Windows
Analysis Report
https:/serviceofprocess.cogencyglobal.com/ServiceOfProcess/Retrieve?cAd1TfjHXlu1z6oJGVWd3Q%3D%3D=tAopP3kdGiTimCUtThIpNylj3dsrEGHp%2FILUVc8jX1ZU3qwpHuJb5DtKIvNiZtDOZ0Y8Ix9kn3WS3S6y5YnIqmIK3WsRs2mPxYzdFAoGoSw1TUkI2etiVANucM%2B5178i
Overview
General Information
Detection
Score: | 0 |
Range: | 0 - 100 |
Confidence: | 100% |
Signatures
Classification
- System is w10x64
chrome.exe (PID: 6604 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --s tart-maxim ized "abou t:blank" MD5: E81F54E6C1129887AEA47E7D092680BF) chrome.exe (PID: 7036 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= network.mo jom.Networ kService - -lang=en-U S --servic e-sandbox- type=none --no-pre-r ead-main-d ll --field -trial-han dle=2276,i ,890817028 0684876737 ,136342916 2641745376 3,262144 - -disable-f eatures=Op timization GuideModel Downloadin g,Optimiza tionHints, Optimizati onHintsFet ching,Opti mizationTa rgetPredic tion --var iations-se ed-version =20250306- 183004.429 000 --mojo -platform- channel-ha ndle=2328 /prefetch: 3 MD5: E81F54E6C1129887AEA47E7D092680BF) chrome.exe (PID: 3652 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" --ty pe=utility --utility -sub-type= printing.m ojom.Unsan dboxedPrin tBackendHo st --lang= en-US --se rvice-sand box-type=n one --no-p re-read-ma in-dll --f ield-trial -handle=22 76,i,89081 7028068487 6737,13634 2916264174 53763,2621 44 --disab le-feature s=Optimiza tionGuideM odelDownlo ading,Opti mizationHi nts,Optimi zationHint sFetching, Optimizati onTargetPr ediction - -variation s-seed-ver sion=20250 306-183004 .429000 -- mojo-platf orm-channe l-handle=3 748 /prefe tch:8 MD5: E81F54E6C1129887AEA47E7D092680BF)
chrome.exe (PID: 524 cmdline:
"C:\Progra m Files\Go ogle\Chrom e\Applicat ion\chrome .exe" "htt ps:/servic eofprocess .cogencygl obal.com/S erviceOfPr ocess/Retr ieve?cAd1T fjHXlu1z6o JGVWd3Q%3D %3D=tAopP3 kdGiTimCUt ThIpNylj3d srEGHp%2FI LUVc8jX1ZU 3qwpHuJb5D tKIvNiZtDO Z0Y8Ix9kn3 WS3S6y5YnI qmIK3WsRs2 mPxYzdFAoG oSw1TUkI2e tiVANucM%2 B5178i" MD5: E81F54E6C1129887AEA47E7D092680BF)
- cleanup
- • Phishing
- • Compliance
- • Networking
- • System Summary
Click to jump to signature section
There are no malicious signatures, click here to show all signatures.
Source: | HTTP Parser: | ||
Source: | HTTP Parser: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: | ||
Source: | UDP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: | ||
Source: | DNS traffic detected: |
Source: | HTTP traffic detected: |
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: | ||
Source: | String found in binary or memory: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: | ||
Source: | HTTPS traffic detected: |
Source: | Classification label: |
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | |||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior | ||
Source: | Process created: | Jump to behavior |
Source: | Window detected: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | 1 Process Injection | 1 Process Injection | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 3 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 4 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Ingress Tool Transfer | Traffic Duplication | Data Destruction |
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe | ||
0% | Avira URL Cloud | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
a.nel.cloudflare.com | 35.190.80.1 | true | false | high | |
www.google.com | 64.233.185.103 | true | false | high | |
lbwebdmz.cogencyglobal.com | 66.19.228.243 | true | false | unknown | |
cogencyglobal.com | 162.159.134.42 | true | false | unknown | |
serviceofprocess.cogencyglobal.com | unknown | unknown | false | unknown | |
www.cogencyglobal.com | unknown | unknown | false | unknown |
Name | Malicious | Antivirus Detection | Reputation |
---|---|---|---|
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false |
| unknown | |
false | high | ||
false |
| unknown | |
false | unknown | ||
false |
| unknown | |
false | high |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high | |||
false |
| unknown | ||
false |
| unknown | ||
false | high | |||
false |
| unknown | ||
false |
| unknown | ||
false | high | |||
false |
| unknown | ||
false |
| unknown | ||
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
66.19.228.243 | lbwebdmz.cogencyglobal.com | United States | 7029 | WINDSTREAMUS | false | |
162.159.134.42 | cogencyglobal.com | United States | 13335 | CLOUDFLARENETUS | false | |
35.190.80.1 | a.nel.cloudflare.com | United States | 15169 | GOOGLEUS | false | |
64.233.185.103 | www.google.com | United States | 15169 | GOOGLEUS | false |
IP |
---|
192.168.2.4 |
192.168.2.5 |
Joe Sandbox version: | 42.0.0 Malachite |
Analysis ID: | 1665404 |
Start date and time: | 2025-04-15 14:10:56 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 3m 2s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | browseurl.jbs |
Sample URL: | https:/serviceofprocess.cogencyglobal.com/ServiceOfProcess/Retrieve?cAd1TfjHXlu1z6oJGVWd3Q%3D%3D=tAopP3kdGiTimCUtThIpNylj3dsrEGHp%2FILUVc8jX1ZU3qwpHuJb5DtKIvNiZtDOZ0Y8Ix9kn3WS3S6y5YnIqmIK3WsRs2mPxYzdFAoGoSw1TUkI2etiVANucM%2B5178i |
Analysis system description: | Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01 |
Number of analysed new started processes analysed: | 15 |
Number of new started drivers analysed: | 0 |
Number of existing processes analysed: | 0 |
Number of existing drivers analysed: | 0 |
Number of injected processes analysed: | 0 |
Technologies: |
|
Analysis Mode: | default |
Analysis stop reason: | Timeout |
Detection: | CLEAN |
Classification: | clean0.win@23/15@10/6 |
EGA Information: | Failed |
HCA Information: |
|
- Exclude process from analysis
(whitelisted): MpCmdRun.exe, S IHClient.exe, SgrmBroker.exe, conhost.exe, svchost.exe - Excluded IPs from analysis (wh
itelisted): 23.79.17.61, 199.2 32.214.172, 172.217.215.101, 1 72.217.215.102, 172.217.215.10 0, 172.217.215.113, 172.217.21 5.138, 172.217.215.139, 142.25 0.9.94, 74.125.138.101, 74.125 .138.100, 74.125.138.102, 74.1 25.138.113, 74.125.138.139, 74 .125.138.138, 142.250.105.84, 64.233.185.113, 64.233.185.139 , 64.233.185.138, 64.233.185.1 01, 64.233.185.102, 64.233.185 .100, 173.194.219.101, 173.194 .219.102, 173.194.219.139, 173 .194.219.100, 173.194.219.113, 173.194.219.138, 74.125.21.13 9, 74.125.21.138, 74.125.21.10 0, 74.125.21.113, 74.125.21.10 1, 74.125.21.102, 172.217.215. 95, 74.125.138.95, 172.253.124 .95, 74.125.136.95, 64.233.177 .95, 74.125.21.95, 142.250.105 .95, 142.251.15.95, 64.233.176 .95, 173.194.219.95, 64.233.18 5.95, 142.250.9.95, 108.177.12 2.95, 142.250.9.138, 142.250.9 .139, 142.250.9.100, 142.250.9 .101, 142.250.9.102, 142.250.9 .113, 173.194.219.94, 74.125.1 36.113, 74.125.136.139, 74.125 .136.101, 74.125.136.100, 74.1 25.136.102, 74.125.136.138, 20 .12.23.50, 150.171.27.254 - Excluded domains from analysis
(whitelisted): fs.microsoft.c om, accounts.google.com, conte nt-autofill.googleapis.com, sl scr.update.microsoft.com, ctld l.windowsupdate.com, clientser vices.googleapis.com, fs-wildc ard.microsoft.com.edgekey.net, fs-wildcard.microsoft.com.edg ekey.net.globalredir.akadns.ne t, e16604.dscf.akamaiedge.net, fe3cr.delivery.mp.microsoft.c om, c2a9c95e369881c67228a6591c ac2686.clo.footprintdns.com, a x-ring.msedge.net, clients2.go ogle.com, edgedl.me.gvt1.com, redirector.gvt1.com, update.go ogleapis.com, clients.l.google .com, prod.fs.microsoft.com.ak adns.net, c.pki.goog - Not all processes where analyz
ed, report is missing behavior information - Report size getting too big, t
oo many NtOpenFile calls found . - Some HTTPS proxied raw data pa
ckets have been limited to 10 per session. Please view the P CAPs for the complete data. - VT rate limit hit for: https:
/serviceofprocess.cogencygloba l.com/ServiceOfProcess/Retriev e?cAd1TfjHXlu1z6oJGVWd3Q%3D%3D =tAopP3kdGiTimCUtThIpNylj3dsrE GHp%2FILUVc8jX1ZU3qwpHuJb5DtKI vNiZtDOZ0Y8Ix9kn3WS3S6y5YnIqmI K3WsRs2mPxYzdFAoGoSw1TUkI2etiV ANucM%2B5178i
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | dropped |
Size (bytes): | 7194 |
Entropy (8bit): | 4.8520001918785605 |
Encrypted: | false |
SSDEEP: | 96:vHXQSfpec4oczypso4pMBpysMXsCLL2vjgZD3Ywn4AbzdrD6gIIscWG/42rdGIrA:vQA8zuc9LMMrLHprLzsmd0BnA6 |
MD5: | 9B8FD21FD32EA246EC9E79212F61ED81 |
SHA1: | CFAF1C7A3A082BD3A5F77CCAC9B0E69B1414A9BD |
SHA-256: | DD0D855C1901877D17F7822AB305DF615F8FC05465FB64906B0BA711784F1837 |
SHA-512: | 345E2C9AD2B470C23EF33665C4FF69E3F758D8A504D159EF0F128ADA34B8EEDDD90B834A0CC03701D247D102359A06EB909D4638F440CD6DDD433BE8A394D5C3 |
Malicious: | false |
Reputation: | low |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 4020 |
Entropy (8bit): | 5.0710204359638515 |
Encrypted: | false |
SSDEEP: | 48:+UOYr+acOItrBLJdhhfHrX+vh//yoNqYcPI1UIdWvNv6VYiSvWlVaXoiYU1FUTEp:+UOyzItdzvzI//yPUMOpS+lVc+U1Ffp |
MD5: | 9966432CAC6334158BBAD4D26379D279 |
SHA1: | FF11FDEE867714A916069EA372FE836CA683AEE9 |
SHA-256: | CF7539EE9D617E6CA6CC6EE8D956332EBBA30976DBFE4954942770CA3539D549 |
SHA-512: | 6DE49B3E4014DDF35F7E87C23C37B58929DD9BF30658D1F0CAD1A66F167725189154F3842B5320D83404558D601C9A7E0B7107CFE24B279F319B2E77F66A0422 |
Malicious: | false |
Reputation: | low |
URL: | https://serviceofprocess.cogencyglobal.com/ServiceOfProcess/Scripts/site.min.js |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 51264 |
Entropy (8bit): | 7.995753359227878 |
Encrypted: | true |
SSDEEP: | 768:/eSoJvqBim/fuseEp7C5rLwdCIjWpH50U+NvdSot2tlWlSjQnKnFR6yCLurjnQ:ZWq4NOpBdjjeqNvFt2tQSjQnKnPUuHQ |
MD5: | 2ED62850AE7CDD5E70C4CCE132BE2AC3 |
SHA1: | 83AC7240583DE856555DDEFF9B793273B7876F3B |
SHA-256: | DC58126AF27B6E38E0155B6705D4BC01A0DABA4EB191D0F516AE34CDEA44D21A |
SHA-512: | F233386D8DCF45E43939A6900DBC6A173414ED24DC5D2B5153B0A5F34D55166AECBF979DB01D10A504829ED40BB202A115B65B8F038CA14DB3C3571DAEC93314 |
Malicious: | false |
Reputation: | low |
URL: | https://serviceofprocess.cogencyglobal.com/ServiceOfProcess/Content/fonts/SemplicitaPro-Regular.woff2 |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 7194 |
Entropy (8bit): | 4.8520001918785605 |
Encrypted: | false |
SSDEEP: | 96:vHXQSfpec4oczypso4pMBpysMXsCLL2vjgZD3Ywn4AbzdrD6gIIscWG/42rdGIrA:vQA8zuc9LMMrLHprLzsmd0BnA6 |
MD5: | 9B8FD21FD32EA246EC9E79212F61ED81 |
SHA1: | CFAF1C7A3A082BD3A5F77CCAC9B0E69B1414A9BD |
SHA-256: | DD0D855C1901877D17F7822AB305DF615F8FC05465FB64906B0BA711784F1837 |
SHA-512: | 345E2C9AD2B470C23EF33665C4FF69E3F758D8A504D159EF0F128ADA34B8EEDDD90B834A0CC03701D247D102359A06EB909D4638F440CD6DDD433BE8A394D5C3 |
Malicious: | false |
Reputation: | low |
URL: | https://serviceofprocess.cogencyglobal.com/ServiceOfProcess/Content/images/cogency-global-logo-ko-horizontal.svg |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 3753 |
Entropy (8bit): | 4.596155126904803 |
Encrypted: | false |
SSDEEP: | 48:tBoUCX1bnLU3gofII81nlMk5Piwxv1RSzH1jKZwtW6DdtlRPcWcM337pgn:CBn+fII8FlJqOvSzVbx5tTPcy337w |
MD5: | A3291CDB112C60B0F83C51F801C6B309 |
SHA1: | 64B26882EB3C6A2777FE2D748856C05A8DCB1D78 |
SHA-256: | 74A09DD746FD320FA19BA59DD53C7DCA629833B4A1BB139173FD34E6166835D7 |
SHA-512: | 4A85C1355FE8ACD04A05AC035065562FB90FB97CD6CDC20A72F98C135CCAD973B0CCA4777F02A8D9DB7EC75536496E00C3D07B884EF4E95F81D32CFCB924FB4F |
Malicious: | false |
Reputation: | low |
URL: | https://serviceofprocess.cogencyglobal.com/ServiceOfProcess/Retrieve?cAd1TfjHXlu1z6oJGVWd3Q%3D%3D=tAopP3kdGiTimCUtThIpNylj3dsrEGHp%2FILUVc8jX1ZU3qwpHuJb5DtKIvNiZtDOZ0Y8Ix9kn3WS3S6y5YnIqmIK3WsRs2mPxYzdFAoGoSw1TUkI2etiVANucM%2B5178i |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 198551 |
Entropy (8bit): | 5.138620385777118 |
Encrypted: | false |
SSDEEP: | 3072:JjUKWfc3SYiRENM6HN26XiS+96kqbsC/g:Jjqfc3SYiRENM6HN2666kqbY |
MD5: | C3FC4CF039DFB0F050F1AFC64581265D |
SHA1: | 7097AAA873E7FBD085420CB8E231B646E05A3A91 |
SHA-256: | 5DD9E438F9D860402FCE959B256807C299E2574A664BA8B1D799299ECF2F6819 |
SHA-512: | 0C2EE351CBB75BFC058B6ED42D4FE56A719E14DCCD62BFEEB7F7DA5CA7795CB8274B10DC6054379C88E70D4E8A7AF40250A68F5A9A5174294F4E5E51A89C04FA |
Malicious: | false |
Reputation: | low |
URL: | https://serviceofprocess.cogencyglobal.com/ServiceOfProcess/Content/site.min.css |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 20 |
Entropy (8bit): | 3.8841837197791884 |
Encrypted: | false |
SSDEEP: | 3:oniCVodCnn:iicACnn |
MD5: | 40A79958414018295A86A7BD34B0BD7A |
SHA1: | BF039D92AF5A86012F3F03369250EEFB8ECD1DB7 |
SHA-256: | 18736D645C91CD74535678FA36F573364D4579E010D92436F446D7339F4017C7 |
SHA-512: | C568C0BA68ABF8CCF9419E8F6DBFD407344736F209407EB096F50DED742A09D23FD5C091474F990581C2BCDE62726505CE5A2B9314759BA7FA8058CE9B7A5982 |
Malicious: | false |
Reputation: | low |
URL: | https://content-autofill.googleapis.com/v1/pages/ChRDaHJvbWUvMTM0LjAuNjk5OC4zNhIZCb7jCoEgtnlaEgUNGa2JfyERk4GzmFIosQ==?alt=proto |
Preview: |
Process: | C:\Program Files\Google\Chrome\Application\chrome.exe |
File Type: | |
Category: | downloaded |
Size (bytes): | 77160 |
Entropy (8bit): | 7.996509451516447 |
Encrypted: | true |
SSDEEP: | 1536:/MkbAPfd1vyBKwHz4kco36ZvIaBfRPlajyXUA2jVTc:L0nXnHdfRVEAS2 |
MD5: | AF7AE505A9EED503F8B8E6982036873E |
SHA1: | D6F48CBA7D076FB6F2FD6BA993A75B9DC1ECBF0C |
SHA-256: | 2ADEFCBC041E7D18FCF2D417879DC5A09997AA64D675B7A3C4B6CE33DA13F3FE |
SHA-512: | 838FEFDBC14901F41EDF995A78FDAC55764CD4912CCB734B8BEA4909194582904D8F2AFDF2B6C428667912CE4D65681A1044D045D1BC6DE2B14113F0315FC892 |
Malicious: | false |
Reputation: | low |
URL: | https://serviceofprocess.cogencyglobal.com/ServiceOfProcess/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 |
Preview: |
Download Network PCAP: filtered – full
- Total Packets: 203
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 15, 2025 14:11:44.239598989 CEST | 49672 | 443 | 192.168.2.5 | 204.79.197.203 |
Apr 15, 2025 14:11:48.092149973 CEST | 49676 | 443 | 192.168.2.5 | 20.189.173.14 |
Apr 15, 2025 14:11:48.395807028 CEST | 49676 | 443 | 192.168.2.5 | 20.189.173.14 |
Apr 15, 2025 14:11:49.005182981 CEST | 49676 | 443 | 192.168.2.5 | 20.189.173.14 |
Apr 15, 2025 14:11:49.052031994 CEST | 49672 | 443 | 192.168.2.5 | 204.79.197.203 |
Apr 15, 2025 14:11:50.208307028 CEST | 49676 | 443 | 192.168.2.5 | 20.189.173.14 |
Apr 15, 2025 14:11:52.708308935 CEST | 49676 | 443 | 192.168.2.5 | 20.189.173.14 |
Apr 15, 2025 14:11:54.432202101 CEST | 49699 | 80 | 192.168.2.5 | 74.125.21.94 |
Apr 15, 2025 14:11:54.534526110 CEST | 80 | 49699 | 74.125.21.94 | 192.168.2.5 |
Apr 15, 2025 14:11:54.534621000 CEST | 49699 | 80 | 192.168.2.5 | 74.125.21.94 |
Apr 15, 2025 14:11:54.534816027 CEST | 49699 | 80 | 192.168.2.5 | 74.125.21.94 |
Apr 15, 2025 14:11:54.637036085 CEST | 80 | 49699 | 74.125.21.94 | 192.168.2.5 |
Apr 15, 2025 14:11:54.638068914 CEST | 80 | 49699 | 74.125.21.94 | 192.168.2.5 |
Apr 15, 2025 14:11:54.692935944 CEST | 49699 | 80 | 192.168.2.5 | 74.125.21.94 |
Apr 15, 2025 14:11:57.521776915 CEST | 49676 | 443 | 192.168.2.5 | 20.189.173.14 |
Apr 15, 2025 14:11:58.298443079 CEST | 49702 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:11:58.298487902 CEST | 443 | 49702 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:11:58.298609018 CEST | 49702 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:11:58.298763990 CEST | 49702 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:11:58.298777103 CEST | 443 | 49702 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:11:58.512932062 CEST | 443 | 49702 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:11:58.513000011 CEST | 49702 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:11:58.514302015 CEST | 49702 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:11:58.514312983 CEST | 443 | 49702 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:11:58.514533997 CEST | 443 | 49702 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:11:58.567857981 CEST | 49702 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:11:58.661628962 CEST | 49672 | 443 | 192.168.2.5 | 204.79.197.203 |
Apr 15, 2025 14:11:59.245456934 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.245506048 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.245595932 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.246134043 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.246146917 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.311378956 CEST | 49704 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.311430931 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.311660051 CEST | 49704 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.325751066 CEST | 49704 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.325782061 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.656861067 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.657161951 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.734663963 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.734802008 CEST | 49704 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.818202972 CEST | 49704 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.818233013 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.818881035 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.824692011 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.824759960 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.825012922 CEST | 49704 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:11:59.825110912 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.868283987 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:11:59.877991915 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.128645897 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.128674984 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.128736019 CEST | 49704 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.128755093 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.128808975 CEST | 49704 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.129940033 CEST | 49704 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.129959106 CEST | 443 | 49704 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.179052114 CEST | 49705 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.179119110 CEST | 443 | 49705 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.179305077 CEST | 49705 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.180926085 CEST | 49706 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.180969954 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.181032896 CEST | 49706 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.181344032 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.181480885 CEST | 49705 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.181504011 CEST | 443 | 49705 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.181602955 CEST | 49706 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.181615114 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.228282928 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.328917980 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.328947067 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.328954935 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.328986883 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.329019070 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.329047918 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.329070091 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.370467901 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.459384918 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.459398031 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.459480047 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.459507942 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.459918976 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.459927082 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.460005999 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.460011959 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.460190058 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.460199118 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.460248947 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.460263968 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.508588076 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.589894056 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.589907885 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.589922905 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.590051889 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.590051889 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.590450048 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.590457916 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.590524912 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.590538979 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.591206074 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.591214895 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.591262102 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.591274023 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.591515064 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.591547966 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.591566086 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.591573000 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.591597080 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.591774940 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.591833115 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.591840982 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.592344999 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.592458010 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.592473030 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.592669010 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.592724085 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.592730045 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.593184948 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.593188047 CEST | 443 | 49705 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.593549967 CEST | 49705 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.593585968 CEST | 443 | 49705 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.593735933 CEST | 49706 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.593755007 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.593924999 CEST | 49705 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.593939066 CEST | 443 | 49705 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.594011068 CEST | 49706 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.594016075 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.646953106 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.720773935 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.720789909 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.720813990 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.720944881 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.720944881 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.720974922 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.721055031 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.721064091 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.721112967 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.721121073 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.721481085 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.721513987 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.721548080 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.721553087 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.721577883 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.722027063 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.722099066 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.722104073 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.722774029 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.722829103 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.722835064 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.723185062 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.723244905 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.723248959 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.723555088 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.723608017 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.723613024 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.723990917 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.724051952 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.724056959 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.724390030 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.724571943 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.724575996 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.724666119 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.724718094 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.724723101 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.725250959 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.725330114 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.725336075 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.725598097 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.725656986 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.725662947 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.725944042 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.726016045 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.726021051 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.726030111 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.726094961 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.726099014 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.726111889 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.726162910 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.728097916 CEST | 49703 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.728116035 CEST | 443 | 49703 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.869438887 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.869465113 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.869525909 CEST | 49706 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.869555950 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.869573116 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.869623899 CEST | 49706 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.872232914 CEST | 443 | 49705 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.872263908 CEST | 443 | 49705 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.872328043 CEST | 443 | 49705 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.872325897 CEST | 49705 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.872381926 CEST | 49705 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.876133919 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.876179934 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.876259089 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.876478910 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.876486063 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.877248049 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.877259016 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.877326965 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.877674103 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.877685070 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.880245924 CEST | 49706 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.880286932 CEST | 443 | 49706 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:00.893418074 CEST | 49705 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:00.893485069 CEST | 443 | 49705 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.088077068 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.088136911 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.088221073 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.088632107 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.088650942 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.291578054 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.291641951 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.291949034 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.291985989 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.292135954 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.292149067 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.292315960 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.292321920 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.292388916 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.292392969 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.495392084 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.495507002 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.496123075 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.496139050 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.496378899 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.496645927 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.540278912 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.564872980 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.564903021 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.564971924 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.564997911 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.566932917 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.566965103 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.567040920 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.567048073 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.615291119 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.615448952 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.695517063 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.695534945 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.695648909 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.695673943 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.695949078 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.696007967 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.696014881 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.696590900 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.696660042 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.696666956 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.697365999 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.697376013 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.697438002 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.697447062 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.697741985 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.697788954 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.697794914 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.698189020 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.698270082 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.698276997 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.729778051 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.729844093 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.729856014 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.729960918 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.730026960 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.730032921 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.772660971 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.773241043 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.773855925 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.773904085 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.773972988 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.774003983 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.774085045 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.774087906 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.774130106 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.775181055 CEST | 49710 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.775207043 CEST | 443 | 49710 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.826491117 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.826524019 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.826582909 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.826627970 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.826714039 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.826719999 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.826719999 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.826747894 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.826889992 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.826917887 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.826947927 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.827071905 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.827384949 CEST | 49708 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.827416897 CEST | 443 | 49708 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.827841997 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.827853918 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.827884912 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.827905893 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.827935934 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.828499079 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.828510046 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.828598022 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.828613043 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.828841925 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.828850031 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.828905106 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.828917980 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.829474926 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.829507113 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.829550982 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.829572916 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.829592943 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.829597950 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.829648018 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.829662085 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.829682112 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.829720974 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.829747915 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.831258059 CEST | 49707 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.831274986 CEST | 443 | 49707 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.874982119 CEST | 49711 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.875050068 CEST | 443 | 49711 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:01.875474930 CEST | 49711 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.876187086 CEST | 49711 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:01.876204967 CEST | 443 | 49711 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:02.282241106 CEST | 443 | 49711 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:02.341620922 CEST | 49711 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:02.341674089 CEST | 443 | 49711 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:02.341819048 CEST | 49711 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:02.341828108 CEST | 443 | 49711 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:02.544579983 CEST | 443 | 49711 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:02.544651985 CEST | 443 | 49711 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:02.544717073 CEST | 49711 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:02.629950047 CEST | 49711 | 443 | 192.168.2.5 | 66.19.228.243 |
Apr 15, 2025 14:12:02.629990101 CEST | 443 | 49711 | 66.19.228.243 | 192.168.2.5 |
Apr 15, 2025 14:12:02.792051077 CEST | 49714 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:02.792145967 CEST | 443 | 49714 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:02.792233944 CEST | 49714 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:02.792409897 CEST | 49714 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:02.792438030 CEST | 443 | 49714 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.011640072 CEST | 443 | 49714 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.011722088 CEST | 49714 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.013591051 CEST | 49714 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.013607025 CEST | 443 | 49714 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.013880968 CEST | 443 | 49714 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.014245987 CEST | 49714 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.056297064 CEST | 443 | 49714 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.402457952 CEST | 443 | 49714 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.402589083 CEST | 443 | 49714 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.402659893 CEST | 49714 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.412249088 CEST | 49714 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.412295103 CEST | 443 | 49714 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.415158033 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.415218115 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.415285110 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.415529966 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.415545940 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.628786087 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.629740000 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.629776955 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.630420923 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.630429983 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937006950 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937099934 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937136889 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937165976 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.937170982 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937187910 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937225103 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937256098 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.937269926 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937297106 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.937464952 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937498093 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937524080 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937550068 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.937557936 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.937583923 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.938061953 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.938116074 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.938143969 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.938147068 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.938158989 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.938179016 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.938210011 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.938376904 CEST | 443 | 49716 | 162.159.134.42 | 192.168.2.5 |
Apr 15, 2025 14:12:03.938405037 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:03.939744949 CEST | 49716 | 443 | 192.168.2.5 | 162.159.134.42 |
Apr 15, 2025 14:12:04.044039965 CEST | 49717 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.044083118 CEST | 443 | 49717 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.044212103 CEST | 49717 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.044367075 CEST | 49717 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.044378996 CEST | 443 | 49717 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.261149883 CEST | 443 | 49717 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.261460066 CEST | 49717 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.262473106 CEST | 49717 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.262482882 CEST | 443 | 49717 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.262880087 CEST | 443 | 49717 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.266402006 CEST | 49717 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.312263012 CEST | 443 | 49717 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.485146046 CEST | 443 | 49717 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.485218048 CEST | 443 | 49717 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.485615015 CEST | 49717 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.485795021 CEST | 49717 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.485811949 CEST | 443 | 49717 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.486520052 CEST | 49718 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.486561060 CEST | 443 | 49718 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.486745119 CEST | 49718 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.486898899 CEST | 49718 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.486911058 CEST | 443 | 49718 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.709705114 CEST | 443 | 49718 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.710011959 CEST | 49718 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.710045099 CEST | 443 | 49718 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.710181952 CEST | 49718 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.710186958 CEST | 443 | 49718 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.950429916 CEST | 443 | 49718 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.950478077 CEST | 443 | 49718 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.950562954 CEST | 49718 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.950860023 CEST | 49718 | 443 | 192.168.2.5 | 35.190.80.1 |
Apr 15, 2025 14:12:04.950877905 CEST | 443 | 49718 | 35.190.80.1 | 192.168.2.5 |
Apr 15, 2025 14:12:07.130260944 CEST | 49676 | 443 | 192.168.2.5 | 20.189.173.14 |
Apr 15, 2025 14:12:08.560708046 CEST | 443 | 49702 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:12:08.560853958 CEST | 443 | 49702 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:12:08.560925007 CEST | 49702 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:12:08.903405905 CEST | 49675 | 443 | 192.168.2.5 | 2.23.227.208 |
Apr 15, 2025 14:12:08.903455019 CEST | 443 | 49675 | 2.23.227.208 | 192.168.2.5 |
Apr 15, 2025 14:12:09.243761063 CEST | 49702 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:12:09.243782997 CEST | 443 | 49702 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:12:54.740518093 CEST | 49699 | 80 | 192.168.2.5 | 74.125.21.94 |
Apr 15, 2025 14:12:54.843128920 CEST | 80 | 49699 | 74.125.21.94 | 192.168.2.5 |
Apr 15, 2025 14:12:54.843178988 CEST | 49699 | 80 | 192.168.2.5 | 74.125.21.94 |
Apr 15, 2025 14:12:58.247394085 CEST | 49725 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:12:58.247463942 CEST | 443 | 49725 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:12:58.247756958 CEST | 49725 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:12:58.247806072 CEST | 49725 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:12:58.247814894 CEST | 443 | 49725 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:12:58.458316088 CEST | 443 | 49725 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:12:58.458625078 CEST | 49725 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:12:58.458653927 CEST | 443 | 49725 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:13:08.459737062 CEST | 443 | 49725 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:13:08.459908962 CEST | 443 | 49725 | 64.233.185.103 | 192.168.2.5 |
Apr 15, 2025 14:13:08.459964037 CEST | 49725 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:13:09.242127895 CEST | 49725 | 443 | 192.168.2.5 | 64.233.185.103 |
Apr 15, 2025 14:13:09.242147923 CEST | 443 | 49725 | 64.233.185.103 | 192.168.2.5 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Apr 15, 2025 14:11:53.880104065 CEST | 53 | 65400 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:11:53.991395950 CEST | 53 | 53304 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:11:54.706844091 CEST | 53 | 63148 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:11:54.879066944 CEST | 53 | 65421 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:11:58.194040060 CEST | 54953 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:11:58.194473028 CEST | 50878 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:11:58.297243118 CEST | 53 | 50878 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:11:58.297307968 CEST | 53 | 54953 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:11:59.073631048 CEST | 57753 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:11:59.074215889 CEST | 54235 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:11:59.228202105 CEST | 53 | 57753 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:11:59.244465113 CEST | 53 | 54235 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:00.929919958 CEST | 53055 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:12:00.930170059 CEST | 56916 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:12:00.999236107 CEST | 53 | 54456 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:01.079808950 CEST | 53 | 56916 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:01.086081028 CEST | 53 | 53055 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:02.635055065 CEST | 55938 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:12:02.635325909 CEST | 61489 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:12:02.784735918 CEST | 53 | 61489 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:02.785413027 CEST | 53 | 55938 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:03.939749956 CEST | 58474 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:12:03.939749956 CEST | 55341 | 53 | 192.168.2.5 | 1.1.1.1 |
Apr 15, 2025 14:12:04.041887045 CEST | 53 | 58474 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:04.043195009 CEST | 53 | 55341 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:11.862178087 CEST | 53 | 50149 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:30.736895084 CEST | 53 | 56157 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:51.358966112 CEST | 138 | 138 | 192.168.2.5 | 192.168.2.255 |
Apr 15, 2025 14:12:53.696424007 CEST | 53 | 50582 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:53.816759109 CEST | 53 | 53792 | 1.1.1.1 | 192.168.2.5 |
Apr 15, 2025 14:12:56.547615051 CEST | 53 | 62791 | 1.1.1.1 | 192.168.2.5 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Apr 15, 2025 14:11:58.194040060 CEST | 192.168.2.5 | 1.1.1.1 | 0x7fc0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 15, 2025 14:11:58.194473028 CEST | 192.168.2.5 | 1.1.1.1 | 0x5755 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 15, 2025 14:11:59.073631048 CEST | 192.168.2.5 | 1.1.1.1 | 0xc86b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 15, 2025 14:11:59.074215889 CEST | 192.168.2.5 | 1.1.1.1 | 0x2fc0 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 15, 2025 14:12:00.929919958 CEST | 192.168.2.5 | 1.1.1.1 | 0x574e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 15, 2025 14:12:00.930170059 CEST | 192.168.2.5 | 1.1.1.1 | 0x41a2 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 15, 2025 14:12:02.635055065 CEST | 192.168.2.5 | 1.1.1.1 | 0x4bf7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 15, 2025 14:12:02.635325909 CEST | 192.168.2.5 | 1.1.1.1 | 0xf3a7 | Standard query (0) | 65 | IN (0x0001) | false | |
Apr 15, 2025 14:12:03.939749956 CEST | 192.168.2.5 | 1.1.1.1 | 0xd449 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Apr 15, 2025 14:12:03.939749956 CEST | 192.168.2.5 | 1.1.1.1 | 0xca5e | Standard query (0) | 65 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Apr 15, 2025 14:11:58.297243118 CEST | 1.1.1.1 | 192.168.2.5 | 0x5755 | No error (0) | 65 | IN (0x0001) | false | |||
Apr 15, 2025 14:11:58.297307968 CEST | 1.1.1.1 | 192.168.2.5 | 0x7fc0 | No error (0) | 64.233.185.103 | A (IP address) | IN (0x0001) | false | ||
Apr 15, 2025 14:11:58.297307968 CEST | 1.1.1.1 | 192.168.2.5 | 0x7fc0 | No error (0) | 64.233.185.104 | A (IP address) | IN (0x0001) | false | ||
Apr 15, 2025 14:11:58.297307968 CEST | 1.1.1.1 | 192.168.2.5 | 0x7fc0 | No error (0) | 64.233.185.105 | A (IP address) | IN (0x0001) | false | ||
Apr 15, 2025 14:11:58.297307968 CEST | 1.1.1.1 | 192.168.2.5 | 0x7fc0 | No error (0) | 64.233.185.106 | A (IP address) | IN (0x0001) | false | ||
Apr 15, 2025 14:11:58.297307968 CEST | 1.1.1.1 | 192.168.2.5 | 0x7fc0 | No error (0) | 64.233.185.99 | A (IP address) | IN (0x0001) | false | ||
Apr 15, 2025 14:11:58.297307968 CEST | 1.1.1.1 | 192.168.2.5 | 0x7fc0 | No error (0) | 64.233.185.147 | A (IP address) | IN (0x0001) | false | ||
Apr 15, 2025 14:11:59.228202105 CEST | 1.1.1.1 | 192.168.2.5 | 0xc86b | No error (0) | lbwebdmz.cogencyglobal.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 15, 2025 14:11:59.228202105 CEST | 1.1.1.1 | 192.168.2.5 | 0xc86b | No error (0) | 66.19.228.243 | A (IP address) | IN (0x0001) | false | ||
Apr 15, 2025 14:11:59.244465113 CEST | 1.1.1.1 | 192.168.2.5 | 0x2fc0 | No error (0) | lbwebdmz.cogencyglobal.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 15, 2025 14:12:01.079808950 CEST | 1.1.1.1 | 192.168.2.5 | 0x41a2 | No error (0) | lbwebdmz.cogencyglobal.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 15, 2025 14:12:01.086081028 CEST | 1.1.1.1 | 192.168.2.5 | 0x574e | No error (0) | lbwebdmz.cogencyglobal.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 15, 2025 14:12:01.086081028 CEST | 1.1.1.1 | 192.168.2.5 | 0x574e | No error (0) | 66.19.228.243 | A (IP address) | IN (0x0001) | false | ||
Apr 15, 2025 14:12:02.784735918 CEST | 1.1.1.1 | 192.168.2.5 | 0xf3a7 | No error (0) | cogencyglobal.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 15, 2025 14:12:02.785413027 CEST | 1.1.1.1 | 192.168.2.5 | 0x4bf7 | No error (0) | cogencyglobal.com | CNAME (Canonical name) | IN (0x0001) | false | ||
Apr 15, 2025 14:12:02.785413027 CEST | 1.1.1.1 | 192.168.2.5 | 0x4bf7 | No error (0) | 162.159.134.42 | A (IP address) | IN (0x0001) | false | ||
Apr 15, 2025 14:12:04.041887045 CEST | 1.1.1.1 | 192.168.2.5 | 0xd449 | No error (0) | 35.190.80.1 | A (IP address) | IN (0x0001) | false |
|
Session ID | Source IP | Source Port | Destination IP | Destination Port |
---|---|---|---|---|
0 | 192.168.2.5 | 49699 | 74.125.21.94 | 80 |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
Apr 15, 2025 14:11:54.534816027 CEST | 200 | OUT | |
Apr 15, 2025 14:11:54.638068914 CEST | 1243 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
0 | 192.168.2.5 | 49704 | 66.19.228.243 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:11:59 UTC | 871 | OUT | |
2025-04-15 12:12:00 UTC | 338 | IN | |
2025-04-15 12:12:00 UTC | 3753 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
1 | 192.168.2.5 | 49703 | 66.19.228.243 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:00 UTC | 798 | OUT | |
2025-04-15 12:12:00 UTC | 268 | IN | |
2025-04-15 12:12:00 UTC | 7924 | IN | |
2025-04-15 12:12:00 UTC | 8192 | IN | |
2025-04-15 12:12:00 UTC | 8192 | IN | |
2025-04-15 12:12:00 UTC | 8192 | IN | |
2025-04-15 12:12:00 UTC | 8192 | IN | |
2025-04-15 12:12:00 UTC | 8192 | IN | |
2025-04-15 12:12:00 UTC | 8192 | IN | |
2025-04-15 12:12:00 UTC | 8192 | IN | |
2025-04-15 12:12:00 UTC | 8192 | IN | |
2025-04-15 12:12:00 UTC | 8192 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
2 | 192.168.2.5 | 49705 | 66.19.228.243 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:00 UTC | 876 | OUT | |
2025-04-15 12:12:00 UTC | 271 | IN | |
2025-04-15 12:12:00 UTC | 7194 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
3 | 192.168.2.5 | 49706 | 66.19.228.243 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:00 UTC | 783 | OUT | |
2025-04-15 12:12:00 UTC | 279 | IN | |
2025-04-15 12:12:00 UTC | 4020 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
4 | 192.168.2.5 | 49707 | 66.19.228.243 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:01 UTC | 717 | OUT | |
2025-04-15 12:12:01 UTC | 280 | IN | |
2025-04-15 12:12:01 UTC | 7912 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 3712 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
5 | 192.168.2.5 | 49708 | 66.19.228.243 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:01 UTC | 702 | OUT | |
2025-04-15 12:12:01 UTC | 280 | IN | |
2025-04-15 12:12:01 UTC | 7912 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 8192 | IN | |
2025-04-15 12:12:01 UTC | 2392 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
6 | 192.168.2.5 | 49710 | 66.19.228.243 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:01 UTC | 467 | OUT | |
2025-04-15 12:12:01 UTC | 271 | IN | |
2025-04-15 12:12:01 UTC | 7194 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
7 | 192.168.2.5 | 49711 | 66.19.228.243 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:02 UTC | 818 | OUT | |
2025-04-15 12:12:02 UTC | 258 | IN | |
2025-04-15 12:12:02 UTC | 182 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
8 | 192.168.2.5 | 49714 | 162.159.134.42 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:03 UTC | 625 | OUT | |
2025-04-15 12:12:03 UTC | 1202 | IN | |
2025-04-15 12:12:03 UTC | 695 | IN | |
2025-04-15 12:12:03 UTC | 5 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
9 | 192.168.2.5 | 49716 | 162.159.134.42 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:03 UTC | 814 | OUT | |
2025-04-15 12:12:03 UTC | 1334 | IN | |
2025-04-15 12:12:03 UTC | 394 | IN | |
2025-04-15 12:12:03 UTC | 1369 | IN | |
2025-04-15 12:12:03 UTC | 1369 | IN | |
2025-04-15 12:12:03 UTC | 1369 | IN | |
2025-04-15 12:12:03 UTC | 1369 | IN | |
2025-04-15 12:12:03 UTC | 1369 | IN | |
2025-04-15 12:12:03 UTC | 1369 | IN | |
2025-04-15 12:12:03 UTC | 1369 | IN | |
2025-04-15 12:12:03 UTC | 1369 | IN | |
2025-04-15 12:12:03 UTC | 1369 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
10 | 192.168.2.5 | 49717 | 35.190.80.1 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:04 UTC | 562 | OUT | |
2025-04-15 12:12:04 UTC | 336 | IN |
Session ID | Source IP | Source Port | Destination IP | Destination Port | PID | Process |
---|---|---|---|---|---|---|
11 | 192.168.2.5 | 49718 | 35.190.80.1 | 443 | 7036 | C:\Program Files\Google\Chrome\Application\chrome.exe |
Timestamp | Bytes transferred | Direction | Data |
---|---|---|---|
2025-04-15 12:12:04 UTC | 537 | OUT | |
2025-04-15 12:12:04 UTC | 455 | OUT | |
2025-04-15 12:12:04 UTC | 214 | IN |
Click to jump to process
Click to jump to process
Click to jump to process
Target ID: | 4 |
Start time: | 08:11:48 |
Start date: | 15/04/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6e49b0000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 5 |
Start time: | 08:11:52 |
Start date: | 15/04/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6e49b0000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 8 |
Start time: | 08:11:54 |
Start date: | 15/04/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6e49b0000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | false |
Target ID: | 11 |
Start time: | 08:11:57 |
Start date: | 15/04/2025 |
Path: | C:\Program Files\Google\Chrome\Application\chrome.exe |
Wow64 process (32bit): | false |
Commandline: | |
Imagebase: | 0x7ff6e49b0000 |
File size: | 3'388'000 bytes |
MD5 hash: | E81F54E6C1129887AEA47E7D092680BF |
Has elevated privileges: | true |
Has administrator privileges: | true |
Programmed in: | C, C++ or other language |
Reputation: | low |
Has exited: | true |