Windows
Analysis Report
https://schoolmngt.ubpages.com/managent/
Overview
Detection
Score: | 48 |
Range: | 0 - 100 |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
chrome.exe (PID: 4724 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --s tart-maxim ized "abou t:blank" MD5: E81F54E6C1129887AEA47E7D092680BF) chrome.exe (PID: 1864 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --no-pre-r ead-main-d ll --field -trial-han dle=1940,i ,109385671 7632267909 3,12905942 1113087034 16,262144 --disable- features=O ptimizatio nGuideMode lDownloadi ng,Optimiz ationHints ,Optimizat ionHintsFe tching,Opt imizationT argetPredi ction --va riations-s eed-versio n=20250306 -183004.42 9000 --moj o-platform -channel-h andle=2252 /prefetch :3 MD5: E81F54E6C1129887AEA47E7D092680BF)
chrome.exe (PID: 6436 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps://schoo lmngt.ubpa ges.com/ma nagent/" MD5: E81F54E6C1129887AEA47E7D092680BF)
- cleanup
- • Phishing
- • Compliance
- • Networking
- • System Summary
Click to jump to signature section
Phishing |
---|
Source: | Joe Sandbox AI: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | File created: | Jump to behavior |
Source: | File deleted: | Jump to behavior |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Masquerading | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 Process Injection | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 4 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | 1 File Deletion | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 5 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 3 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
builder-assets.unbounce.com | 18.238.80.20 | true | false | high | |
schoolmngt.ubpages.com | 104.18.41.137 | true | true | unknown | |
d9hhrg4mnvzow.cloudfront.net | 18.164.115.141 | true | false | high | |
www.google.com | 142.250.65.196 | true | false | high |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
true | unknown | ||
false | high | ||
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false | high | ||
false | high | ||
false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false | high | |||
false |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
142.250.65.196 | www.google.com | United States | 15169 | GOOGLEUS | false | |
18.164.115.5 | unknown | United States | 3 | MIT-GATEWAYSUS | false | |
18.238.80.20 | builder-assets.unbounce.com | United States | 16509 | AMAZON-02US | false | |
104.18.41.137 | schoolmngt.ubpages.com | United States | 13335 | CLOUDFLARENETUS | true | |
18.164.115.141 | d9hhrg4mnvzow.cloudfront.net | United States | 3 | MIT-GATEWAYSUS | false |
IP |
---|
192.168.2.7 |
Joe Sandbox version: | 42.0.0 Malachite |
Analysis ID: | 1647450 |
Start date and time: | 2025-03-24 21:30:04 +01:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 1s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https://schoolmngt.ubpages.com/managent/ |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 14 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | MAL |
Classification: | mal48.phis.win@21/19@10/6 |
- Exclude process from analysis
(whitelisted): sppsvc.exe, SIH Client.exe, SgrmBroker.exe, Te xtInputHost.exe, svchost.exe - Excluded IPs from analysis (wh
itelisted): 142.251.40.131, 14 2.251.40.110, 142.250.80.46, 1 72.253.62.84, 142.251.40.206, 142.250.65.206, 142.251.40.238 , 142.250.65.170, 142.250.65.2 34, 142.250.65.202, 142.251.32 .106, 142.251.40.138, 142.251. 40.202, 142.251.35.170, 142.25 1.40.170, 142.251.40.234, 142. 251.41.10, 142.251.40.106, 172 .217.165.138, 142.250.80.74, 1 42.250.80.106, 142.250.81.234, 142.250.176.202, 199.232.210. 172, 142.251.35.174, 142.250.8 0.110, 142.250.65.238, 142.250 .65.195, 142.250.176.206, 142. 251.40.195, 20.109.210.53, 184 .31.69.3 - Excluded domains from analysis
(whitelisted): fs.microsoft.c om, accounts.google.com, conte nt-autofill.googleapis.com, sl scr.update.microsoft.com, ctld l.windowsupdate.com, clientser vices.googleapis.com, fe3cr.de livery.mp.microsoft.com, clien ts2.google.com, edgedl.me.gvt1 .com, redirector.gvt1.com, upd ate.googleapis.com, clients.l. google.com, c.pki.goog - Not all processes where analyz
ed, report is missing behavior information - Report size getting too big, t
oo many NtOpenFile calls found . - Some HTTPS proxied raw data pa
ckets have been limited to 10 per session. Please view the P CAPs for the complete data. - VT rate limit hit for: https:
//schoolmngt.ubpages.com/manag ent/
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 2944 |
Entropy (8bit): | 7.923227677104379 |
Encrypted: | false |
SSDEEP: | 48:XKho1kyMoWIrJOEUF5GN3CS0c9xd2vUBR591cyRtrkX0uFDiIFEjGnam+M50v7Au:mo1leIrJH85WZOO1cybwXBFuO7+pEX+ |
MD5: | 39FEFDFFDE049F459A5268AC38054B39 |
SHA1: | D17269E2C4E525F0BF8976BE275850A24F8D2F0A |
SHA-256: | E76F00A95835BD40BC14F0003C4CC81ED78CEFD3C536FB09F6C6C36D058BC5C0 |
SHA-512: | 700742785C3BC5F009662A2BBC6203E75909EA4947D2DD28FA6FFFE1AB18998BBA616A92C1EB1B9BBB3F7ED20783A5AAA82983DD2A503082BAA7BDE0DE7FD658 |
Malicious: | false |
Reputation: | low |
URL: | https://builder-assets.unbounce.com/published-css/main-ebbfc5e.z.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 28 |
Entropy (8bit): | 4.039148671903071 |
Encrypted: | false |
SSDEEP: | 3:QQinPrjJiY:+PrB |
MD5: | E7DD7096D0232111F1BBB78DFB0261C0 |
SHA1: | 1DBB0ACF17C2C4B3E0525F6CD7A63ACB63187BDD |
SHA-256: | 909BE5D74A4DF779090FA7974832E4B889F30B80EF66F17093F093E55B772EB4 |
SHA-512: | F91E6314C395C06DBB8211DC249BF469B3CD43AEED75C273450BDE4F47D31A6452DF11E4809C60AE519B311FA78F9B680A7A46871E3F067B43CA2C7FC49256DA |
Malicious: | false |
Reputation: | low |
URL: | https://content-autofill.googleapis.com/v1/pages/ChRDaHJvbWUvMTM0LjAuNjk5OC4zNhIgCSPUxQgpTqVFEgUNeG8SGRIFDXyAUzUhSUNIxBr_eTM=?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 44693 |
Entropy (8bit): | 5.391070864416709 |
Encrypted: | false |
SSDEEP: | 768:7EAfXgIEtL+jgBD+AkeYa8ADC7qfDfETk:ICXgHtyjgRk1bADC7qb |
MD5: | A29B73706E355AF9CECF33791DD81C03 |
SHA1: | 79E86B0E0AE9731141EE3B380FE55530EFCB5988 |
SHA-256: | 870E33C07DFAB900FFC54747F4D21E61F6557C9DDF22FFD892624AE522B824CD |
SHA-512: | B6853281C138C784E371140E92561A2AE554753FEB74244A47A676999F978EEFA9B8B2EE8B105C17624C07DFE085DF3C86C58B335DE5AF6B87ABFAD873408C07 |
Malicious: | false |
Reputation: | low |
URL: | https://schoolmngt.ubpages.com/_ub/static/ts/786ffa188154a7a81202c5d108dc70f1e0214262.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 9188 |
Entropy (8bit): | 5.357577735794839 |
Encrypted: | false |
SSDEEP: | 192:v45ON3CsopSsqjK36WozqSiQ4aw2TloWC2DYjwlyUoRJk:v43VqjK36WouQvTlop2DYu |
MD5: | 58E1B32BBD381FA225D48C75A0EC211C |
SHA1: | F77548E8401331E05780AE0D96666B6DD7649171 |
SHA-256: | F172E2C0D5742579EDBC3C4515CC7D22582F0A74A60F518108CB15055F79C034 |
SHA-512: | F100EBCDDC39B9893253E6F5875A4B17F5CBB5A35DBF968E1B498D29A0BEA1A50114955918D6F174FFB26EB4495EC7C358EB4BA2008A07EBE9D6F9A1B3456715 |
Malicious: | false |
Reputation: | low |
URL: | https://schoolmngt.ubpages.com/managent/ |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 47 |
Entropy (8bit): | 4.011411723741875 |
Encrypted: | false |
SSDEEP: | 3:GAJzRx3G/MRUezQF7hXWL:5zRx3G0Cezo8 |
MD5: | F9AE9006943E3A67B95CA4C6C733B6D4 |
SHA1: | 9F9E7A7E2602D29E4DF8C38DF6277AB37FB1B079 |
SHA-256: | CD8B79123A843EEE64985A23257E2FAB80EF2C4C08427B688EA979671FC1C457 |
SHA-512: | 7BCF52C862AAB427DAB5EDE35605A6A8B935CAC3982E6120ECE1FC7D9F81F95C05DDBB49CFB44E9E97C18C810459BE90B0B074F05D427C6592C125D5430F623D |
Malicious: | false |
Reputation: | low |
URL: | https://schoolmngt.ubpages.com/favicon.ico |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 2810 |
Entropy (8bit): | 7.59883834567946 |
Encrypted: | false |
SSDEEP: | 48:8llYu/6OGQWoOIHxh8KtEl9pkpY6FGQmvcTaxQA9g+jtqMkdQawJ6fdRMe6o1IqS:8L1SB4OIRh8KWfpIdFp5T2Pu+WdRuUb0 |
MD5: | DEA5F9647084A87A0C6A15277F49118B |
SHA1: | AB4443A23D16255C65D4DC93A45A4CF552C92B7D |
SHA-256: | 8EF1BB9D1FE2F4B6E10FB847848B518CAD94A80BE4227CA78C2D5C157AD60EE4 |
SHA-512: | 41C4CB0C10156A0C5A9FB207B0B45D534BC88B2EA034654DD62251B72F46E47C9386CC1349A0352D731E71C0020A9F3142230E4E10FF678ADA498C956DB6FF1D |
Malicious: | false |
Reputation: | low |
URL: | https://d9hhrg4mnvzow.cloudfront.net/schoolmngt.ubpages.com/managent/ee408d78-googleeee_10l408h0ka07n00000e028.png |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 47 |
Entropy (8bit): | 4.011411723741875 |
Encrypted: | false |
SSDEEP: | 3:GAJzRx3G/MRUezQF7hXWL:5zRx3G0Cezo8 |
MD5: | F9AE9006943E3A67B95CA4C6C733B6D4 |
SHA1: | 9F9E7A7E2602D29E4DF8C38DF6277AB37FB1B079 |
SHA-256: | CD8B79123A843EEE64985A23257E2FAB80EF2C4C08427B688EA979671FC1C457 |
SHA-512: | 7BCF52C862AAB427DAB5EDE35605A6A8B935CAC3982E6120ECE1FC7D9F81F95C05DDBB49CFB44E9E97C18C810459BE90B0B074F05D427C6592C125D5430F623D |
Malicious: | false |
Reputation: | low |
URL: | https://schoolmngt.ubpages.com/assets/d5046483-1668-4739-a080-17dfa8f93d47/googleeee.original.png?1742835208 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 2810 |
Entropy (8bit): | 7.59883834567946 |
Encrypted: | false |
SSDEEP: | 48:8llYu/6OGQWoOIHxh8KtEl9pkpY6FGQmvcTaxQA9g+jtqMkdQawJ6fdRMe6o1IqS:8L1SB4OIRh8KWfpIdFp5T2Pu+WdRuUb0 |
MD5: | DEA5F9647084A87A0C6A15277F49118B |
SHA1: | AB4443A23D16255C65D4DC93A45A4CF552C92B7D |
SHA-256: | 8EF1BB9D1FE2F4B6E10FB847848B518CAD94A80BE4227CA78C2D5C157AD60EE4 |
SHA-512: | 41C4CB0C10156A0C5A9FB207B0B45D534BC88B2EA034654DD62251B72F46E47C9386CC1349A0352D731E71C0020A9F3142230E4E10FF678ADA498C956DB6FF1D |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3920 |
Entropy (8bit): | 5.8250301044464825 |
Encrypted: | false |
SSDEEP: | 96:MKhlcH6666rpofyTyRsBcoDHwQ5jHkxzeGM17hJZQffffo:9XcH6666rpoR+BcorwQ1v1R |
MD5: | 415D1C34B1D0F1A57E4B62CCC0901858 |
SHA1: | 721A72E60F4EC536F0C6540A5363F5F216557855 |
SHA-256: | EE638686135750F2FAC62BBEAA7597F0782E0CC5D73293AE044C6034D7E329B4 |
SHA-512: | BD6CD8FB4B829BBA4BE111876277D21D6861601E662C45FC859DC8087EF067FE7D7BD18B6F637FAD36DA2A23832D8F929B058FE394EB53487CF642FC513898D2 |
Malicious: | false |
Reputation: | low |
URL: | https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyA2KlwBX3mkFo30om9LUFYQhpqLoa_BNhE |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 41663 |
Entropy (8bit): | 7.993428287053838 |
Encrypted: | true |
SSDEEP: | 768:pdNzUh9MZ4rjJhri/4+sTe7SE78zsAYfbVjTPdP1t0YLOqT1kfleGzlsLJ:pdNoE4S/wepZfbVjT3t0Ykfl7G |
MD5: | A942D0203943698FDCB45C73A57FE5A1 |
SHA1: | 41C68888DC5E22F56308E628FD5F824B1E397858 |
SHA-256: | D33C9752EC2E075A999D45AAD3F334D04CAAD2C8C96B68C5562F874528569C27 |
SHA-512: | AAFCBC08CDABF5A74C3A7DB4613F3AE562C6AE08988E46EB8E0D5F80EC3A350FE59046D79185C32C49BD793A6AB18046F726A992E78DBBB4685B6EAB6E592939 |
Malicious: | false |
Reputation: | low |
URL: | https://builder-assets.unbounce.com/published-js/main.bundle-f4428e5.z.js |
Preview: |
Download Network PCAP: filtered – full
- Total Packets: 165
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 24, 2025 21:30:52.519197941 CET | 49677 | 443 | 192.168.2.7 | 2.18.98.62 |
Mar 24, 2025 21:30:52.519210100 CET | 49676 | 80 | 192.168.2.7 | 23.199.215.203 |
Mar 24, 2025 21:30:54.019006968 CET | 49675 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 24, 2025 21:30:54.019083977 CET | 49674 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 24, 2025 21:30:54.019083023 CET | 49673 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 24, 2025 21:31:02.128631115 CET | 49676 | 80 | 192.168.2.7 | 23.199.215.203 |
Mar 24, 2025 21:31:02.128638983 CET | 49677 | 443 | 192.168.2.7 | 2.18.98.62 |
Mar 24, 2025 21:31:02.816997051 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:02.817049026 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:02.817121029 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:02.817301035 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:02.817317009 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:03.030751944 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:03.030822992 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:03.032391071 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:03.032402992 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:03.032681942 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:03.082434893 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:03.618632078 CET | 49675 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 24, 2025 21:31:03.618653059 CET | 49674 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 24, 2025 21:31:03.623044968 CET | 49673 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 24, 2025 21:31:03.778702974 CET | 49690 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:03.778760910 CET | 443 | 49690 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:03.778841019 CET | 49690 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:03.779485941 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:03.779524088 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:03.779611111 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:03.779745102 CET | 49690 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:03.779762983 CET | 443 | 49690 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:03.779978991 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:03.779990911 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.005626917 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.005729914 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.006481886 CET | 443 | 49690 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.006552935 CET | 49690 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.006915092 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.006926060 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.007215977 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.007756948 CET | 49690 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.007774115 CET | 443 | 49690 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.008018017 CET | 443 | 49690 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.008119106 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.048324108 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.050548077 CET | 49690 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.311489105 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.311614037 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.311687946 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.311702013 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.311770916 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.311800003 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.311846018 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.311855078 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.311986923 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.314316988 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.317435026 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.317509890 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.317529917 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.317574024 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.317656994 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.334148884 CET | 49691 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.334175110 CET | 443 | 49691 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.370353937 CET | 49690 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.416325092 CET | 443 | 49690 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.454184055 CET | 49693 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:04.454225063 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:04.454308033 CET | 49693 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:04.454679966 CET | 49693 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:04.454694986 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:04.597151041 CET | 443 | 49690 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.597198963 CET | 443 | 49690 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.597753048 CET | 49690 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.598267078 CET | 49690 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.598300934 CET | 443 | 49690 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.601353884 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.601408958 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.601548910 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.601952076 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.601965904 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.824639082 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.825228930 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.825257063 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:04.825634956 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:04.825644016 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.078159094 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.078294039 CET | 49693 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.101356030 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.101404905 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.101469994 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.101501942 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.101504087 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.101516008 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.101552963 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.101567984 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.101615906 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.103176117 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.106316090 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.108350039 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.108386040 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.108436108 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.108447075 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.108483076 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.111090899 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.113435030 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.113444090 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.115659952 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.115694046 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.115746975 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.115755081 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.115801096 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.118117094 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.120620966 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.120673895 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.120687962 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.120697975 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.120773077 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.124181986 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.127991915 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.129429102 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.129437923 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.130693913 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.132452011 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.132483959 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.132527113 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.132539034 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.132558107 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.188589096 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.202828884 CET | 49693 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.202858925 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.203169107 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.203634024 CET | 49693 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.210289001 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.211133003 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.211172104 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.211200953 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.211216927 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.211256027 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.213453054 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.217341900 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.217370987 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.217380047 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.217391968 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.217437029 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.217443943 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.217463970 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.217535973 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.218453884 CET | 49694 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.218473911 CET | 443 | 49694 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.224561930 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.224596977 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.224776030 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.225100994 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.225114107 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.248334885 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.352924109 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.352956057 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.353069067 CET | 49693 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.353092909 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.353110075 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.353167057 CET | 49693 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.354150057 CET | 49693 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.354171038 CET | 443 | 49693 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.406282902 CET | 49696 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.406328917 CET | 443 | 49696 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.406512022 CET | 49696 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.415705919 CET | 49696 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.415719986 CET | 443 | 49696 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.426537991 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.426907063 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.426922083 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.427117109 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.427123070 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.638004065 CET | 443 | 49696 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.638326883 CET | 49696 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.638354063 CET | 443 | 49696 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.638933897 CET | 49696 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.638940096 CET | 443 | 49696 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.639044046 CET | 49696 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.639049053 CET | 443 | 49696 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.693758965 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.693785906 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.693800926 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.693847895 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.693871975 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.693958044 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.696533918 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.696640968 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.702394009 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:05.712580919 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.712600946 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.712697983 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.712714911 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.712733984 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.712800980 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.744352102 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:05.787214041 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.787291050 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.787314892 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.787354946 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.787970066 CET | 49695 | 443 | 192.168.2.7 | 18.238.80.20 |
Mar 24, 2025 21:31:05.787988901 CET | 443 | 49695 | 18.238.80.20 | 192.168.2.7 |
Mar 24, 2025 21:31:05.836059093 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:05.836117029 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:05.836144924 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:05.836195946 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:05.836215973 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:05.836275101 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:05.842636108 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:05.843780041 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:05.843858004 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:05.844106913 CET | 49689 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:31:05.844127893 CET | 443 | 49689 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:31:05.903980970 CET | 443 | 49696 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.904047966 CET | 443 | 49696 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.904164076 CET | 49696 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.905064106 CET | 49696 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:05.905083895 CET | 443 | 49696 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:05.935961008 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:05.935997009 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:05.936228991 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:05.936392069 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:05.936405897 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.141607046 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.141669989 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:06.143637896 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:06.143646002 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.143906116 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.144387007 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:06.188322067 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.468966961 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.468992949 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.469038010 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:06.469050884 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.469400883 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.469505072 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:06.469888926 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:06.469898939 CET | 443 | 49698 | 18.164.115.141 | 192.168.2.7 |
Mar 24, 2025 21:31:06.469912052 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:06.469935894 CET | 49698 | 443 | 192.168.2.7 | 18.164.115.141 |
Mar 24, 2025 21:31:06.479037046 CET | 49699 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:06.479057074 CET | 443 | 49699 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:06.479168892 CET | 49699 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:06.479326963 CET | 49699 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:06.479334116 CET | 443 | 49699 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:06.618253946 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:06.618299961 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:06.618371010 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:06.618587971 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:06.618602991 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:06.694654942 CET | 443 | 49699 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:06.694987059 CET | 49699 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:06.695010900 CET | 443 | 49699 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:06.695177078 CET | 49699 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:06.695182085 CET | 443 | 49699 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:06.920698881 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:06.920783997 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:06.921283960 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:06.921293974 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:06.921530962 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:06.921876907 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:06.951836109 CET | 443 | 49699 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:06.951888084 CET | 443 | 49699 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:06.952007055 CET | 49699 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:06.952815056 CET | 49699 | 443 | 192.168.2.7 | 104.18.41.137 |
Mar 24, 2025 21:31:06.952831984 CET | 443 | 49699 | 104.18.41.137 | 192.168.2.7 |
Mar 24, 2025 21:31:06.968316078 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:07.148463964 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:07.148482084 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:07.148632050 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:07.148648024 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:07.149260044 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:07.149753094 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:07.149760962 CET | 443 | 49701 | 18.164.115.5 | 192.168.2.7 |
Mar 24, 2025 21:31:07.149811983 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:07.149811983 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:07.149836063 CET | 49701 | 443 | 192.168.2.7 | 18.164.115.5 |
Mar 24, 2025 21:31:13.448298931 CET | 49704 | 80 | 192.168.2.7 | 142.250.81.227 |
Mar 24, 2025 21:31:13.545150995 CET | 80 | 49704 | 142.250.81.227 | 192.168.2.7 |
Mar 24, 2025 21:31:13.545414925 CET | 49704 | 80 | 192.168.2.7 | 142.250.81.227 |
Mar 24, 2025 21:31:13.545536041 CET | 49704 | 80 | 192.168.2.7 | 142.250.81.227 |
Mar 24, 2025 21:31:13.646150112 CET | 80 | 49704 | 142.250.81.227 | 192.168.2.7 |
Mar 24, 2025 21:31:13.648607016 CET | 80 | 49704 | 142.250.81.227 | 192.168.2.7 |
Mar 24, 2025 21:31:13.654210091 CET | 49704 | 80 | 192.168.2.7 | 142.250.81.227 |
Mar 24, 2025 21:31:13.753511906 CET | 80 | 49704 | 142.250.81.227 | 192.168.2.7 |
Mar 24, 2025 21:31:13.800704002 CET | 49704 | 80 | 192.168.2.7 | 142.250.81.227 |
Mar 24, 2025 21:31:14.903553963 CET | 49672 | 443 | 192.168.2.7 | 2.23.227.208 |
Mar 24, 2025 21:31:14.903598070 CET | 443 | 49672 | 2.23.227.208 | 192.168.2.7 |
Mar 24, 2025 21:31:29.371428967 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 24, 2025 21:31:29.684983015 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 24, 2025 21:31:30.290404081 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 24, 2025 21:31:31.493458033 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 24, 2025 21:31:33.899094105 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 24, 2025 21:31:37.936769962 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 24, 2025 21:31:38.248327017 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 24, 2025 21:31:38.713413954 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 24, 2025 21:31:38.855031967 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 24, 2025 21:31:40.057903051 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 24, 2025 21:31:42.464303970 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 24, 2025 21:31:47.275500059 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 24, 2025 21:31:48.324510098 CET | 49671 | 443 | 192.168.2.7 | 204.79.197.203 |
Mar 24, 2025 21:31:56.885782957 CET | 49678 | 443 | 192.168.2.7 | 20.189.173.15 |
Mar 24, 2025 21:32:02.763829947 CET | 49716 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:32:02.763883114 CET | 443 | 49716 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:32:02.764003992 CET | 49716 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:32:02.764189005 CET | 49716 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:32:02.764203072 CET | 443 | 49716 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:32:02.981059074 CET | 443 | 49716 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:32:02.981483936 CET | 49716 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:32:02.981509924 CET | 443 | 49716 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:32:13.026478052 CET | 443 | 49716 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:32:13.026531935 CET | 443 | 49716 | 142.250.65.196 | 192.168.2.7 |
Mar 24, 2025 21:32:13.026580095 CET | 49716 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:32:13.969383955 CET | 49704 | 80 | 192.168.2.7 | 142.250.81.227 |
Mar 24, 2025 21:32:14.065808058 CET | 80 | 49704 | 142.250.81.227 | 192.168.2.7 |
Mar 24, 2025 21:32:14.065864086 CET | 49704 | 80 | 192.168.2.7 | 142.250.81.227 |
Mar 24, 2025 21:32:14.958189011 CET | 49716 | 443 | 192.168.2.7 | 142.250.65.196 |
Mar 24, 2025 21:32:14.958230019 CET | 443 | 49716 | 142.250.65.196 | 192.168.2.7 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 24, 2025 21:30:58.463381052 CET | 53 | 50724 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:30:58.509856939 CET | 53 | 61359 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:30:59.295650959 CET | 53 | 49804 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:02.708710909 CET | 49969 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:02.708890915 CET | 63307 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:02.814264059 CET | 53 | 49969 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:02.815804958 CET | 53 | 63307 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:03.619959116 CET | 61224 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:03.620173931 CET | 62809 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:03.735443115 CET | 53 | 62809 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:03.777915001 CET | 53 | 61224 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:04.333796024 CET | 65462 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:04.333956003 CET | 51788 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:04.440988064 CET | 53 | 51788 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:04.453466892 CET | 53 | 65462 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:05.525789976 CET | 53 | 60321 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:05.815371037 CET | 54704 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:05.815826893 CET | 52012 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:05.923439980 CET | 53 | 52012 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:05.935223103 CET | 53 | 54704 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:06.481286049 CET | 53800 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:06.481553078 CET | 56790 | 53 | 192.168.2.7 | 1.1.1.1 |
Mar 24, 2025 21:31:06.589454889 CET | 53 | 56790 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:06.617304087 CET | 53 | 53800 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:16.518253088 CET | 53 | 56856 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:35.310235023 CET | 53 | 65186 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:57.817069054 CET | 53 | 62098 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:31:58.043822050 CET | 53 | 49792 | 1.1.1.1 | 192.168.2.7 |
Mar 24, 2025 21:32:01.155019045 CET | 53 | 57848 | 1.1.1.1 | 192.168.2.7 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Mar 24, 2025 21:31:02.708710909 CET | 192.168.2.7 | 1.1.1.1 | 0x16c6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 24, 2025 21:31:02.708890915 CET | 192.168.2.7 | 1.1.1.1 | 0x554 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 24, 2025 21:31:03.619959116 CET | 192.168.2.7 | 1.1.1.1 | 0x629d | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 24, 2025 21:31:03.620173931 CET | 192.168.2.7 | 1.1.1.1 | 0x70b5 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 24, 2025 21:31:04.333796024 CET | 192.168.2.7 | 1.1.1.1 | 0x2ebb | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 24, 2025 21:31:04.333956003 CET | 192.168.2.7 | 1.1.1.1 | 0x46b2 | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 24, 2025 21:31:05.815371037 CET | 192.168.2.7 | 1.1.1.1 | 0xf4c3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 24, 2025 21:31:05.815826893 CET | 192.168.2.7 | 1.1.1.1 | 0x736d | Standard query (0) | 65 | IN (0x0001) | false | |
Mar 24, 2025 21:31:06.481286049 CET | 192.168.2.7 | 1.1.1.1 | 0x7c6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Mar 24, 2025 21:31:06.481553078 CET | 192.168.2.7 | 1.1.1.1 | 0x5953 | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Mar 24, 2025 21:31:02.814264059 CET | 1.1.1.1 | 192.168.2.7 | 0x16c6 | No error (0) | 142.250.65.196 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:02.815804958 CET | 1.1.1.1 | 192.168.2.7 | 0x554 | No error (0) | 65 | IN (0x0001) | false | |||
Mar 24, 2025 21:31:03.777915001 CET | 1.1.1.1 | 192.168.2.7 | 0x629d | No error (0) | 104.18.41.137 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:03.777915001 CET | 1.1.1.1 | 192.168.2.7 | 0x629d | No error (0) | 172.64.146.119 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:04.453466892 CET | 1.1.1.1 | 192.168.2.7 | 0x2ebb | No error (0) | 18.238.80.20 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:04.453466892 CET | 1.1.1.1 | 192.168.2.7 | 0x2ebb | No error (0) | 18.238.80.123 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:04.453466892 CET | 1.1.1.1 | 192.168.2.7 | 0x2ebb | No error (0) | 18.238.80.39 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:04.453466892 CET | 1.1.1.1 | 192.168.2.7 | 0x2ebb | No error (0) | 18.238.80.109 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:05.935223103 CET | 1.1.1.1 | 192.168.2.7 | 0xf4c3 | No error (0) | 18.164.115.141 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:05.935223103 CET | 1.1.1.1 | 192.168.2.7 | 0xf4c3 | No error (0) | 18.164.115.5 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:05.935223103 CET | 1.1.1.1 | 192.168.2.7 | 0xf4c3 | No error (0) | 18.164.115.116 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:05.935223103 CET | 1.1.1.1 | 192.168.2.7 | 0xf4c3 | No error (0) | 18.164.115.225 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:06.617304087 CET | 1.1.1.1 | 192.168.2.7 | 0x7c6 | No error (0) | 18.164.115.5 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:06.617304087 CET | 1.1.1.1 | 192.168.2.7 | 0x7c6 | No error (0) | 18.164.115.225 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:06.617304087 CET | 1.1.1.1 | 192.168.2.7 | 0x7c6 | No error (0) | 18.164.115.116 | A (IP address) | IN (0x0001) | false | ||
Mar 24, 2025 21:31:06.617304087 CET | 1.1.1.1 | 192.168.2.7 | 0x7c6 | No error (0) | 18.164.115.141 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
0 | 192.168.2.7 | 49704 | 142.250.81.227 | 80 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Mar 24, 2025 21:31:13.545536041 CET | 202 | OUT | |
Mar 24, 2025 21:31:13.648607016 CET | 222 | IN | |
Mar 24, 2025 21:31:13.654210091 CET | 200 | OUT | |
Mar 24, 2025 21:31:13.753511906 CET | 223 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.7 | 49691 | 104.18.41.137 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:04 UTC | 681 | OUT | |
2025-03-24 20:31:04 UTC | 1361 | IN | |
2025-03-24 20:31:04 UTC | 32 | IN | |
2025-03-24 20:31:04 UTC | 1369 | IN | |
2025-03-24 20:31:04 UTC | 1369 | IN | |
2025-03-24 20:31:04 UTC | 1369 | IN | |
2025-03-24 20:31:04 UTC | 1369 | IN | |
2025-03-24 20:31:04 UTC | 1369 | IN | |
2025-03-24 20:31:04 UTC | 1369 | IN | |
2025-03-24 20:31:04 UTC | 982 | IN | |
2025-03-24 20:31:04 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.7 | 49690 | 104.18.41.137 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:04 UTC | 1022 | OUT | |
2025-03-24 20:31:04 UTC | 342 | IN | |
2025-03-24 20:31:04 UTC | 47 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.7 | 49694 | 104.18.41.137 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:04 UTC | 942 | OUT | |
2025-03-24 20:31:05 UTC | 770 | IN | |
2025-03-24 20:31:05 UTC | 599 | IN | |
2025-03-24 20:31:05 UTC | 1369 | IN | |
2025-03-24 20:31:05 UTC | 1369 | IN | |
2025-03-24 20:31:05 UTC | 1369 | IN | |
2025-03-24 20:31:05 UTC | 1369 | IN | |
2025-03-24 20:31:05 UTC | 1369 | IN | |
2025-03-24 20:31:05 UTC | 1369 | IN | |
2025-03-24 20:31:05 UTC | 1369 | IN | |
2025-03-24 20:31:05 UTC | 1369 | IN | |
2025-03-24 20:31:05 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.7 | 49693 | 18.238.80.20 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:05 UTC | 620 | OUT | |
2025-03-24 20:31:05 UTC | 656 | IN | |
2025-03-24 20:31:05 UTC | 2944 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.7 | 49695 | 18.238.80.20 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:05 UTC | 611 | OUT | |
2025-03-24 20:31:05 UTC | 671 | IN | |
2025-03-24 20:31:05 UTC | 14588 | IN | |
2025-03-24 20:31:05 UTC | 2302 | IN | |
2025-03-24 20:31:05 UTC | 16384 | IN | |
2025-03-24 20:31:05 UTC | 8389 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.7 | 49696 | 104.18.41.137 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:05 UTC | 981 | OUT | |
2025-03-24 20:31:05 UTC | 1122 | OUT | |
2025-03-24 20:31:05 UTC | 491 | IN | |
2025-03-24 20:31:05 UTC | 2 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.7 | 49689 | 142.250.65.196 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:05 UTC | 579 | OUT | |
2025-03-24 20:31:05 UTC | 1303 | IN | |
2025-03-24 20:31:05 UTC | 1303 | IN | |
2025-03-24 20:31:05 UTC | 1303 | IN | |
2025-03-24 20:31:05 UTC | 991 | IN | |
2025-03-24 20:31:05 UTC | 122 | IN | |
2025-03-24 20:31:05 UTC | 220 | IN | |
2025-03-24 20:31:05 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.7 | 49698 | 18.164.115.141 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:06 UTC | 712 | OUT | |
2025-03-24 20:31:06 UTC | 570 | IN | |
2025-03-24 20:31:06 UTC | 2810 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.7 | 49699 | 104.18.41.137 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:06 UTC | 956 | OUT | |
2025-03-24 20:31:06 UTC | 342 | IN | |
2025-03-24 20:31:06 UTC | 47 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.7 | 49701 | 18.164.115.5 | 443 | 1864 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-03-24 20:31:06 UTC | 469 | OUT | |
2025-03-24 20:31:07 UTC | 570 | IN | |
2025-03-24 20:31:07 UTC | 2810 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 0 |
Start time: | 16:30:55 |
Start date: | 24/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff778810000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 1 |
Start time: | 16:30:56 |
Start date: | 24/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff778810000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 5 |
Start time: | 16:31:02 |
Start date: | 24/03/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff778810000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |