54B4B37CD10903087C541B6A14975310480061B27B282EC24CED74CCA046A8975D8DC4A873FD754474BA2D214D4FA8CEEEA1BFEF1D30D2283670A713B0750563 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 73186 |
Entropy (8bit): | 7.772790182071652 |
Encrypted: | false |
SSDEEP: | 1536:SfFKClsfpGdPLPcneAvEMYdT1TgeNEf892QnnnnnnnnnrOkC1:SkSsqPrc3YXseNEjQnnnnnnnnnrvC1 |
MD5: | 0FCAB188FBFF10FC3B776361043F8B8C |
SHA1: | BB5D788EE38A31F0DA1BF29A52F92E99487CB8F4 |
SHA-256: | 769B56B6016256A6A39E3B308A0A7333CB5B1229B1E2714EA992F3B70A9E5FD8 |
SHA-512: | 73032F4000DD23EA4A71542985475DFD740033814C1896C5DE5260BC1DBA6A9819A82AA74B8152EA2F175DFA8F5747A9897269F482C770C362E6F6A8A57D5B86 |
Malicious: | false |
Reputation: | low |
URL: | https://assets-global.website-files.com/65fc1c94ff5f9b998034e801/65fc1c94ff5f9b998034e803_main-banner.JPG |
Preview: |
Download Network PCAP: filtered – full
- Total Packets: 187
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 19, 2025 09:53:43.698759079 CET | 49680 | 443 | 192.168.2.4 | 204.79.197.222 |
Mar 19, 2025 09:53:51.616117954 CET | 49671 | 443 | 192.168.2.4 | 204.79.197.203 |
Mar 19, 2025 09:53:52.012013912 CET | 49671 | 443 | 192.168.2.4 | 204.79.197.203 |
Mar 19, 2025 09:53:52.663371086 CET | 49671 | 443 | 192.168.2.4 | 204.79.197.203 |
Mar 19, 2025 09:53:53.307404041 CET | 49680 | 443 | 192.168.2.4 | 204.79.197.222 |
Mar 19, 2025 09:53:53.916790009 CET | 49671 | 443 | 192.168.2.4 | 204.79.197.203 |
Mar 19, 2025 09:53:56.034862995 CET | 49732 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:53:56.034913063 CET | 443 | 49732 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:53:56.035048962 CET | 49732 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:53:56.035202980 CET | 49732 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:53:56.035222054 CET | 443 | 49732 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:53:56.070200920 CET | 443 | 49732 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:53:56.070625067 CET | 49732 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:53:56.071365118 CET | 49732 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:53:56.071590900 CET | 443 | 49732 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:53:56.119913101 CET | 49732 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:53:56.322820902 CET | 49671 | 443 | 192.168.2.4 | 204.79.197.203 |
Mar 19, 2025 09:53:57.570054054 CET | 49734 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.570106983 CET | 443 | 49734 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.570207119 CET | 49734 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.570539951 CET | 49735 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.570574045 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.570652962 CET | 49735 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.570857048 CET | 49735 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.570868015 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.570976973 CET | 49734 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.570993900 CET | 443 | 49734 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.602443933 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.602516890 CET | 49735 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.603557110 CET | 49735 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.603954077 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.606559038 CET | 443 | 49734 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.606789112 CET | 49734 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.607099056 CET | 49735 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.608017921 CET | 49734 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.608851910 CET | 443 | 49734 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.652335882 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.653985023 CET | 49734 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.692079067 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.692132950 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.692220926 CET | 49735 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.692245007 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.692262888 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.692322969 CET | 49735 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.694442034 CET | 49735 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:53:57.694462061 CET | 443 | 49735 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:53:57.766427040 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.766479015 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.766536951 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.766685963 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.766696930 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.766915083 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.766962051 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.767023087 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.767124891 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.767230988 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.767244101 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.767251015 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.767313004 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.767448902 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.767488003 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.800764084 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.800841093 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.802383900 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.802625895 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.802866936 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.802975893 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.803045988 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.803857088 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.804182053 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.804466963 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.806262016 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.806319952 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.807451963 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.807476044 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.807959080 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.809256077 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.815807104 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.815834045 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.815856934 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.815917015 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.815962076 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.816001892 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.816026926 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.820533991 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.820558071 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.820619106 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.820640087 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.820687056 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.820864916 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.822357893 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.822384119 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.822421074 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.822436094 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.822479963 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.822499990 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.824357986 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.824381113 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.824436903 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.824450970 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.824485064 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.824538946 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.826069117 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.826087952 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.826126099 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.826152086 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.826164961 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.826195002 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.826199055 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.826231003 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.826255083 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.828579903 CET | 49736 | 443 | 192.168.2.4 | 52.222.232.39 |
Mar 19, 2025 09:53:57.828619003 CET | 443 | 49736 | 52.222.232.39 | 192.168.2.4 |
Mar 19, 2025 09:53:57.834852934 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.834949970 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.835025072 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.835181952 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.835217953 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.844346046 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.852336884 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.861850023 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.862183094 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.862909079 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.862942934 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.862998009 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863043070 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863065958 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863092899 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863106012 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.863137007 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863147020 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.863204002 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863250017 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.863256931 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863575935 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863610983 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863648891 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.863655090 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.863688946 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.864252090 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.867670059 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.867702961 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.867719889 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.867726088 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.867767096 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.867774010 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.868069887 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.868100882 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.868110895 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.868115902 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.868149042 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.868935108 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.868978977 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.869013071 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.869044065 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.869050026 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.869083881 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.869915962 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.869985104 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870028019 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.870033026 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870292902 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870357037 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870404959 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870424986 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.870451927 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870466948 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870512009 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.870552063 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870649099 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.870663881 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870670080 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870703936 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870712042 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.870716095 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870754957 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.870759010 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870820045 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.870893955 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.870951891 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.871030092 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.871042967 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.871409893 CET | 49737 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.871423006 CET | 443 | 49737 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.874869108 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.874927044 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.874938965 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.875041008 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.875097036 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.875108957 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.875199080 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.875247955 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.875260115 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.875384092 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.875463009 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.875473976 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.875561953 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.875746012 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.875757933 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.876355886 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.876419067 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.876430988 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.876521111 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.876576900 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.876588106 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.877280951 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.877340078 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.877351999 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.877444983 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.877489090 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.877502918 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.879584074 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.879637003 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.879648924 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.879741907 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.879785061 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.879796982 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.879900932 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.879956007 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.879966974 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.880228043 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.880286932 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.880297899 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.880409002 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.880495071 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.880513906 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.880527973 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.880800962 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.881035089 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.881187916 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.881242990 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.881254911 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.881814003 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.881866932 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.881879091 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.881944895 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.881997108 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.882009029 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.882061005 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.882801056 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.882903099 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.882956028 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.882966995 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.883019924 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.883021116 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.883038998 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.883080006 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.883744955 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.883830070 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.883888960 CET | 49738 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.883934975 CET | 443 | 49738 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.930880070 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.930958033 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.931003094 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.931046963 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.931055069 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.931096077 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.931116104 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.931188107 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.931230068 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.931237936 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.931313038 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.931360006 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.931365013 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.931375027 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.931503057 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.932014942 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.935533047 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.935579062 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.935601950 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.935610056 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.935662031 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.935668945 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.935903072 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.935946941 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.935946941 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.935959101 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.935997963 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.936007023 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.936758041 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.936789989 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.936814070 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.936822891 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.936863899 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.936871052 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.937556028 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.937628031 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.937653065 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.937689066 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.937737942 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.937747002 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.937784910 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.937875986 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.937882900 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.937897921 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:57.937947035 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.938831091 CET | 49739 | 443 | 192.168.2.4 | 104.18.34.201 |
Mar 19, 2025 09:53:57.938848972 CET | 443 | 49739 | 104.18.34.201 | 192.168.2.4 |
Mar 19, 2025 09:53:58.057524920 CET | 49741 | 443 | 192.168.2.4 | 104.18.161.117 |
Mar 19, 2025 09:53:58.057594061 CET | 443 | 49741 | 104.18.161.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.057706118 CET | 49741 | 443 | 192.168.2.4 | 104.18.161.117 |
Mar 19, 2025 09:53:58.058197021 CET | 49741 | 443 | 192.168.2.4 | 104.18.161.117 |
Mar 19, 2025 09:53:58.058231115 CET | 443 | 49741 | 104.18.161.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.092475891 CET | 443 | 49741 | 104.18.161.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.092540979 CET | 49741 | 443 | 192.168.2.4 | 104.18.161.117 |
Mar 19, 2025 09:53:58.093648911 CET | 49741 | 443 | 192.168.2.4 | 104.18.161.117 |
Mar 19, 2025 09:53:58.093981981 CET | 443 | 49741 | 104.18.161.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.094300032 CET | 49741 | 443 | 192.168.2.4 | 104.18.161.117 |
Mar 19, 2025 09:53:58.136343956 CET | 443 | 49741 | 104.18.161.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.159918070 CET | 443 | 49741 | 104.18.161.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.160008907 CET | 443 | 49741 | 104.18.161.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.160259962 CET | 49741 | 443 | 192.168.2.4 | 104.18.161.117 |
Mar 19, 2025 09:53:58.165169954 CET | 49741 | 443 | 192.168.2.4 | 104.18.161.117 |
Mar 19, 2025 09:53:58.165199995 CET | 443 | 49741 | 104.18.161.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.196078062 CET | 49744 | 443 | 192.168.2.4 | 104.18.160.117 |
Mar 19, 2025 09:53:58.196135044 CET | 443 | 49744 | 104.18.160.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.196214914 CET | 49744 | 443 | 192.168.2.4 | 104.18.160.117 |
Mar 19, 2025 09:53:58.196361065 CET | 49744 | 443 | 192.168.2.4 | 104.18.160.117 |
Mar 19, 2025 09:53:58.196388006 CET | 443 | 49744 | 104.18.160.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.223634958 CET | 443 | 49744 | 104.18.160.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.223716021 CET | 49744 | 443 | 192.168.2.4 | 104.18.160.117 |
Mar 19, 2025 09:53:58.224126101 CET | 49744 | 443 | 192.168.2.4 | 104.18.160.117 |
Mar 19, 2025 09:53:58.224524021 CET | 443 | 49744 | 104.18.160.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.224742889 CET | 49744 | 443 | 192.168.2.4 | 104.18.160.117 |
Mar 19, 2025 09:53:58.272330999 CET | 443 | 49744 | 104.18.160.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.289700985 CET | 443 | 49744 | 104.18.160.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.289788008 CET | 443 | 49744 | 104.18.160.117 | 192.168.2.4 |
Mar 19, 2025 09:53:58.290154934 CET | 49744 | 443 | 192.168.2.4 | 104.18.160.117 |
Mar 19, 2025 09:53:58.290499926 CET | 49744 | 443 | 192.168.2.4 | 104.18.160.117 |
Mar 19, 2025 09:53:58.290529013 CET | 443 | 49744 | 104.18.160.117 | 192.168.2.4 |
Mar 19, 2025 09:54:00.135806084 CET | 49678 | 443 | 192.168.2.4 | 20.189.173.27 |
Mar 19, 2025 09:54:00.447901011 CET | 49678 | 443 | 192.168.2.4 | 20.189.173.27 |
Mar 19, 2025 09:54:01.057466030 CET | 49678 | 443 | 192.168.2.4 | 20.189.173.27 |
Mar 19, 2025 09:54:01.135437965 CET | 49671 | 443 | 192.168.2.4 | 204.79.197.203 |
Mar 19, 2025 09:54:02.261035919 CET | 49678 | 443 | 192.168.2.4 | 20.189.173.27 |
Mar 19, 2025 09:54:04.667278051 CET | 49678 | 443 | 192.168.2.4 | 20.189.173.27 |
Mar 19, 2025 09:54:06.068030119 CET | 443 | 49732 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:54:06.068085909 CET | 443 | 49732 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:54:06.068250895 CET | 49732 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:54:07.998275042 CET | 49732 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:54:07.998305082 CET | 443 | 49732 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:54:09.480472088 CET | 49678 | 443 | 192.168.2.4 | 20.189.173.27 |
Mar 19, 2025 09:54:10.745075941 CET | 49671 | 443 | 192.168.2.4 | 204.79.197.203 |
Mar 19, 2025 09:54:12.591790915 CET | 443 | 49734 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:54:12.591854095 CET | 443 | 49734 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:54:12.591995955 CET | 49734 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:54:14.021521091 CET | 49734 | 443 | 192.168.2.4 | 104.18.36.248 |
Mar 19, 2025 09:54:14.021553993 CET | 443 | 49734 | 104.18.36.248 | 192.168.2.4 |
Mar 19, 2025 09:54:19.086042881 CET | 49678 | 443 | 192.168.2.4 | 20.189.173.27 |
Mar 19, 2025 09:54:35.400899887 CET | 49715 | 80 | 192.168.2.4 | 142.250.185.67 |
Mar 19, 2025 09:54:35.400959015 CET | 49716 | 80 | 192.168.2.4 | 199.232.210.172 |
Mar 19, 2025 09:54:35.401060104 CET | 49717 | 80 | 192.168.2.4 | 199.232.210.172 |
Mar 19, 2025 09:54:35.405972958 CET | 80 | 49715 | 142.250.185.67 | 192.168.2.4 |
Mar 19, 2025 09:54:35.406040907 CET | 49715 | 80 | 192.168.2.4 | 142.250.185.67 |
Mar 19, 2025 09:54:35.406420946 CET | 80 | 49716 | 199.232.210.172 | 192.168.2.4 |
Mar 19, 2025 09:54:35.406477928 CET | 49716 | 80 | 192.168.2.4 | 199.232.210.172 |
Mar 19, 2025 09:54:35.406485081 CET | 80 | 49717 | 199.232.210.172 | 192.168.2.4 |
Mar 19, 2025 09:54:35.406536102 CET | 49717 | 80 | 192.168.2.4 | 199.232.210.172 |
Mar 19, 2025 09:54:35.638775110 CET | 49718 | 443 | 192.168.2.4 | 2.19.96.83 |
Mar 19, 2025 09:54:35.639162064 CET | 49719 | 80 | 192.168.2.4 | 2.23.77.188 |
Mar 19, 2025 09:54:52.470617056 CET | 54570 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:54:52.475408077 CET | 53 | 54570 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:52.475490093 CET | 54570 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:54:52.480321884 CET | 53 | 54570 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:52.491307020 CET | 54570 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:54:52.496182919 CET | 53 | 54570 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:52.496248007 CET | 54570 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:54:56.091311932 CET | 54573 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:54:56.091366053 CET | 443 | 54573 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:54:56.091643095 CET | 54573 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:54:56.091643095 CET | 54573 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:54:56.091682911 CET | 443 | 54573 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:54:56.121367931 CET | 443 | 54573 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:54:56.122726917 CET | 54573 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:54:56.168329954 CET | 443 | 54573 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:55:07.057019949 CET | 443 | 54573 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:55:07.057075024 CET | 443 | 54573 | 142.250.181.228 | 192.168.2.4 |
Mar 19, 2025 09:55:07.057176113 CET | 54573 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:55:07.996428967 CET | 54573 | 443 | 192.168.2.4 | 142.250.181.228 |
Mar 19, 2025 09:55:07.996452093 CET | 443 | 54573 | 142.250.181.228 | 192.168.2.4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 19, 2025 09:53:51.995943069 CET | 53 | 49667 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:52.015194893 CET | 53 | 53404 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:52.177783012 CET | 53 | 51166 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:56.027087927 CET | 49875 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:56.027204990 CET | 57975 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:56.033915043 CET | 53 | 49875 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:56.034136057 CET | 53 | 57975 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:57.552350044 CET | 56493 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:57.556169033 CET | 50311 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:57.561933041 CET | 53 | 56493 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:57.568083048 CET | 53 | 50311 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:57.757035971 CET | 50565 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:57.757199049 CET | 55961 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:57.758650064 CET | 51785 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:57.758872986 CET | 55170 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:57.764961004 CET | 53 | 50565 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:57.765734911 CET | 53 | 51785 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:57.765892982 CET | 53 | 55170 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:57.766231060 CET | 53 | 55961 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:58.049245119 CET | 52547 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:58.049380064 CET | 54153 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:58.056678057 CET | 53 | 54153 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:58.056714058 CET | 53 | 52547 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:58.186846972 CET | 63576 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:58.186999083 CET | 58685 | 53 | 192.168.2.4 | 1.1.1.1 |
Mar 19, 2025 09:53:58.194865942 CET | 53 | 58685 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:53:58.195655107 CET | 53 | 63576 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:09.161636114 CET | 53 | 64950 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:28.132271051 CET | 53 | 52677 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:51.003879070 CET | 53 | 51965 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:51.349980116 CET | 53 | 55225 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:52.470149994 CET | 53 | 54940 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:53.675221920 CET | 53 | 54183 | 1.1.1.1 | 192.168.2.4 |
Mar 19, 2025 09:54:59.580163956 CET | 138 | 138 | 192.168.2.4 | 192.168.2.255 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Mar 19, 2025 09:53:56.027087927 CET | 192.168.2.4 | 1.1.1.1 | 0xdb00 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 19, 2025 09:53:56.027204990 CET | 192.168.2.4 | 1.1.1.1 | 0xcaa0 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 19, 2025 09:53:57.552350044 CET | 192.168.2.4 | 1.1.1.1 | 0x4a25 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 19, 2025 09:53:57.556169033 CET | 192.168.2.4 | 1.1.1.1 | 0xca11 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 19, 2025 09:53:57.757035971 CET | 192.168.2.4 | 1.1.1.1 | 0x4765 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 19, 2025 09:53:57.757199049 CET | 192.168.2.4 | 1.1.1.1 | 0x4ffd | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 19, 2025 09:53:57.758650064 CET | 192.168.2.4 | 1.1.1.1 | 0x8a20 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 19, 2025 09:53:57.758872986 CET | 192.168.2.4 | 1.1.1.1 | 0x2503 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 19, 2025 09:53:58.049245119 CET | 192.168.2.4 | 1.1.1.1 | 0xe8ad | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 19, 2025 09:53:58.049380064 CET | 192.168.2.4 | 1.1.1.1 | 0x4703 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 19, 2025 09:53:58.186846972 CET | 192.168.2.4 | 1.1.1.1 | 0xffd4 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 19, 2025 09:53:58.186999083 CET | 192.168.2.4 | 1.1.1.1 | 0x2a0f | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Mar 19, 2025 09:53:56.033915043 CET | 1.1.1.1 | 192.168.2.4 | 0xdb00 | No error (0) | 142.250.181.228 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:56.034136057 CET | 1.1.1.1 | 192.168.2.4 | 0xcaa0 | No error (0) | 65 | IN (0x0001) | false | |||
Mar 19, 2025 09:53:57.561933041 CET | 1.1.1.1 | 192.168.2.4 | 0x4a25 | No error (0) | 104.18.36.248 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:57.561933041 CET | 1.1.1.1 | 192.168.2.4 | 0x4a25 | No error (0) | 172.64.151.8 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:57.568083048 CET | 1.1.1.1 | 192.168.2.4 | 0xca11 | No error (0) | 65 | IN (0x0001) | false | |||
Mar 19, 2025 09:53:57.764961004 CET | 1.1.1.1 | 192.168.2.4 | 0x4765 | No error (0) | 104.18.34.201 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:57.764961004 CET | 1.1.1.1 | 192.168.2.4 | 0x4765 | No error (0) | 172.64.153.55 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:57.765734911 CET | 1.1.1.1 | 192.168.2.4 | 0x8a20 | No error (0) | 52.222.232.39 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:57.765734911 CET | 1.1.1.1 | 192.168.2.4 | 0x8a20 | No error (0) | 52.222.232.99 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:57.765734911 CET | 1.1.1.1 | 192.168.2.4 | 0x8a20 | No error (0) | 52.222.232.47 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:57.765734911 CET | 1.1.1.1 | 192.168.2.4 | 0x8a20 | No error (0) | 52.222.232.144 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:57.766231060 CET | 1.1.1.1 | 192.168.2.4 | 0x4ffd | No error (0) | 65 | IN (0x0001) | false | |||
Mar 19, 2025 09:53:58.056678057 CET | 1.1.1.1 | 192.168.2.4 | 0x4703 | No error (0) | 65 | IN (0x0001) | false | |||
Mar 19, 2025 09:53:58.056714058 CET | 1.1.1.1 | 192.168.2.4 | 0xe8ad | No error (0) | 104.18.161.117 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:58.056714058 CET | 1.1.1.1 | 192.168.2.4 | 0xe8ad | No error (0) | 104.18.160.117 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:58.194865942 CET | 1.1.1.1 | 192.168.2.4 | 0x2a0f | No error (0) | 65 | IN (0x0001) | false | |||
Mar 19, 2025 09:53:58.195655107 CET | 1.1.1.1 | 192.168.2.4 | 0xffd4 | No error (0) | 104.18.160.117 | A (IP address) | IN (0x0001) | false | ||
Mar 19, 2025 09:53:58.195655107 CET | 1.1.1.1 | 192.168.2.4 | 0xffd4 | No error (0) | 104.18.161.117 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.4 | 49735 | 104.18.36.248 | 443 | 5452 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-19 08:53:57 UTC | 679 | OUT | |
2025-03-19 08:53:57 UTC | 814 | IN | |
2025-03-19 08:53:57 UTC | 555 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 678 | IN | |
2025-03-19 08:53:57 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.4 | 49737 | 104.18.34.201 | 443 | 5452 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-19 08:53:57 UTC | 668 | OUT | |
2025-03-19 08:53:57 UTC | 638 | IN | |
2025-03-19 08:53:57 UTC | 731 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.4 | 49736 | 52.222.232.39 | 443 | 5452 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-19 08:53:57 UTC | 656 | OUT | |
2025-03-19 08:53:57 UTC | 551 | IN | |
2025-03-19 08:53:57 UTC | 15833 | IN | |
2025-03-19 08:53:57 UTC | 16384 | IN | |
2025-03-19 08:53:57 UTC | 16384 | IN | |
2025-03-19 08:53:57 UTC | 16384 | IN | |
2025-03-19 08:53:57 UTC | 16384 | IN | |
2025-03-19 08:53:57 UTC | 8107 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.4 | 49738 | 104.18.34.201 | 443 | 5452 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-19 08:53:57 UTC | 710 | OUT | |
2025-03-19 08:53:57 UTC | 662 | IN | |
2025-03-19 08:53:57 UTC | 707 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.4 | 49739 | 104.18.34.201 | 443 | 5452 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-19 08:53:57 UTC | 633 | OUT | |
2025-03-19 08:53:57 UTC | 653 | IN | |
2025-03-19 08:53:57 UTC | 716 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN | |
2025-03-19 08:53:57 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.4 | 49741 | 104.18.161.117 | 443 | 5452 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-19 08:53:58 UTC | 701 | OUT | |
2025-03-19 08:53:58 UTC | 676 | IN | |
2025-03-19 08:53:58 UTC | 293 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.4 | 49744 | 104.18.160.117 | 443 | 5452 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-19 08:53:58 UTC | 451 | OUT | |
2025-03-19 08:53:58 UTC | 676 | IN | |
2025-03-19 08:53:58 UTC | 293 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 1 |
Start time: | 04:53:47 |
Start date: | 19/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff786830000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 2 |
Start time: | 04:53:50 |
Start date: | 19/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff659320000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 4 |
Start time: | 04:53:56 |
Start date: | 19/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff786830000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |